Integration of SAP GRC, Security, Fiori and Sailpoint

Functionality: SAP: Fiori, Security, Access Control
Sailpoint IIQ integration: G/L, Asset Management

Industry: Energy
Type: Implementation, Enhancement, Development
Module: GRC, Sailpoint IIQ, Fiori

Issue

  • SAP implementation of ECC, SLC, VIM, GRC, with integration with Sailpoint G/L and Asset Management
  • Maintain compliance with SOX, FERC and NERC

Resolution

ATI’s solution involved:

  • Leading SI team for GRC architecture and design
  • Developed, client specific enhancements
  • Worked with SAP to develop custom module enhancements that are not normally provided as part of the GRC deployment
  • Configured and implemented SAP GRC to integrate with the Sailpoint Identity IQ identity management solution
  • Integration of enterprise wide Access requests with SAP GRC.
    The ATI team worked with the SOX compliance group to develop and customize risks that pertained to SOX as well as to FERC and NERC regulations.

Duration

  • Total 14 months

Results

  • Custom SAP GRC AC implementation
  • Custom SAP GRC to SAP PI to Sailpoint IIQ integration
  • GRC Ruleset customization for SOX, FERC and NERC regulations
  • Managed SI team

This allowed the customer to have a central interface from which users could submit access requests for all enterprise systems, and then have SAP GRC examine those requests for risks.

The ATI team developed and enhanced the existing security architecture provided by the SI so that the end result was a more robust and flexible design.