SAP Solution Brief
SAP BusinessObjects Solutions for
Protect Information and
­Prevent Fraud with SAP®
­BusinessObjects™ Access Control,
version for midsize companies
Companies are struggling to protect
themselves from fraud and to fulfill com-
pliance required by internal policies and
regulatory mandates. The results are
­often inefficient processes and rising
costs, especially when trying to continu-
ously achieve compliance using a frag-
mented approach that includes manual
activities, point solutions, or disparate
technologies. Fragmentation makes it
impossible to deal effectively with the
thousands of access rights−related
rules and interdependencies that occur
in your business processes and IT sys-
tems. A unified approach to managing
access compliance helps increase
transparency and reduce cost and com-
plexity from managing your controls with
a fragmented approach.
SAP can help you protect information
and prevent fraud with software that au-
tomates the process of analyzing and
comparing access rules, detects poten-
tial risks, and gives your IT and manage-
ment teams the information they need
to make decisions that ensure compli-
ance. The SAP® BusinessObjects™ Ac-
cess Control application creates a uni-
fied, efficient, automated control
environment to help you manage segre-
gation of duties in SAP and non-SAP
environments, reducing access control
management costs across implementa-
tion and operations.
Compliance Automation Across
Your Company
SAP BusinessObjects Access Control,
version for midsize companies, sup-
ports you in achieving end-to-end auto-
mation for detecting, mitigating, reme-
dying, and preventing access and
Small Businesses and Midsize
Companies
SAP BusinessObjects Access Control,
Version for Midsize Companies
The SAP® BusinessObjects™
Access Control application,
version for midsize compa-
nies, enables efficient pro-
tection of information and
prevention of fraud by con-
trolling access and authori-
zations. It minimizes time
authorization risk across your company.
This, in turn, results in proper segrega-
and cost of enforcing segre-
tion of duties (SoD), reduced access gation of duties across
risk, and better business performance.
applications and prevents im-
By deploying the application to unify proper access to IT systems.
your company-wide access compliance
management approach, you also benefit
from lower costs and fewer resources
needed to be compliant.
Managing Compliance
SAP recognizes that midsize companies
must manage compliance with limited
resources and time while being ready to
scale for growth. SAP BusinessObjects
Access Control is a scalable application
that supports a rapid “get clean” phase
to address violations quickly. Using au-
tomated control rules that can be set up
by IT or business managers, the respon-
sibility of preventing controls violations
can be established in places where it
works best for the company. The key
functions addressed by this application
are access risk analysis and remedia-
tion and privileged user access manage-
ment, all with access review and audit
(see Figure 1).
Access Risk Analysis and Remediation
SAP BusinessObjects Access Control
supports real-time compliance around
the clock and prevents security and
controls violations. Upon implementa-
tion, you can:
• Analyze live data – Use live data to
assess access risk rather than rely on
data downloads from disparate appli-
cations. This way, you can identify
conflicts immediately, drill down into
root causes, and achieve resolutions
swiftly.
• Find hidden issues in real time –
Uncover potential regulatory viola-
tions that might otherwise go unde-
tected until an audit. Address hidden
user access issues in real time be-
fore they impact the business, and
help ensure effectiveness of access
and authorization controls at any
time, across any system.
• Ensure segregation of duties –
Increase efficiency by leveraging
the most comprehensive database
of SoD rules available for applica-
tions from SAP, Oracle Corporation,
PeopleSoft, and JD Edwards. On
top of this, SAP BusinessObjects
Access Control allows non-IT securi-
ty experts to build custom rules using
common language for risk and com-
pliance (see Figure 2).
• Manage risk across the company –
Stop deploying different compliance
software for each business function
or software application. Instead, take
full advantage of an application that
immediately works across software
vendor solutions and comes with
a rules library to address core
processes.
SAP BusinessObjects Access Control
addresses SoD issues and detects,
removes, and prevents access and
authorization risks across two dimen-
sions: breadth of business processes
covered and depth of integration with
company-wide, legacy, and custom
software applications.
Privileged User Access Management
How can you give users privileged
emergency access to company-wide
systems without committing regulatory
violations? You can:
• Provide fast, secure superuser
logons – In emergencies, SAP
BusinessObjects Access Control
lets users perform activities outside
their role under superuser privileges
in a controlled, auditable environment
using a temporary ID.
• Provide complete audit trail and
­activity tracking – The application
tracks, monitors, and logs every
­activity a user performs with a privi-
leged superuser ID and provides com­
prehensive Web-based reporting.
Take Control of Access and
Authorization Risk
SAP BusinessObjects Access Control
is one of the most comprehensive ap-
plications in the industry for managing
and preventing user access and autho-
rization risk. It dramatically reduces the
time, cost, and risk of managing SoD
compliance and is now packaged and
priced for midsize companies. The appli-
cation offers a high level of automation
and a best-in-class SoD rules database
to continuously enforce compliant ac-
cess to assets, even within non-SAP
applications.
SAP: Delivering IT-Powered
Business Innovation

