Goals

  • Discuss the purpose and business use of Process Control
  • Describe key features and related harmonization topics
  • Describe risk-based internal controls
  • Configure Process Control customizing settings and those shared across GRC
  • Create and manage master data
  • Discuss security and authorization requirements
  • Implement the Process Control solution
  • Use risk-managed financial compliance practices
  • Plan and process surveys and tests
  • Set up and maintain Continuous Monitoring
  • Integrate and use Process Control with Policy Management
  • Discuss operational compliance
  • Aggregate deficiencies
  • Use the harmonized reporting framework
  • Describe the use of custom-defined fields and document search

Audience

  • Implementation Consultants
  • Key Technical Business Users involved in a Process Control project
  • IT Governance Experts
  • Consultants for SAP Security and GRC IT Auditors
  • Business Project Team Leaders
  • Compliance Managers
  • Internal Audit Managers

Prerequisites

Essential

  • GRC100
  • Knowledge of integrated processes in an SAP system
  • Knowledge of authorization concepts in an SAP system
  • Practical knowledge of common business processes

Recommended

  • Experience with compliance regulations

Course based on software release

  • SAP Process Control 10.1

Content

  • Enterprise Governance, Risk and Compliance (eGRC)
    • Risk-Based Approach to Managing Compliance Initiatives
    • Integrated GRC Approach
  • Governance
    • Governance Overview
    • Governance Using Process Control 10.1
    • Daily Business Use
  • Harmonization Overview
    • Harmonization Concepts
    • Work Centers
    • Setting Up an Entry Page
    • Technical Landscape
  • Configuration Requirements
    • Customizing Central Tasks
    • Shared Master Data and Reports
    • Workflow
    • Authorization Updates
    • Process Control-Specific Customizing
  • Create and Manage Master Data
    • Master Data Overview
    • Setting Up an Organization Hierarchy
    • Setting Up the Account Group Hierarchy
    • Setting Up the Central Process Hierarchy
    • Setting Up the Indirect Entity-Level Control Hierarchy
    • Harmonized Risk Model
    • Uploading Master Data with MDUG
    • Content Lifecycle Management
    • Master Data Change Request Workflow
  • Surveys and Manual Tests
    • Survey and Test Overview
    • Planner Overview
    • Assessment Survey
    • Manual Test
    • Manual Test – Offline Forms and Data Sheets
    • Disclosure Survey
    • Issue Remediation
  • Risk-Managed Financial Compliance
    • Risk-Based Financial Compliance
    • Materiality Analysis
    • Risk Assessment
    • Control Risk Rating
    • Test Strategy
    • Risk Coverage Analysis
    • Integration with SAP Audit Management
  • Ad Hoc Issues
    • Ad Hoc Issues
    • Integration with SAP Fraud Management
  • Policy Management
    • Policy Management – Overview
    • Configuring Policy Management
    • Policy Lifecycle Management
  • Continuous Monitoring
    • Continuous Monitoring – Overview
    • Continuous Monitoring – Preconfiguration
    • Creating a Data Source
    • Creating a Business Rule
    • Assigning Business Rules to a Control
    • Scheduling a Continuous Monitoring Job
    • Monitoring a Continuous Monitoring Job
    • SAP Queries
    • SAP BW Query
    • Setting Up a Configurable Rule Subscenario
    • Create a Programmed Rule
    • ABAP Reports
    • Process Integration Subscenario
    • SoD Integration
    • Web Service for Continuous Monitoring
    • Event-Based Monitoring
    • SAP HANA Views
    • New CCM Content Upload Capabilities
  • Operational Compliance Overview
    • Operational Compliance Overview and Key Trends
    • CAPA
    • Operational Compliance-Specific Focus in CCM
  • Closing Activities in an ICS Management Cycle
    • Sign-Off
    • Aggregation of Deficiencies
  • Reporting
    • Reports Overview
    • Report Framework Harmonization
    • Dashboard Overview
  • Security and Authorization
    • Security and Authorization – Overview
    • Authorization Configuration and Setup
  • Implementation Scope and Approach
    • Implementation Scope and Approach
  • Establishing a Compliance Framework
    • Configuring a Multi-Compliance Framework (MCF)
  • Other Process Control Features
    • Custom-Defined Fields
    • Document Search