SAP GRC Overview

Transcription

SAP GRC OverviewPaul PessuttiDirector, Strategic ApplicationsSAP GRC

Managing Risk Is Everyone’s JobExecutives & ManagersBoard, Audit CommitteeExecutive compensation issuesIncomplete global riskprofileCompliance / Risk OfficeDisconnected risk analysisIT OperationsData security issuesProcurementSupplier“black lists”Supply ChainSAP AG 2006, GRC UpdateFinanceComplex, internationalcompliance requirements?Human ResourcesEmployee safetycomplianceSales, ServiceHigh credit riskcustomersCustomers & Channel

Unidentified risks impact performanceImpacts Performancein the MarketNational Headlines“US Imposes Record 100Million Penalty for ExportControl Violations”IncreasesBusinessCostsMarch 27, 2007, Washington Post“Data Theft at Nuclear AgencyWent Unreported for9 Months”June 10, 2006, New York Times“Bomb Scare shuts Port’sTerminal 18”Aug 18, 2006, The Seattle Times“Brand Name High TechManufacturer Violates E.U.Pollution Law”Jul 06, 2006, CIO Tech InformerSAP AG 2006, GRC UpdateResults inCloserScrutinyReducesInvestor oroperationsFailure inOperationalControl

Overcome fragmentation, gain transparency with GRCBoard, Audit CommitteeEvidence for decisions & directivesCompliance / Risk OfficeIntegrated risk analysisIT OperationsSecure IT infrastructureSALARIESExecutives & ManagersIncreased confidencein business resultsFinanceGlobal financial reportingcomplianceHuman ResourcesEnvironmental health& safety complianceSales, ServiceBalancedcredit profileProcurementAnti-terroristtrade practicesSupply ChainSAP AG 2006, GRC UpdateCustomers & Channel

A holistic solution for GRC ManagementAutomates and embedsGRC processes intobusiness processesCross-Industry GRCGRC Repository: Documentation and MonitoringRisk ManagementAccess ControlsGlobal TradeEnvironmentProcess ControlsBusiness Process PlatformBusiness ApplicationsSAP AG 2006, GRC UpdateService PartnersIndustry-Specific GRCTechnology PartnersSAP Solutions for GRCContent PartnersBusiness ProcessDelivers transparencyfor balanced global riskprofileStandardizes oncommon GRC contentand rulesDrives higher marginsand shareholder valuePromotes a culturewhich values effectiveGRC

GRC Business eComplianceFinancialFinancialComplianceCompliance SOXSOX mandatemandate(Section(Section404404and302)and 302) ysis&&enforcementenforcement ReduceReducefraudfraudandandriskrisk forexecutivesfor executives sorganizations ttrailcomplete audit trailSAP AG 2006, GRC UpdateTradeTradeManagementManagement Enforcement is on the Enforcement is on therise, esp. after 9/11rise, esp. after 9/11 Companies need to Companies need tostrictly adhere to changingstrictly adhere to changingregulations such as ITARregulations such as ITARand EAR or risk costly finesand EAR or risk costly fines Security initiatives Security initiativesrequiring more internalrequiring more internalcontrol, record keeping andcontrol, record keeping andaudit trailaudit trailEnvironmentEnvironmentRegulationsRegulations “Green” supply chain as “Green” supply chain ascompetitive advantagecompetitive advantage Corporations need to Corporations need tocomply with environmentcomply with environmentlaws and regulation suchlaws and regulation suchas RoHS and REACHas RoHS and REACH Mandate of Clean Air Act Mandate of Clean Air Act Streamline environmental Streamline environmentalreportingreporting Health care risk Health care riskassessment and preventionassessment and prevention Worker safety and Worker safety andhazardous materials needhazardous materials needto be documented andto be documented andidentifiedidentified

GRC Solution esServicesEH&SEH&SEnvironmental ComplianceEnvironmental Compliance(EC)(EC)Compliance for ProductsCompliance for Products(CfP)(CfP)GRC Process ControlsGRC Process ControlsGRCGRCRiskRiskManagementManagementSAP AG 2006, GRC Update

SAP GRC Access ControlSustainable prevention of segregation of duties violationsMinimalTime To ComplianceContinuousAccess ManagementEffectiveManagement Oversightand Audit(Get Clean)(Stay Clean)(Stay in Control)Risk Identificationand RemediationEnterprise RoleManagementCompliant UserProvisioningSuperuser PrivilegeManagementPeriodic AccessReview and AuditRapid, cost-effectiveand comprehensiveinitial clean-upEnforce SoDcompliance atdesign timePrevent SoDviolations atrun timeClose #1 audit issuewith temporaryemergency accessFocus on remainingchallenges duringrecurring auditsRisk analysis, remediation and prevention servicesCross-enterprise library of best practice segregation of duties rulesSAP AG 2006, GRC Update

