Professional Documents
Culture Documents
Sap GRC: Risk Management Solutions
Sap GRC: Risk Management Solutions
com/sap
SAP GRC
Risk Management
Solutions
In the environment of a volatile global economy, increased • Inconsistent processes and unclear roles and
regulation, and tightened budgets, it is more critical than responsibilities, leading to gaps in risk activities.
ever for organisations to identify and understand business
risks. Until recently, however, businesses have typically • Risk management that is not anchored in sound
taken a narrow, compliance-focused approach to risk enterprise-wide technology systems, leading to
management that is reactive rather than proactive. Without inefficiency and increased costs.
a broader risk management philosophy — one that aligns • Risk management programs that fall short by stopping
with the overall business vision and mission — your at risk assessments, standalone programs, or
organisation can face challenges such as: conceptual frameworks.
• Risk management viewed as a compliance exercise. • Risk management disconnected from business
• Siloed risk management processes, leading to duplicate objectives and, consequently,
efforts among business units. performance management.
Business drivers for SAP A sustainable,
GRC Risk Management forward-looking Risk
• Transform Risk Management process from a Management programme
silo approach to a more coordinated and
PwC can help your organisation shape its existing
oriented approach.
and ongoing risk management processes into the
• Consolidate risks at higher levels of the SAP GRC Risk Management solution and derive
organisation and evaluate global risk exposure. value in four key areas:
• Respond intelligently by focusing on key risks,
creating cross-organisational resolution Streamline risk management
strategies, and tracking response costs.
• Develop end-to-end risk processes across the
• Improve visibility and optimise decision value chain.
making by aligning risks to strategic priorities
• Plan and agree on top risks and appetite across
and business objectives (enhance risk
the organisation.
communications to the board).
• Understand true exposure resulting from risk
• Monitor key risks in a proactive way through a
analysis and correlation.
standardised and centralised Key Risk
Indicator framework. • Create resolution strategies for critical risks.
• Build proactive monitoring into
Solutions from an existing processes.
About PwC
PwC provides industry-focused assurance, tax and advisory services to build public trust and enhance value for our clients
and their stakeholders. More than 161,000 people in 154 countries across our network share their thinking, experience and
solutions to develop fresh perspectives and practical advice.
Key contacts
G Devan Nair
Executive Director
Direct Line: +60 (3) 2173 1184
Mobile: +60 (12) 297 0780
Email:
g.devan.nair@my.pwc.com
This publication has been prepared for general guidance on matters of interest only, and does not constitute professional advice. You should not act upon
the information contained in this publication without obtaining specific professional advice. No representation or warranty (express or implied) is given
as to the accuracy or completeness of the information contained in this publication, and, to the extent permitted by law, PricewaterhouseCoopers LLP, its
members, employees and agents do not accept or assume any liability, responsibility or duty of care for any consequences of you or anyone else acting, or
refraining to act, in reliance on the information contained in this publication or for any decision based on it.
© 2011 PricewaterhouseCoopers Advisory Services Sdn Bhd. All rights reserved. "PricewaterhouseCoopers" and/or "PwC" refers to the individual
members of the PricewaterhouseCoopers organisation in Malaysia, each of which is a separate and independent legal entity. Cs04064