Scribd
Upload
968 views11 pages

Risk Analysis and Mitigation in SAP GRC

The document discusses how to perform risk analysis and mitigate users in SAP GRC 5.3. It involves creating functions, actions, risks, administrators, business units, and mitigation controls. Risks are then associated with business processes and mitigation controls. Users are assigned roles and mitigated against risks by associating them with the appropriate mitigation controls. Running risk analysis after mitigating users should no longer show risks for those users.

Uploaded by

Suresh Gundala
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
968 views11 pages

Risk Analysis and Mitigation in SAP GRC

The document discusses how to perform risk analysis and mitigate users in SAP GRC 5.3. It involves creating functions, actions, risks, administrators, business units, and mitigation controls. Risks are then associated with business processes and mitigation controls. Users are assigned roles and mitigated against risks by associating them with the appropriate mitigation controls. Running risk analysis after mitigating users should no longer show risks for those users.

Uploaded by

Suresh Gundala
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

SAP GRC Access Control

How to do risk analysis and mitigate user in SAP GRC 5.3


We need to create a Business Process !SA

We need to create "unctions namely "unction # as !SA"$%# along &ith actions '()# and '()* and sa+e.

We need to create "unctions namely "unction * as !SA"$%* along &ith actions "()# and "()* and sa+e.

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page !

SAP GRC Access Control

Create a Risk ,- .or the action type along &ith t he .unctions &hich &e created earlier and sa+e

%o& it &ill prompt us to generate risks click on generate. ,t &ill gi+e the a+ailable risks like a.ter running the /ob in either .oreground or back ground. ,n order to see the risks goto Rule architecht0 rules
ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page "

SAP GRC Access Control


action rules list. search by business process. !hen you &ill get the rules

1itigation Create an administrator Goto mitigation administrator create as appro+er

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page #

SAP GRC Access Control


Create an administrator Goto mitigation administrator create as monitor

Create a Business unit Goto mitigation business unit !SB$ create along &ith add appro+er

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page $

SAP GRC Access Control


And then add monitor in the same screen and sa+e.

Create a mitigation control .or risk id !R, Goto mitigation mitigation control create

Select the risk id a.ter .iling all the abo+e the columns
ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page %

SAP GRC Access Control


And then select the monitor and reports along &ith .re2uency.

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page &

SAP GRC Access Control

Submit.

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page '

SAP GRC Access Control


%o& create a user and role &ith the abo+e !0codes and assign it to user in the backend system. When &e run risk analysis in GRC RAR it must gi+e us the risks in+ol+ed in it.

%o& &ith the risk description &e &ill mitigate the user along &ith the mitigation control &hich &e created earlier in RAR. Click on risk in.ormation then it &ill take you to risk resolution screen as belo&.

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page (

SAP GRC Access Control


%o& &e can mitigate the risk so click on mitigate risk it &ill gi+e a pop up like belo&

%o& &ith the created mitigation control in RAR .or that particular Business process &e &ill mitigate the risk &ith all the credentials like mitigation control and monitor control and all &ith control +alid .rom and +alid upto dates like

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page )

SAP GRC Access Control

A.ter submitting3 &e &ill get in.ormation as mitigated user is created success.ully.

ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page !*

SAP GRC Access Control

%o& i. u run risk analysis then it must not populate risks .or this particular user like

,n the same &ay &e can mitigate users .or any business process by creating the monitor and mitigation controls.
ThinkSky Property Copy-Reproduction-Print without permission is illegal and would be prosecuted , Email: sapgrctraining@gmail com

http://thinkskyacademy.blogspot.in/

Page !!

You might also like