SAP GRC Risk ManagementRisk-adjusted management of enterprise performanceEstablish riskappetite andthresholdsCollaborate andaggregate acrossthe enterpriseBalance cost ofrisk avoidance andopportunityActionable rolebaseddashboards andalertsSAP GRC Risk ManagementBalance business opportunities with financial, legal, and operational exposure toBalance businessopportunitieswith financial,and operationalminimizethe market penaltiesfrom legal,high-impactevents exposure tominimize the market penalties from high-impact eventsRisk PlanningRisk Identificationand AnalysisRisk ResponseRisk MonitoringThe framework for an integrated approach to ERMSAP AG 2006, GRC Update

SAP GRC Global Trade ServicesSolving global trade challengesAvoid delays atborders to ensurefast delivery tocustomersExpedite customsclearance to reducecostly buffer stockMake the most ofinternational tradeagreementsTake advantageof export refundsSAP GRC Global Trade ServicesEnsure full regulatory compliance, expedite customs clearance, mitigate financial risk ofglobal transactions, take full advantage of international trade agreementsExportManagementSAP AG 2006, GRC titutionManagement

SAP GRC EH&S and Environmental ComplianceSolving environmental, health, safety alHygieneand ustry , Soil, oductsSAPREACHComplianceCfPSAP EH&SComprehensive and complete business solution for environment, health and safety managementApplications for EH&S Compliance ManagementSAP AG 2006, GRC Update

Manage With ConfidenceOver 2200 customers worldwide rely on SAP Solutions for GRCMitigate horizontal risks with SAP Global Trade Services and VirsaAccess Enforcer for SAPExtended core processes with GRC; over 1 M compliance screenings/monthReduce compliance costs with Virsa Compliance CalibratorEliminated 4,800 Staff Hours annually; audit costs 23% below normEffectively manage increasing trade regulations with SAP Global Trade ServicesAutomated 99.9% of export processes; Reduced headcount (45014)Grow and stay compliant with multiple regulatory changes using SAP GlobalTrade ServicesReduced cycle times (52 days)Improve occupational health with SAP Environment Health & SafetyIncident numbers and cost down; replaced 11 legacy systemsSAP AG 2006, GRC Update

SAP Global Trade Services

What is SAP Global Trade Services (SAP GTS)?SAP Global Trade Services manages all complexities of international tradeincluding full regulatory compliance, interactions with customs andmanagement of risk while trading on a global basis. It consists of separatemodular components that enable companies to improve their supply chainand comply with international regulations. Export Import TradePreference RestitutionMore than Export ControlExportsSAP AG 2006, GRC UpdateMore than Import ControlSAP GTSImports

Comprehensive Support For All Global Trade ActivitiesSAP Global Trade renceManagementRestitutionManagementEnsure fullregulatory exportcompliance,generate and filecustomsdocuments,mitigate riskEnsure fullregulatory importcompliance,expedite customsclearance, mitigateriskMake the most ofinternational tradeagreementsTake advantage ofexport refundsSAP AG 2006, GRC Update

SAP Global Trade Services (SAP GTS)Driving Efficient Cross-Border TradeLogistics/ TradeTeamLegal/ SOXCompliance TeamITTeamImport/Export OfficerIncreasedProductivityandBusinessInsightSAP Global Trade ServicesAdaptableBusinessProcessesBased onFlexibleTechnologyPlatformIntegrateSystems,Data andBusinessPartnersSAP AG 2006, GRC ortManagementRestitutionManagementSAP N,etcDutyRatesBusiness PartnersSPLDataRulesOfOriginCustomer& SupplierBanksFreightForwarderCustomsAgencies

Tight Integration With Logistics Outbound and Inbound ProcessesERP SystemProduct &BusinessMaster Data(Customer)Export ProcessSales OrderDelivery(Pro-forma) Invoice Export/ ImportCompliance Check Bonded Warehouse Duty Calculation CustomsCommunication Export/ ImportDocument Printing L/C CompliantPrintingSAP GTSProductClassification(HTS, ECCN,Schedule B, )ERP SystemProduct &BusinessMaster Data(Supplier)SAP AG 2006, GRC Update Export/ ImportCompliance Check ITAR/EAR License Det Letter of Credit (L/C)CheckImport ProcessPurchase OrderShipping NotificationGoods Receipt

