GRC Advisory Team have successfully carried out a project of upgrade for SAP® GRC (Access Control) from version 10.1 to version 12.0 in one of the largest corporation on the fuel and energy market in CEE (listed in the global Fortune Global 500, Platts TOP250 or Thompson Reuters TOP100 rankings).
As part of the project a detailed analysis of the scope of changes for the implemented access risk management modules (EAM module used) has been performed, taking into account specific requirements as well as currently existing processes and tools. The analysis also included specific extensions implemented for SAP® GRC (dedicated reports, customizations, etc.).Due to extensive usage of backend systems connected to GRC system and required continuity of SAP systems, the project has been carried out in narrow and demanding technical time windows, allowing us to perform verification of key elements of the application's operation.
As part of testing, done for all systems in scope of the implementation (SAP® GRC and backend, including two SAP® ECC environments, two SAP® BW and SAP® HCM environments), both the currently used elements and new functionalities, available from version 12.0, were analyzed. The tests were conducted in close collaboration with the key system users from the IT team.
In addition, the scope of usage for SAP® Fiori for the purpose of SAP® Access Control 12.0 was also analyzed in order to achieve a synergy effect with the support of additional functionalities (dedicated applications or mobile access to SAP® GRC). The user and technical documentation for the project was also modified.