smartWorkflow

Authorisation risks under control
System access without segregation of duties risks

smartWorkflow - intelligent authorizations

The smartWorkflow application provides the built-in segregation of duties (SoD) risks database that enables proactive “what-if” analysis during the submission and approval of authorization requests. System automatically assigns authorizations within the end systems and utilizes an intuitive workflow to oversee the process, sending email notifications to all participants. smartWorkflow offers complete flexibility in configuring workflows for authorization management processes.

When is it worth it?

What the process may look like - ready solution

Summary - why is it worth using?

smartWorkflow is a ready-to-use solution, which will quickly fit into your organisation, ensuring that the process becomes compliant with audit requirements and recommendations. The built-in segregation of duties risk matrix allows for a preventive access risk analysis at the stage of submission and approval of access authorization requests. The system automatically assigns authorizations in end systems.

Main functionalities of smartWorkflow:

smartWorkflow screen gallery

References

FAQ – find out more about smartWorkflow

The smartGRC application is a separate stand-alone system, which can be installed in your personal environment or made available from the cloud. Installation of the system requires preparing an application server (Windows) and a database server (SQL).

The smartGRC application connects through a SAP interface dedicated to JAVA systems – a JCo connection. Standard SAP programs are used to download data from the SAP system, launched for reading data with parameters set by smartGRC.

7-12 weeks, assuming a standard process and no more than 2 levels of approval (Supervisor, Role owner).

SoD risk analysis before the approval and submission of requests. The possibility of including the decisions of other users in the simulation results – e.g. what would happen if the Owner of the ‘A’ role rejected it on the application – would the risk continue? What-if analyzes are built into the decision making process.

Yes, it can support any given system, including ones not based on ABAP technology, but in such a case it is necessary to prepare a dedicated connector, which may extend the implementation and installation process. Currently the system includes connectors to: Active Directory, Remedy, and Service desk.

smartWorkflow is an indispensable service from the perspective of security of processes and business actions executed in a SAP system. Below you may find the answers to the most frequently asked questions about our solution.

I want to see how smartWorkflow works

Fill out the form below and we will contact you with a presentation of our offer and the capabilities of the module.