smartWorkflow

Entitlement risks under control
Risk-free access Segregation of duties

Info

Gallery

Request a demo

See references

smartWorkflow - intelligent authorisation

The smartWorkflow application provides full flexibility of workflow configuration in the processes of rights management. The built-in segregation of duties risk matrix allows for a pre-emptive “what if” analysis at the stage of submission and approval of authorisation requests The system automatically assigns permissions to
on the end systems and a friendly workflow monitors the process and sends email notifications to process participants. 

When is it worth it?

  • Greate (more than 5 per week) number of requests for provisiong or modification of user access rights.
  • Many ERP-IT related projects and business requests regarding user rights modification in IT systems.
  • Multiple systems to operate, many administrators and consultants
  • Recurring recommendations to control the auditing process better / more attentively

What the process may look like - ready solution

Summary - why is it worth using?

smartWorkflow is a ready-to-use solution, which will quickly fit into your organisation, ensuring that the process becomes compliant with audit requirements and recommendations. The built-in segregation of duties risk matrix allows for a preventive access risk analysis at the stage of submission and approval of access authorisation requests. The system automatically assigns rights in end systems.

The main functionalities of smartWorkflow:

  • Tool support for the process of access provisioning - compliance with auditing standards and guidelines.
  • Simulation of requested rights in terms of segregation of duties risks before approval.
  • Automatic implementation of rights in end systems (SAP, SAP ERP, SAP HCM, Active Directory, Web-based systems).
  • Integration of SSO (Single Sign-on) with Active Directory domains.
  • Configurable workflows, friendly email notifications.

smartWorkflow screen gallery

References

FAQ – find out more about smartWorkflow

The smartGRC application is a separate system that can be installed in your environment or be available in the cloud. Installation of the system involves the preparation of an application server (Windows) and a database server (SQL).

The smartGRC application connects via a dedicated SAP interface for JAVA systems – the JCo connection. To retrieve data from the SAP system, standard SAP programs run to read data with parameters indicated by smartGRC are used

7-12 weeks, assuming the use of a standard process and no more than 2 levels of approval (Supervisor, Role Owner)

Analysis of SOD risks before approval and submission of the application. Ability to incorporate other users’ decisions into the simulation results – e.g., what would happen if Role Owner ‘A’ rejected it on the application – would the risks continue? What-if analyses are built into the decision-making process

Yes the system can handle any system, including those based on ABAP technology, but in such a situation it is necessary to prepare a dedicated connector which can prolong the implementation and installation process. At this point, the system has connectors for: Active Directory, Remedy and Service desk.

smartWorkflow is an indispensable service from the perspective of security of processes and business actions executed in a SAP system. Below you may find the answers to the most frequently asked questions about our solution.

Have another question - write to us!

I want to see how smartWorkflow works

Fill out the form below and we will contact you with a presentation of our offer and the capabilities of the module.

  • emergency access
  • SAP security
  • firefighter