As the world’s leading provider of busi-

Effective ness software, SAP delivers products
Minimal Time to Access Management Access Oversight
Compliance and services that help accelerate busi-
and Audit
ness innovation for our customers. We
Risk Analysis and Superuser Privilege Periodic Access believe that doing so will unleash growth
­Remediation Management Review and Audit and create significant new value – for
Ensure rapid, Close the number 1 audit issue Focus on ­remaining our customers, SAP, and, ultimately,
cost-effective, with emergency access ­challenges ­during
comprehensive recurring audits
entire industries and the economy at
cleanup and large. Today customers in more than
monitoring 120 countries run SAP applications –
from distinct solutions addressing the
Risk analysis, remediation, and prevention services
needs of small businesses and midsize
Cross-software library of best-practice segregation of duties rules companies to suite offerings for global
organizations.
Figure 1: Establishing Compliance Across the Company via SAP® BusinessObjects Access Control
From Walldorf to Wall Street:
The SAP Success Story
Founded in 1972, SAP has a rich history
of innovation and growth that has made
us a true industry leader. SAP has
sales and development locations in
more than 50 countries worldwide and
is listed on several exchanges, includ-
ing the Frankfurt Stock Exchange and
NYSE under the symbol “SAP.”
Helping Companies Become Best-Run
Businesses
Our vision is for companies of all sizes
to become best-run businesses. In
today’s challenging business environ-
ment, best-run companies have clarity
across all aspects of their business,
which allows them to act quickly with
increased insight, efficiency, and flexi-
bility. By using SAP solutions, com­
panies of all sizes – including small
businesses and midsize companies –
can reduce costs, optimize perfor-
mance, and gain the insight and agility
needed to close the gap between strat-
egy and execution. To help our custom-
ers get the most out of their IT invest-
ments so that they can maximize their
business performance, our profession-
als deliver the highest level of service
and support.

Find Out More

SAP® BusinessObjectsTM Access Control Application Works Across Software Solutions
For more information, contact your
SAP Oracle Corporation PeopleSoft JD Edwards SAP representative or visit us online at
• HR and payroll • HR and payroll • HR • HR and payroll
www.sap.com/sapbusinessobjects/grc.
• Procure to pay • Procure to pay • Procure to pay • Procure to pay
• Order to cash • Order to cash • Order to cash • Order to cash
• Finance • Finance • Finance • Finance
– General – General – General – General
­accounting ­accounting ­accounting ­accounting
– Project systems – Project s­ ystems – Fixed assets • Consolidations
– Fixed assets – Fixed assets • System
• Basis, security, • System ­administration
and ­system ­administration
­administration • Materials
• Materials ­management
­management • Supplier relation-
• Advanced ­planning ship management
and ­optimization
• Supplier relation-
ship ­management
• Customer relation-
ship management
• Consolidations

Figure 2: A Solution That Works Across Software Vendor Solutions

Quick facts www.sap.com /contactsap

Summary
The SAP® BusinessObjects™ Access Control application, version for midsize companies,
supports you in achieving end-to-end automation for detecting, remedying, mitigating,
and preventing access and authorization risk across your company. This results in proper
segregation of duties (SoD), lower costs, reduced risk, and better business performance.

Business Challenges
• Identify and proactively mitigate and manage SoD violations
• Eliminate costly, time-consuming, and risky fragmented and complex processes for
establishing and managing access and authorization definition
• Increase visibility using documentation and monitoring capabilities to effectively manage
user access changes and updates, including emergency user access management

Key Features
• Control access and authorization across the company – Achieve rapid SoD violation
cleanup using comprehensive, best-practice, cross-application SoD rules for SAP and
non-SAP systems
• Efficient compliance management – Reduce your cost of compliance and audits using
centralized SoD controls, automated audit trails and documentation, automated rule-
building and analysis, and “what if” simulation capabilities
• Effective oversight and predictability – Manage access effectively by using company-
wide oversight into SoD violations and critical transaction access, transaction monitoring
with alerts, and enhanced control and audit tracking for superuser activity

Business Benefits
• Proactively protect information and prevent fraud by enforcing SoD rules across
applications and departments and preventing improper access
• Optimize operations and minimize cost of compliance by using an SoD rules database
to clean up violations, streamlining SoD management and enforcement using automated
review and approval processes
• Obtain visibility and documentation to manage SoD access activity and changes by
using complete audit trails and control tests that provide proof and reliability.
50 096 199 (09/07)
For More Information ©2009 by SAP AG.
All rights reserved. SAP, R/3, SAP NetWeaver, Duet, PartnerEdge,
Call your SAP representative, or visit us online at www.sap.com/sapbusinessobjects/grc. ByDesign, SAP Business ByDesign, and other SAP products and
services mentioned herein as well as their respective logos are
trademarks or registered trademarks of SAP AG in Germany and
other countries.

Business Objects and the Business Objects logo, BusinessObjects,

Crystal Reports, Crystal Decisions, Web Intelligence, Xcelsius, and
other Business Objects products and services mentioned herein as
well as their respective logos are trademarks or registered trademarks
of Business Objects S.A. in the United States and in other countries.
Business Objects is an SAP company.

All other product and service names mentioned are the trademarks
of their respective companies. Data contained in this document
serves informational purposes only. National product specifications
may vary.

These materials are subject to change without notice. These materials

are provided by SAP AG and its affiliated companies (“SAP Group”)
for informational purposes only, without representation or warranty of
any kind, and SAP Group shall not be liable for errors or omissions with
­respect to the materials. The only warranties for SAP Group products
and services are those that are set forth in the express warranty
­statements accompanying such products and services, if any. Nothing
herein should be construed as constituting an additional warranty.