What is new in GRC 10?

What is new in GRC 10?

Focus Area	What Does It Do?	What Is the Value?
Access Control Harmonization	Unifies all AC capabilities on a standardized ABAP platform, offering enterprise supportability, granular security, transport, and archiving.	Lowers TCO by eliminating redundancy in administation, configuration, setup, and end user training.
Unified Compiance Platform	Harmonizes Access Control with Risk Management & Process Control offers shared processes, data, and user interface across the GRC suite.	An enterprise GRC platfrom approach allows you to have complete management of all risks and controls from a single environment.
Streamlined User Access Management	Standardizes on improved workflow that supports flexible, multi-tiered routing and approval matrices. Dynamic user request forms based on user or system selected.	Tailoring of routing requirements for simple to highly complex organizations. New request forms imporve user adoption and usability.
Business Role Governance	Provides a standardized role compliance framework, centralized across organizations, systems, and applications. Translates roles into terms business users can understand.	Streamlines management of technical roles and eases identification and selection of appropriate roles for users, positions, and jobs.
Centralized Emergency Access	Centralizes firefighting and administration across all systems. New workflow provides an auditable process for tracking log report approval.	Reduces the effort required to grant and provision emergency access to multiple systems. Provides a structured, documented process around emergency access.
Improved Identity Management Integration	Improves compliant provisioning for customers already using IdM. Allows for initiation of risk analysis and remdiation from IdM or enables use of IdM to provision compliant requests.	Provides flexibility to ensure an enterprise wide, compliant provisioning process.

Standardizes Access Control capabilities on ABAP, as well as harmonizes with the GRC suite. The solution provides a holistic view of GRC, lowers TCO by reducing redundant activities and leverages processes across comonents.

Solution Enhancements

• AC, PC, RM solutions on common ABAP platform with shared data model and interface
• ABAP offers object level security, transportability, solution manager, robust scheduling, archiving, audit log, and supportability.
• New shared compliance organizations, business processes, and controls
• Enhanced mitigating controls stored in control catalog
• New support for hierarchical compliance organization and enhanced risk analysis against this organization
• New ability to schedule risk analysis from PC automated rule framework.

Key Benefis

• Single source for enterprise GRC
• Reduced total cost of ownership by leveraging existing resources and investments
• ABAP speeds maintenance with standard OSS notes and support pack process
• Centrally consilodated controls and reduced access violations through GRC managed compliance structure
• Leverage key processes across the GRC suite

Enhanced Visualization and Streamlined Navigation* - This enhancement provides a common look and feel with configurable role-based user access for GRC functions from the SAP Portal or SAP NetWeaver Business Client(NWBC). Steamlined user navigation with shared work centers emphasizes function rather than component. This significantly reduces duplication of menu items (e.g. one inbox, not three) and makes possible sharing of data and functions. Menu itmes seen by the individual user within each work center is controlled by the user's GRC role(s). This also enables data shared across components to be viewed differently by different users.

Improved Reporting* - GRC reporting leverages the Business Suite ABAP List Viewer (ALV) - Crystal integration framework to present and personalize ABAP (WebDynpro) reports and convert into Crystal reports. This lowers the TCO and extends the benefits of Crystal without the need for a separate BOE server. It also reduces the time spent by business users users on reporting on reporting needs. Custom Crystal reports with embedded graphics can also be created easily with Crystal Desiner.

Analyze and Manage Access Risk - This release provides a robust user interface for efficient creation and maintenance of functions, actions, and permissions. It uses a workflow-driven process for function mainteance. Audit trail tracking is available for most maintenance activities. In this release, it will be possible to mitigate risk at the rule level or at the system level.

Design and Manage Access Risk - Access Control 10.0 introduces a central role repository. Role definitions are shared across the application, allowing the user to create and maintain roles in one place. Business roles are introduced to imporve the role management process by through PGCG leveraging all the capabilities provided by PFCG. User is able to directly import roles from the backend system without the need for a file. Enhanced role methodology management allows user to update role methodology of a role that is already in use. Role comparison has been enhanced to compare role definitions from multiple backend systems. Role certification allows the role owners to certify the role content on a periodic basis to meet regulatory compliance requirements.

Provison and Manage Users - New enhancements include the ability to customize end user access request forms. Templates can be created for Access Requests. Approver view is now customizable. Idm integration has been enhanced with new web services.

Emergency Access Management - Access Control 10.0 introduces the ability to centrally administer firefighters. Firefighter assignments can be made in the central console and the firefighter session can be initiated centrally. Firefighters can be provisioned through the enhanced provisioning feature. A standardized workflow process has been introduced for reviewing firegihter logs.