APTI Service Portfolio
SAP GRC Implementation and Support
The SAP GRC product range has grown significantly over the last two decades, and is now grouped inside several categories:
SAP Access Control can help you automatically detect, remediate and ultimately prevent access risk violations, regardless of industry or business size.
SAP Process Control improves the effectiveness of your internal control processes across SAP and non-SAP systems, and tightly align them with risk prevention and efficiency requirements.
SAP Risk Management helps identify and assess risks and opportunities, determine a response strategy, and monitor progress
SAP Audit Management leverages the power of the SAP HANA in-memory database, integrate with other governance, risk, and compliance (GRC) solutions, and align internal audit with overall business goals.
SAP Netweaver Identity Management tool (IdM) allows an organisation to fully manage user access to both SAP and Non-SAP systems across their IT landscape. The IdM tool integrates with Access Controls processes and workflows to check for compliance issues, risk analysis, segregation of duties conflicts and risk mitigation connected with the access roles assigned to user accounts.
APTI can support your organisation through the process of product evaluation via product demonstrations, helping you to build a roadmap and business case through to procurement of GRC software licensing, hosting, implementation, support, managed services and product content – a true “one stop” and cost-effective shop.
Rapid GRC is a predefined (yet fully configurable) solution scope which helps reduce risks and enable our clients to achieve benefits in the most efficient manner.
Our implementation is within a fixed time frame within a fixed price. We also complement our delivery with offering additional support and consultancy services to aid companies in recognizing and tackling their access risks.
Here are the typical deployment timelines:
SAP Access Control 8-10 weeks
SAP Process Control 10-12 weeks
SAP Risk Management 10-12 weeks
SAP Audit Management 12-14 weeks
SAP Identity Management 10-12 weeks
SAP Single Sign On 4-6 weeks
Deployments can be offered either 100% remote or via a blend of
onsite (kick-off, UAT, Go Live) and remote with an agreed list of deliverable.
We also offer a low-cost managed service for all GRC solutions.
SAP’s Governance, Risk and Compliance (GRC) solutions typically release major version updates every 2-3 years, and support packs approximately every quarter.
Why are support packs important?
Support packs include enhancements (including new solution functionality), bug fixes, corrections, and critical security updates – to keep your data safe, you need to be up to date with support packs.
“To upgrade or not to upgrade? That is the question.”
The key to answer this is to understand the main changes and improvements in the newer version of SAP GRC 12.0 and what values it will provide to your organization. Mainstream maintenance for v10.x will end in December 2020 and many are considering a move to v12.0 in the near future.
How long does an upgrade take?
APTI Solutions has developed low-cost, rapid deployments which typically take 20-25 days to complete.
What can be included with the Upgrade?
- Migrate GRC from a SAP ECC6.0 platform to a HANA cloud platform environment.
- Migrate existing GRC data and enabled Fiori tile functionality to strategically replace the NetWeaver Business Client.
- Migrate the existing Access Control ruleset, risk owners and workflows to the new version of GRC.
- Integrate Access Control with Ariba to conduct Segregation of Duty checks across ECC 6.0 and Ariba
- Enable native SuccessFactors integration and access the sample SuccessFactors Risk Analysis ruleset
If you have questions as you consider upgrading or need assistance with this transition, our team of SAP experts are here to help.
Robotic Process Automation
APTI Solutions has partnered with Toggle Now. Toggle now has developed a wide range of content for the SAP GRC Solutions as well as process automation using robotics (RPA's). This collaboration brings together powerful complementary solutions to help clients address compliance with the below solutions.
A Complete Suite of Products to Manage and Monitor Compliance in SAP Systems.
Efficient SoD analysis and management solution with capabilities of analysis and mitigation of risk at the user and role levels
Accelerated and automated authorization design in keeping with compliance guidelines and your business requirements
Enhanced security through two-factor authentication/multi-factor authentication and other sophisticated security protocols
GRC Audit Management System (GAMS) and reporting solution with capabilities of IT General Control (ITGC)
Time-bound admin/config ID access to SAP product clients for execution of direct and critical changes
Automation of User Management activities, bundled with the Risk Analysis capabilities and self service capabilities.
Rapid response and Testing Support
We provide Rapid-Response as part of our services. Rapid response is a “flexible” emergency call out service, that gives customers the peace of mind of a global 24 hours support service, in a much more flexible and cost effective way.
24-Hour Service Option
Dedicated Phone Line
1st & 2nd Line Support Service
SLA Monitoring and Reporting
Proof of Concept in as little as 5 days
GRC Testing support
Provide testing plans
Provide test scenarios
Provide user training materials
Deliver training to key stakeholders
Provide post-implementation support
SAP Compliance & Audit Service
Auditing your SAP implementation is essential many a times to avoid results which are non-complaint. SAP audits help businesses maximize the value of their SAP implementation by increasing business value and productivity.
Supported with a set of procedures like checklists and templates based on SAP’s recommended best practices and industry standards APTI Solutions offer the below services:
Typical activities covered during the audit
Document data sources, systems, data flows, data owners and categories
Perform organisation-wide assessments for a range of controls in place
Master Data Maintenance
Data Security and Compliance Audit preparation
Risk Assessment and Fraud management services
Debug and Analyse Role/Access causing SOD issues
ABAP Debugging to determine route cause of issues and process enhancements to provide resolution
Analysis of New functionality / PC Limitations Using ABAP e.g. Improvements to Standard Workflows & Reporting
Perform User & Role security design and redesign
Role Re-certification to help supervisors quickly review user access
Internal Audit Co-operation and Pre Audit Assessment
Management reporting to check processes and control health by identifying processes or controls not currently working and take corrective action quickly.