Switzerland: Successful SAP Access Control GoLive

We are very excited to share the news that we have reached a new milestone for one of our customers which undertook transforming their enterprise access control processes on SAP GRC Access Controls product module: On February 28th 2020, the project went live with the SAP GRC access request management. This marks another step of our strategic journey to help our customers in GRC Access Management Integrated Service offering.

Problem/Background:

The ICS IT & Enterprise Security team had been managing their user access in SAP Landscapes on a legacy access management platform. The access provisioning processes were semi-automated often requiring manual intervention by administrators. The ICS team also faced challenges viz., high user access provisioning turnaround time, provisioning errors and reduced acceptability amongst business audience leading to disappointing customer satisfaction.

Solution:

Customer’s ICS team re-engineered the existing access provisioning processes which was then taken as a input by Riscomp team of experts to map the requirements into fully automated BRF+ workflow based user access provisioning process and also suggest best practices. As part of our service offering, we could also advise best practices surrounding dealing access control master data. With this go-live we have introduced many ICS relevant changes such as:

I. Simplified Segregation of Duties(SoD) risk results during access request submission and ad-hoc SoD reporting.

II. Customized frontend with harmonized delegation functionality.

III. Password self-service.

Our rigorous testing efforts resulted in the solution going live with zero /negligible defects.

Benefits:

The access provisioning in SAP GRC AC reduced turnaround time by 50 % with less number of incidents requiring IT intervention and overcoming collaboration challenges across business & IT teams. This has enabled customer to significantly improve its key provisioning and access governance metrics.