Kickstart your Cloud SAP GRC Learning Journey: Introduction to Cloud SAP GRC, its Submodules details

Kickstart your Cloud SAP GRC Learning Journey: Introduction to Cloud SAP GRC, its Submodules details
Estimated read time 8 min read

 

I would recommend referring my below earlier article on SAP GRC (On-premise) before you start your journey into Cloud SAP GRC. It helps you understand the basic concepts and how On-premise SAP GRC helps organization to achieve business goals.

https://community.sap.com/t5/technology-blog-posts-by-members/kickstart-your-sap-grc-learning-journey-introduction-to-sap-grc-submodules/ba-p/13997059

SAP Cloud GRC encompasses a range of robust solutions tailored to meet diverse organizational needs.

Below are some of the key offerings in the SAP GRC, public cloud solutions portfolio.

·       SAP Cloud Identity Access Governance

·       SAP Risk Assurance Management

·       SAP Enterprise Threat Detection, Cloud Edition

·       SAP Watchlist Screening

1.      SAP Cloud Identity Access Governance

SAP Cloud Identity Access Governance is a comprehensive solution designed to simplify user access management in the cloud environment. While it offers similar functionality like on-premises SAP Access Control, it is not a cloud version of SAP Access Control (On-prem) or SAP Access Control hosted on cloud. Instead, it is a new SAAS solution from SAP, built on the SAP Business Technology Platform (BTP). It supports both on-premise and cloud systems.

Submodules/services:

·       SAP Cloud Identity Access Governance, Access Analysis Service (like ARA)

·       SAP Cloud Identity Access Governance, Access Request Service (like ARM)

·       SAP Cloud Identity Access Governance, Role Design Service (like BRM)

·       SAP Cloud Identity Access Governance, Privileged Access Management service (like EAM)

·       SAP Cloud Identity Access Governance, access certification service (like UAR etc.)

 

Image Source: SAP

 

Common IAG and Access Control scenarios:

·       SAP Cloud IAG only – supports only Cloud systems

·       SAP Cloud IAG with Cloud Connector – supports both On-prem and cloud systems

·       SAP Access Control with IAG integrated edition (as a bridge) – supports both On-prem and cloud systems

·       SAP Access Control – supports only On-Prem and SuccessFactors EC.

Reference SAP hep portal:

https://help.sap.com/docs/SAP_CLOUD_IDENTITY_ACCESS_GOVERNANCE

2.      SAP Risk and Assurance Management

SAP Risk Assurance Management (RAM) is a comprehensive solution designed to document risks and controls, automate controls to safeguard financial and nonfinancial data, policies, and processes in the cloud environment.  This can be like on-prem SAP Process Control. However, it is not a cloud version of SAP Process Control (On-Prem) or either SAP Process Control (on-Prem) hosted on cloud.

Earlier it was called as “SAP Financial Compliance Management” solution.

It provides the predefined integration and content for SAP S/4HANA on premise and in the cloud.

 

 Image Source: SAP

Reference SAP hep portal:

https://help.sap.com/docs/risk-and-assurance-management

3.      SAP Enterprise Threat Detection, Cloud Edition

SAP Enterprise Threat Detection enables you to evaluate security threats in your IT landscapes in real time by leveraging SAP and non-SAP log data. It helps to identify, analyze, and neutralize cybersecurity threats with real-time SIEM intelligence in your SAP applications as they happen and before serious damage occurs.

This solution allows organizations to monitor and respond to potential threats in real-time, ensuring the security of your cloud operations.

Key features/modules:

·       Log correlation and analysis

·       Automated threat detection and alerting

·       Straightforward integration

 Image Source: SAP

Reference SAP hep portal:

https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION

4.      SAP Watchlist Screening

SAP Watch List Screening enables enterprises across all industries to screen the names and addresses of their business partners against sanctioned party lists, thus ensuring their compliance with guidelines, regulations, and legislation. To facilitate this task, SAP Watch List Screening is integrated with SAP Business Partner.

It helps in assessing potential risks on an exception basis helps avoid high-risk businesses, individuals, and entities.

This can be integrated with SAP S/4HANA and SAP S/4HANA Cloud, as well as with APIs to extend to other systems.

A vital tool for screening against various watchlists to ensure compliance with legal and regulatory requirements.

Reference SAP hep portal:

https://help.sap.com/docs/SAP_WATCH_LIST_SCREENING

 

I hope this helps to start your journey into Cloud SAP GRC also if you’re aiming to level up your skills in Cloud SAP GRC ! By diving deep into these modules, you’ll gain the knowledge and skills needed to excel in the world of Governance, Risk, and Compliance.

