On the 17th June 2008, SAP announced that their GRC Process Control solution had successfully exited its ramp up phase and was available immediately globally. This means that every product in the SAP GRC portfolio is generally available.

SAP GRC Process Control can help organisations simplify and re-enforce their compliance activities across business processes enterprise wide. One of the key benefits is that the solution enables an organisation to deploy an integrated strategy to risk management and business process control rather than implementing one off fragmented and costly solutions to address specific compliance and control issues.

SAP GRC Process Control helps organisations achieve compliance and also prove that they are compliant. End to end process control is achieved with this software:

• business processes and controls are documented in the tool
• automated tests are carried out to prove or disprove that the controls are working, continuously monitoring for fraud, abuse and inefficiencies
• remedial actions are defined where a control fails or is weak
• remedial actions are logged in the tool
• controls are re-tested after remediation
• control sign off is documented
• all changes made to controls, tests etc are logged, providing robust audit trail

SAP GRC Process Control is shipped with 70 out of the box pre-defined, automated controls, which span the following business processes:

Procure to Pay:Adherence to purchasing strategy can be controlled and tested whilst re-enforcing control in the Accounts Payable function

Order to Cash:Automated controls and testing can be used to identify revenue going astray and fraudulent transactions

Reconcile to Report:Processes and controls around financial ledgers and closing periods can be monitored for irregularities

System Security Management:IT controls can also be monitored across the entire SAP landscape for adherence to IT policy

su53 Solutions is launching several offerings for SAP GRC Process Control, covering various approaches. One such approach is where a client decides for multiple reasons to implement SAP GRC Process Control technology, thereby using vast numbers of controls in the tool.

It is also very feasible for an organisation to leverage huge benefit (primarily financial benefit) from implementing even a small number of controls in SAP GRC Process Control. In these cases, su53 Solutions has designed service offerings that focus on these very real issues that cost organisations big money, where specific Process Controls are implemented with the targeted reason of saving the client large sums of money. This approach is still in tune with the SAP GRC integration philosophy as once the SAP GRC Process Control tool is operational for the controls that will save these vast sums of money, it is then available to leverage benefit in all other areas of the organisation, thereby allowing the organisation to undertake all its future process control compliance under the one umbrella.