smartWorkflow
Authorisation risks under control
System access without segregation of duties risks
smartWorkflow - intelligent authorizations
The smartWorkflow application provides the built-in segregation of duties (SoD) risks database that enables proactive “what-if” analysis during the submission and approval of authorization requests. System automatically assigns authorizations within the end systems and utilizes an intuitive workflow to oversee the process, sending email notifications to all participants. smartWorkflow offers complete flexibility in configuring workflows for authorization management processes.
When is it worth it?
- Large (more than 5 per week) number of requests for provisiong or modification of user access authorizations
- Many ERP-IT related projects and business requests regarding user access modification in IT systems
- Multiple systems to operate, many administrators and consultants
- Recurring recommendations to control the auditing process better / more attentively
What the process may look like - ready solution
Summary - why is it worth using?
smartWorkflow is a ready-to-use solution, which will quickly fit into your organisation, ensuring that the process becomes compliant with audit requirements and recommendations. The built-in segregation of duties risk matrix allows for a preventive access risk analysis at the stage of submission and approval of access authorization requests. The system automatically assigns authorizations in end systems.
Main functionalities of smartWorkflow:
- Tool support for the process of system access provisioning - compliance with auditing standards and guidelines
- Simulation of requested authorizations in terms of segregation of duties risks before approval
- Automatic implementation of authorizations in end systems (SAP, SAP ERP, SAP HCM, Active Directory, Web-based systems)
- Integration of SSO (Single Sign-on) with Active Directory domains
- Configurable workflows and email notifications
smartWorkflow screen gallery
References
FAQ – find out more about smartWorkflow
The smartGRC application is a separate stand-alone system, which can be installed in your personal environment or made available from the cloud. Installation of the system requires preparing an application server (Windows) and a database server (SQL).
The smartGRC application connects through a SAP interface dedicated to JAVA systems – a JCo connection. Standard SAP programs are used to download data from the SAP system, launched for reading data with parameters set by smartGRC.
7-12 weeks, assuming a standard process and no more than 2 levels of approval (Supervisor, Role owner).
SoD risk analysis before the approval and submission of requests. The possibility of including the decisions of other users in the simulation results – e.g. what would happen if the Owner of the ‘A’ role rejected it on the application – would the risk continue? What-if analyzes are built into the decision making process.
Yes, it can support any given system, including ones not based on ABAP technology, but in such a case it is necessary to prepare a dedicated connector, which may extend the implementation and installation process. Currently the system includes connectors to: Active Directory, Remedy, and Service desk.
smartWorkflow is an indispensable service from the perspective of security of processes and business actions executed in a SAP system. Below you may find the answers to the most frequently asked questions about our solution.
I want to see how smartWorkflow works
Fill out the form below and we will contact you with a presentation of our offer and the capabilities of the module.
- emergency access
- SAP security
- firefighter