• No results found

Governance, Risk and Compliance Management SAP Solutions for GRC. Holly Roland GRC Solutions Marketing SAP

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Governance, Risk and Compliance Management SAP Solutions for GRC. Holly Roland GRC Solutions Marketing SAP"

Copied!
15
0
0

Loading.... (view fulltext now)

Download now ( 15 Page )

Full text

(1)

Governance,

Risk and Compliance

Management

SAP Solutions for GRC

Holly Roland

GRC Solutions Marketing

SAP

(2)

Fragmentation increases risk

Managing risks is everyone’s job

Human Resources Employee safety compliance Finance Complex, international compliance requirements

Compliance / Risk Office

Disconnected risk analysis

?

Sales, Service

High credit risk customers

Procurement

Supplier “black lists”

Executives & Managers

Incomplete global

risk profile

IT Operations

Data leakage & security

SALARIES

Board, Audit Committee

(3)

Unidentified risks impact performance

National Headlines

“Agency Delayed Reporting

Theft of Veterans’ Data”

May 24, 2006, New York Times

“Data Theft at Nuclear Agency

Went Unreported for

9 Months”

June 10, 2006, New York Times

“Bomb Scare shuts Port’s

Terminal 18”

Aug 18, 2006, The Seattle Times

“High Tech Manufacturer

Violates E.U. Pollution Law”

(4)

Overcome fragmentation, gain transparency

with GRC

Supply Chain Customers & Channel

Board, Audit Committee

Evidence for decisions & directives

Compliance / Risk Office

Integrated risk analysis

Executives & Managers

Increased confidence

in business results

IT Operations Secure IT infrastructure Procurement Anti-terrorist trade practices Finance

Global financial reporting compliance

Human Resources

Environmental health & safety compliance

Sales, Service

Balanced credit profile SALARIES

(5)

Implement management by exception

Turn GRC into a strategic advantage

Available for Investment Holistic Approach Tactical Approach Cost of GRC # of GRC projects

(6)

SAP Solutions for GRC

The framework for a holistic approach to GRC

Business Process

Business Process Platform

SAP Solutions for GRC

Cross-Industry GRC

Access Controls Global

Trade Environment Process Controls

Risk Management

GRC Repository: Documentation & Monitoring

Industry-Specific GRC

(7)

SAP GRC Ecosystem

2

Build the community, deliver best practices, extend the value

SAP GRC Ecosystem

2

Business Process

Business Process Platform

SAP Solutions for GRC

Cross-Industry GRC

Access Controls Global

Trade Environment Process Controls

Risk Management

GRC Repository: Documentation & Monitoring

Industry-Specific GRC

(8)

SAP GRC Repository

Central system of record drives governance, increases transparency



Centralizes knowledge base

of content contributed from

GRC Ecosystem

2



Rationalizes controls against

multiple frameworks



Stores evidence to support

executive decisions and

board directives

Performance Measures & Benchmarks Regulations & Industry

Mandates Risk & Control Libraries Corporate Policies & Procedures BOD & Committee Minutes

GRC

Repository

Best Practices Control Frameworks (COBIT, JSOX, …) Advisory Services (Auditors, Attorneys) Internal Policies Governmental Agencies Influence Councils

(9)

Plan Identify & Analyze

Respond

Monitor

SAP GRC Risk Management

Award-winning application balances opportunity and risk



Balances opportunities

with financial, legal, and

operational risks



Increases accuracy and

predictability of risks at all

levels of the enterprise



Minimizes impact of market

penalties from high-impact

events

Establish risk appetite Collaborate and aggregate

across the enterprise Balance cost of risk avoidance

and opportunity Actionable, role-based

(10)

Environmental Product Compliance

Compliance for Products - based on SAP Environment, Health and Safety

SAP EH&S

Comprehensive and complete business solution for environment, health and safety management

Industry Specific

Cross-Industry

SAP xEM Emissions Management CfP Compliance for Products Occupational Health Industrial Hygiene and Safety Waste

Management ManagementEmissions ComplianceProduct Hazardous Substance Management Product Safety Dangerous Goods Management

 Implemented “Design for Environment & Compliance” to reduce operational costs (by 505 in some areas) while staying compliant

(11)

Cross-Industry GRC

Secure and expedite cross-border transactions

Import Management Trade Preference Management Restitution Management Export Management Expedite customs clearance to reduce

costly buffer stock

Make the most of international trade agreements Take advantage of export refunds Avoid delays at borders to ensure fast delivery to customers

SAP Global Trade Services

Ensure full regulatory compliance, expedite customs clearance, mitigate financial risk of global transactions, take full advantage of international trade agreements

35 documents for cross-border shipments

600 trade laws

(12)

Effective GRC pays off

Up 27% Up 25.7% Down 5.7% I-C weakness in 04, but none in 05 No I-C weaknesses in 04 or 05 Reported I-C weakness in both 04 and 05

Share-price performance of companies complying with

internal-control rules called for under SOX

(13)

Automated GRC management will

increase the gap in shareholder value

Up 30% Up 20% Down 10% Remediated Internal Control weaknesses from previous year No Internal Control weaknesses Continued Internal Control weakness reported

(14)



SAP’s Commitment



Most Comprehensive

Framework



Part of Every Process





Risk Intelligence



GRC Partner Ecosystem

SIMPLICITY

A holistic solution for governance, risk and compliance management

Service Partners Content Partners Technology Partners Business Process Business Process Platform

SAP Solutions for GRC

Cross-Industry GRC

Access

Controls Global Trade Environment Process Controls

Risk Management

GRC Repository: Documentation and Monitoring

Industry-Specific GRC

(15)

Governance,

Risk and Compliance

Management

References

Download now ( PDF - 15 Page - 2.49 MB )

Related documents

The Governance Portal Minimize Risk. Maximize Performance.

“We selected Protiviti because of the full range of Governance Portal risk and compliance solutions, including controls management, risk management, assessment management,

SMART Rotor Development and Wind-Tunnel Test

The eleven-week wind tunnel test program evaluated the forward flight characteristics of the full-scale active flap rotor, gathered data to validate state-of-the-art

Special Procedures under the Union Customs Code (UCC) - Customs Procedure Codes (CPCs)

The revisions to the CPC notes in the Tariff are required to accommodate the discharge (from 1 May 2016) of Inward Processing under Article 85 of the Union Customs Code.(ex

SAP Predictive Analysis: Strategy, Value Proposition

Analytics solutions from SAP: Key capabilities Analytic applications Governance, risk, and compliance Enterprise performance management Business intelligence Data

COMPLIANCE MANAGEMENT SOLUTIONS THOMSON REUTERS ACCELUS COMPLIANCE MANAGEMENT SOLUTIONS

6 COMPLIANCE MANAGEMENT SOLUTIONS CONTACT US • Board Solutions • Disclosure Solutions • Due Diligence Solutions • Enterprise GRC Solutions • Internal Audit

USING SPREADSHEETS TO MANAGE GOVERNANCE, RISK AND COMPLIANCE:

The increased focus on GRC disciplines such as internal audit, financial controls management, IT governance, operational and enterprise risk management, and broader compliance, have

Factors Associated With Adherence to Diabetes Medication Among Individuals With Type 2 Diabetes in Cambridge, Ontario, Canada.

In addition, in the multivariate logistic regression analysis, the following combined variables were significantly associated with adherence to type 2 diabetes medication: age

Summary of Development of the Japan Standard Industrial Classification (JSIC) and Its Thirteenth Revision

This is deemed as being appropriate, as numerical standards for when establishing a new classification item are fulfilled, it is possible to clearly categorize this as an