SAP GRC

(32)
4.0 out of 5 stars

Reduce the cost and effort needed to proactively prevent risk events and compliance violations

Work for SAP GRC?
Sovos gov risk comp  2x

Learning about SAP GRC?

We can help you find the solution that fits you best.

SAP GRC Reviews

Write a Review
Filter Reviews
Filter Reviews
  • Ratings
  • Company Size
  • User Role
  • User Industry
Ratings
Company Size
User Role
User Industry
Showing 33 SAP GRC reviews
LinkedIn Connections
SAP GRC review by <span>Jennifer U.</span>
Jennifer U.
Validated Reviewer
Invitation from G2 Crowd
Reviewed On

Secure & Reliable

What do you like best?

Simple and reliable controls to safely maintain GRC regulations. Instrumental in security measures, as well. Once we overcame the learning curve, we have found the the software is easy to use for all members of our team.

What do you dislike?

There was a learning curve at the beginning when trying to implement the system, but this was quickly overcome with use of the program. Other than that, we have not dealt with any issues with the software.

Recommendations to others considering the product

It was a big jump for us to move to SAP GRC, but we have not regretted it. It was eased our work flow process immensely.

What business problems are you solving with the product? What benefits have you realized?

We have solved issues with keeping up to date with new GRC controls. The software quickly notifies us if there have been any changes to specific controls that we normally would not have a good grasp on.

Sign in to G2 Crowd to see what your connections have to say about SAP GRC
Headshots
SAP GRC review by <span>Amy L.</span>
Amy L.
Validated Reviewer
Verified Current User
Invitation from G2 Crowd
Reviewed On

SAP GRC 10.1

What do you like best?

SAP GRC 10.1 really streamlines the user provisioning process by having all the security roles pre-approved by the management team. SAP has addressed some of the glitchy workflow issues that were present with the 10.0 version, so the approval / denial process works much better. The interface is also easier to navigate.

What do you dislike?

SAP GRC 10.1 is still a little weak on the reporting features that managers need to address Segeration of Duty (SOD's). The reports that are provided are difficult to interpret and often times managers and / or directors will ignore the reports or require someone to explain them; SAP should not only identify why the SOD exists but outlines some possible steps to resolve the SOD.

Recommendations to others considering the product

Don't hesitate, SAP GRC 10.1 us a great product with tons of functionality.

What business problems are you solving with the product? What benefits have you realized?

SAP GRC 10.1 helps streamline the hiring or termination process, it is very important that the person hired starts working as soon as possible and on the flip side, a terminated employee needs to have system access removed immediately. We have been able to reduce our staff in the security department.

What Governance, Risk & Compliance solution do you use?

Thanks for letting us know!
SAP GRC review by <span>HARDIK C.</span>
HARDIK C.
Validated Reviewer
Invitation from G2 Crowd
Reviewed On

Without Turnkey I do not think we would have been able to implement GRC 10.0 in the way that we have

What do you like best?

Streamline the process of managing and validating user access to applications and data. With access governance solutions from SAP, you can automate provisioning and certify access, embed preventative policy checks, monitor and automate reviews of emergency access activity – and enable business owners to manage system access with minimal IT support.

What do you dislike?

Because it does not support scoping and prioritization of the audit universe, audit management is not scalable for a large internal audit organization. Some of the audit functionality requires the licensing and integration of the SAP BI Explorer.

improvements were needed in reporting, audit management and the CCM feature within Process Control

Recommendations to others considering the product

SAP GRC shares the leaders quadrant along with vendors BWise, IBM Open Pages, Thomson Reuters, Oracle and MetricStream. According to Gartner, SAP deserves that ranking based on a number of strategic and functional strengths:

Market understanding and strategy. SAP’s knowledge and understanding of the GRC market has increased, which is reflected in the way it is better able to meet basic compliance and risk assessment requirements, as well as the more advanced challenges such as calculating the effects of risk management on business performance and decision making.

Product strategy. SAP has integrated continuous controls monitoring (CCM) to enable a wider set of GRC capabilities.

Vertical/industry strategy. SAP now offers a version of GRC for Environment, Health and Safety (EH&S) and also works with a number of other vendors that provide industry-specific GRC applications.

What business problems are you solving with the product? What benefits have you realized?

lthough initially viewed as a technical upgrade, moving to GRC 10.0 allowed JTI and Turnkey to revisit the business requirements and identify opportunities to improve the system, whilst providing additional functionalities.

Project delivered on time and within budget

Internal expertise and self-sufficiency gained through working with Turnkey consultants

A time efficient and up to date new GRC system with custom automation

Improved user experience and internal compliance

SAP GRC review by <span>Vineet B.</span>
Vineet B.
Validated Reviewer
Invitation from G2 Crowd
Reviewed On

Usability

What do you like best?

We use GRC for our authorization management and all the user creation role updates etc. This tool is very user friendly and give up reports where we can monitor if any issue with the role assignment

What do you dislike?

As we are using it for past 5 years some time it's very slow and users do not like the screen layout for the reports

What business problems are you solving with the product? What benefits have you realized?

We are using for creation of user profile, managing user role assignments

SAP GRC review by Consultant in Information Technology and Services
Consultant in Information Technology and Services
Validated Reviewer
Invitation from G2 Crowd
Reviewed On

SAP GRC the secure product

What do you like best?

integration with different component and manage security roles under one system

What do you dislike?

change in particular role is bit hectic work as it need deep analysis before making any changes

Recommendations to others considering the product

SAP's great Product for security Governance, Risk, Compliance which can use in business the unknows risks, analyse the solutions, process can manage the fraud in business process and the most important part is to maintain audit management with very much effectiveness.

What business problems are you solving with the product? What benefits have you realized?

The SAP GRC Product access control list with which enablement can highly benificial for the business to predict and eliminate the unknown or future risks

SAP GRC review by <span>Richard K.</span>
Richard K.
Validated Reviewer
Invitation from G2 Crowd
Reviewed On

SAP GRC

What do you like best?

Secure all user authorization access for avoiding user to access most sensible transaction when completing their daily task.

What do you dislike?

At this time I don't have any feedback to provide.

What business problems are you solving with the product? What benefits have you realized?

Authorizations are sometime not correctly define for some department. For the technical aspect it took away SAP All from Consultant to overlook the source of the problem from other streams.

Kate avatar
Kate from G2 Crowd

Learning about SAP GRC?

I can help.
* We monitor all SAP GRC reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.