SAP Export ManagementEnsures Trade Compliance Across BordersSAPExport ManagementKey CapabilitiesSAPImport ManagementSAPTrade PreferenceManagementBenefitsSanctioned Party List ScreeningScreen business partnersScreen documents at every step (orderto-cash and procure-to-pay processComprehensive documentationIntegration with Logistics, HR, FinancialAvoid costly fines and penaltiesthrough facilitating tighter national securityExport/ Import ControlManage export and import licenses (incl.Nested Licenses)Manage TAA and MLAsAutomated assignment of licenses to aspecific business transactionAbility to Interface with DDTC (D-Trade)Web Portal access to LicenseApplications & Amendments (DSP5,61,73,85,119)Track quantity and value depreciationContent provider for USML (partnersolution)Improve worker productivityvia moving to management-by-exceptionsEmbargo CheckCheck for potential embargo situationsSAP AG 2006, GRC UpdateShorter delivery timesthrough automated trade complianceprocessesSecure your corporate brandequityby avoiding negative pressBe prepared for legal auditsby having all required documentation athand

ITAR Compliance with SAP GTSSAP GTS helps you manage ITAR Requirements across your enterpriseProduct ClassificationAssign the correct USML numbers to your productsExport License Determination and ManagementA single, central location for end-to-end license managementEmbargo CheckAutomatic screening of destination country to identify potential ITAR issuesSanctioned Party List ScreeningScreen business partner, employees and applications against official sanctioned party listsGovernment CommunicationCertified support for electronic communication with the US GovernmentAuditing and Record KeepingMaintain a complete audit trail to show authoritiesSAP AG 2006, GRC Update

SAP GTS Has Significant Market MomentumSAP GTS is the leader in global trade management spaceOver 450 Customers in 20 countries, including business world'sbest-known brandsBusiness process knowledge and vast experience in 25 industriesSAP AG 2006, GRC Update

SAP AG 2006, GRC Update

ConclusionSAP GTS helps you reduce RISKS, TIME and COSTSAccelerate Cross-border TransactionsExpedite customs clearanceAccelerate delivery timesIncrease EfficiencyAutomated, standardized processesTight integration into logistics processes§§ § Reduce Risk of Non-ComplianceAvoid costly fines and penaltiesComplete and accurate audit trailReduce TCOOne central global trade solutionReduced software and hardware costsReduce RISKS, TIME and COSTSSAP AG 2006, GRC Update

Industry Value NetworksSAP’s unique industry ecosystem initiativeTechnology VendorsSupporting TechnologySAPIVN Lead & EnablerISVsComplementary SolutionsINDUSTRY ecosystems bringing together leading customers, partners & SAPCreating VALUE by focusing on priority industry needs & opportunitiesWith strong NETWORK collaboration, combined expertise, resources & solutionsSAP AG 2006, GRC UpdateCustomersInnovation Needs &Solution ValidationSystem IntegratorsIndustry Services & Solutions

Thank you!Paul PessuttiDirector, Strategic ApplicationsSAP GRCpaul.pessutti@sap.com 1 (650) 283-8354Thank you!For further information, please visit:www.sap.com/grcSAP AG 2006, GRC Update

Copyright 2007 SAP AG. All Rights ReservedNo part of this publication may be reproduced or transmitted in any form or for any purpose without the express permission of SAP AG. The information contained herein may bechanged without prior notice.Some software products marketed by SAP AG and its distributors contain proprietary software components of other software vendors.Microsoft, Windows, Excel, Outlook, and PowerPoint are registered trademarks of Microsoft Corporation.IBM, DB2, DB2 Universal Database, OS/2, Parallel Sysplex, MVS/ESA, AIX, S/390, AS/400, OS/390, OS/400, iSeries, pSeries, xSeries, zSeries, System i, System i5, System p, Systemp5, System x, System z, System z9, z/OS, AFP, Intelligent Miner, WebSphere, Netfinity, Tivoli, Informix, i5/OS, POWER, POWER5, POWER5 , OpenPower and PowerPC aretrademarks or registered trademarks of IBM Corporation.Adobe, the Adobe logo, Acrobat, PostScript, and Reader are either trademarks or registered trademarks of Adobe

What is SAP Global Trade Services (SAP GTS)? SAP GTS SAP Global Trade Services manages all complexities of international trade including full regulatory compliance, interactions with customs and management of risk while trading on a global basis. It consists of separate modular components that enable companies to improve their supply chainFile Size: 1MBPage Count: 25