KEMBAR78
SAP GRC Access & Process Control Course | PDF | Access Control | Information Technology
Scribd
Upload
383 views5 pages

SAP GRC Access & Process Control Course

This 4-day course provides both essential knowledge and hands-on learning for auditors working in an SAP GRC environment or involved in its implementation. It covers SAP GRC Access Control and Process Control, including lectures, discussions, case studies and exercises. Topics include access risk analysis, emergency access management, access request management, business role management and more. The course is taught by Deloitte practitioners with real-world SAP GRC experience and aims to explore how an SAP GRC implementation impacts internal auditing.

Uploaded by

Forumnoj
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
383 views5 pages

SAP GRC Access & Process Control Course

This 4-day course provides both essential knowledge and hands-on learning for auditors working in an SAP GRC environment or involved in its implementation. It covers SAP GRC Access Control and Process Control, including lectures, discussions, case studies and exercises. Topics include access risk analysis, emergency access management, access request management, business role management and more. The course is taught by Deloitte practitioners with real-world SAP GRC experience and aims to explore how an SAP GRC implementation impacts internal auditing.

Uploaded by

Forumnoj
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 5

SAP GRC: Access Control and

Process Control
This course provides an essential knowledgebase, as well as hands-on
learning for internal audit professionals, including information technology
auditors, working in a SAP GRC environment, as well as those involved
in SAP GRC implementation and configuration. Hands-on learning will
be conducted with Access Control and Process Control 10.0.
The curriculum for this dynamic seminar includes lectures, group
discussions, case studies, and practical exercises, allowing participants
to explore the many ways that an SAP GRC implementation impacts
internal auditing.
This course is taught by Deloitte & Touche LLP practitioners with realworld SAP GRC implementation and audit experience.

Course Duration:
4 Days
CPE Hours Available:
36 CPE
Knowledge Level:
Intermediate
Field of Study:
Computer Science
Prerequisites:
Introduction to Auditing SAP ERP, SAP ERP Technical Audit, or requisite
knowledge of SAP
Advance Preparation:
None
Delivery Format:
Group-Live (Seminar, On-site)

Course Outline:
This course will address both SAP GRC Access Control and SAP GRC
Process Control.
SAP GRC Access Control
-

Challenges in Auditing SAP ERP

Segregation of Duties and Restricted Access

GRC Access Control Overview and Navigation

GRC Access Control Landscape and System Setup Audit


Considerations

SAP GRC Access Control Access Risk Analysis (ARA)


-

Post Installation considerations

ARA Overview of Configuration

ARA Master Data Upload

ARA Rule Set

ARA Background Jobs

ARA Workflow

ARA Risk Terminator

ARA Audit Considerations


o Rule Set Benchmarking
o ARA Scope
o Rule Set change management
o ARA Segregation of Duties

ARA Case Study and Exercises

SAP GRC Access Control Emergency Access Management (EAM)


-

EAM Post Installation Considerations

EAM Overview of Configuration

EAM Workflow

EAM Audit Considerations


o Emergency vs. Privileged Access
o EAM Segregation of Duties
o EAM Reporting and Monitoring

o EAM Audit Evidence


-

EAM Case Study and Exercises

SAP GRC Access Control Access Request Management (ARQ)


-

ARQ Post Installation Considerations

ARQ Overview of Configuration

Workflow Configuration and Settings

HR Triggers

Integration with Identity Management

User Review

SOD Review

Administration Tasks

ARQ Audit Considerations


o ARQ Segregation of Duties
o ARQ Approvers
o ARQ Reporting and Monitoring
o ARQ Audit Evidence

ARQ Case Study and Exercises

SAP GRC Access Control Business Role Management (BRM)


-

BRM Post Installation Considerations

BRM Configuration Overview

System Landscape

Roles

BRM Workflow and SOD

BRM Audit Considerations


o BRM Segregation of Duties
o BRM Change Management

BRM Case Study and Exercises

SAP GRC Process Control


-

Enabling the Risk Intelligent Organization

SAP GRC Process Control Functions and Features

Compliance Structure Overview

Control Assessment Overview

Automated Control Monitoring Overview

Compliance Framework Details

Control Details

Master Data Upload Generation Utility

Control Evaluation Setup

Manual Control Evaluations Overview

Automated Control Testing & Monitoring

Analysis and Reporting Review of Results

Process Control Audit Considerations

Case Study and Exercises

Other GRC Audit Considerations


-

Audit Reports

Security & Change Management

Audit Planning

Case Study Presentations

You might also like