- SAP Community
- Products and Technology
- Additional Q&A
- GRC Risks Reach Zero
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
GRC Risks Reach Zero
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 03-06-2012 7:25 AM
Has anyone ever reached zero risks or violations in the system.
Just trying to get a grasp of if this is possible?
What would you say the appropriate level is for:
Role Violations:
User Violations
Accepted Solutions (0)
Answers (1)
Answers (1)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hi,
Role Violations: Yes I have seen an example of a company having remediated (or mitigated) all their roles within their production environement to reach a 100% SoD conflict free position. They did however still have Critical Roles and Profiles.
User Violations: This will be an evergoing challange, but I have seen 50-60% reductions occur after a good clean up and some remediation effort.
End of the day its about how intelligent and secre your role design is and how well segregated the real end user job tasks are.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Supporting Multiple API Gateways with SAP API Management – using Azure API Management as example in Technology Blogs by SAP
- Brownfield Project (ECC to Rise with SAP - S/4HANA Private Cloud) in Enterprise Resource Planning Q&A
- SAP Activate Methodology Accelerators - Error in Product Lifecycle Management Q&A
- There were some trfcs error in SAP car but we have cleared that trfcs still data not reach to target in Technology Q&A
- Extend Your Crystal Reports Solutions in the DHTML Viewer With a Free Function Library in Technology Blogs by Members
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.