Please connect and follow me for the next upcoming informative articles in SAP Security, GRC, BTP, Internal Controls and Risk & Controls area.

Share your thoughts in the comments below !

 

​  I would recommend referring my below earlier article on SAP GRC (On-premise) before you start your journey into Cloud SAP GRC. It helps you understand the basic concepts and how On-premise SAP GRC helps organization to achieve business goals.https://community.sap.com/t5/technology-blog-posts-by-members/kickstart-your-sap-grc-learning-journey-introduction-to-sap-grc-submodules/ba-p/13997059SAP Cloud GRC encompasses a range of robust solutions tailored to meet diverse organizational needs.Below are some of the key offerings in the SAP GRC, public cloud solutions portfolio.·       SAP Cloud Identity Access Governance·       SAP Risk Assurance Management·       SAP Enterprise Threat Detection, Cloud Edition·       SAP Watchlist Screening1.      SAP Cloud Identity Access GovernanceSAP Cloud Identity Access Governance is a comprehensive solution designed to simplify user access management in the cloud environment. While it offers similar functionality like on-premises SAP Access Control, it is not a cloud version of SAP Access Control (On-prem) or SAP Access Control hosted on cloud. Instead, it is a new SAAS solution from SAP, built on the SAP Business Technology Platform (BTP). It supports both on-premise and cloud systems.Submodules/services:·       SAP Cloud Identity Access Governance, Access Analysis Service (like ARA)·       SAP Cloud Identity Access Governance, Access Request Service (like ARM)·       SAP Cloud Identity Access Governance, Role Design Service (like BRM)·       SAP Cloud Identity Access Governance, Privileged Access Management service (like EAM)·       SAP Cloud Identity Access Governance, access certification service (like UAR etc.) Image Source: SAP Common IAG and Access Control scenarios:·       SAP Cloud IAG only – supports only Cloud systems·       SAP Cloud IAG with Cloud Connector – supports both On-prem and cloud systems·       SAP Access Control with IAG integrated edition (as a bridge) – supports both On-prem and cloud systems·       SAP Access Control – supports only On-Prem and SuccessFactors EC.Reference SAP hep portal:https://help.sap.com/docs/SAP_CLOUD_IDENTITY_ACCESS_GOVERNANCE2.      SAP Risk and Assurance ManagementSAP Risk Assurance Management (RAM) is a comprehensive solution designed to document risks and controls, automate controls to safeguard financial and nonfinancial data, policies, and processes in the cloud environment.  This can be like on-prem SAP Process Control. However, it is not a cloud version of SAP Process Control (On-Prem) or either SAP Process Control (on-Prem) hosted on cloud.Earlier it was called as “SAP Financial Compliance Management” solution.It provides the predefined integration and content for SAP S/4HANA on premise and in the cloud.  Image Source: SAPReference SAP hep portal:https://help.sap.com/docs/risk-and-assurance-management3.      SAP Enterprise Threat Detection, Cloud EditionSAP Enterprise Threat Detection enables you to evaluate security threats in your IT landscapes in real time by leveraging SAP and non-SAP log data. It helps to identify, analyze, and neutralize cybersecurity threats with real-time SIEM intelligence in your SAP applications as they happen and before serious damage occurs.This solution allows organizations to monitor and respond to potential threats in real-time, ensuring the security of your cloud operations.Key features/modules:·       Log correlation and analysis·       Automated threat detection and alerting·       Straightforward integration Image Source: SAPReference SAP hep portal:https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION4.      SAP Watchlist ScreeningSAP Watch List Screening enables enterprises across all industries to screen the names and addresses of their business partners against sanctioned party lists, thus ensuring their compliance with guidelines, regulations, and legislation. To facilitate this task, SAP Watch List Screening is integrated with SAP Business Partner.It helps in assessing potential risks on an exception basis helps avoid high-risk businesses, individuals, and entities.This can be integrated with SAP S/4HANA and SAP S/4HANA Cloud, as well as with APIs to extend to other systems.A vital tool for screening against various watchlists to ensure compliance with legal and regulatory requirements.Reference SAP hep portal:https://help.sap.com/docs/SAP_WATCH_LIST_SCREENING I hope this helps to start your journey into Cloud SAP GRC also if you’re aiming to level up your skills in Cloud SAP GRC ! By diving deep into these modules, you’ll gain the knowledge and skills needed to excel in the world of Governance, Risk, and Compliance.Please connect and follow me for the next upcoming informative articles in SAP Security, GRC, BTP, Internal Controls and Risk & Controls area.Share your thoughts in the comments below !   Read More Technology Blog Posts by Members articles 

#SAP

#SAPTechnologyblog

Avatar for

You May Also Like

More From Author