About Me

I'm one of the Directors @ su53 Solutions. su53 provides risk management, compliance and security services to companies that run SAP, reducing costs, automating process conformance, driving business results and enhancing your status as a trusted organisation. I'm passionate about Risk Management and Security. My views are influenced by OCEG thinking. My vision aligns Risk to Strategy, focuses on mapping controls to risks, leverages, CCM and data mining. All this operates within your boundaries. Technology is the enabler. Collaboration and Communication are key to the success of GRC. My path to my current role has been varied, joining a Big 4 as a post-graduate from Queens Belfast and Notre Dame Indiana, before developing in depth SAP® BASIS skills en route to a focused career plan to become a lead thinker in SAP related GRC, audit and security. I've travelled extensively and worked with many organisations(from Australia to the Arctic). The breadth of exposure to client SAP systems and the various attitudes, abilities, process and practices around risk management has given me a sound perspective on best-practice. GRC isn’t my job, it’s my passion.

Thursday, 3 February 2011

Looking forward to 2011!

One of my New Year's resolutions was to update my blog more regularly. I've had a slow start to blogging in 2011 but that will change that soon.
I'm excited about the value and opportunities that GRC will bring to customers in 2011. Up to now the focus of GRC for SAP customers has been on restricting / managing access to transactions. That's changing and fast. Increasingly companies want to embed better controls, automate them, test them automatically. The next opportunity will be predict / manage risks better with Key Risk Indicators but we don’t see much appetite there yet. This will require a transformational approach to how you manage risk. (for you and your auditor!)
SAP's latest release GRC10.0 is now in ramp-up. We've been waiting on this for quite some time and have supported SAP in the test / validation phase. Our internal SAP GRC lab systems are being installed. In the next few weeks we will simulate the upgrade process from AC (4.0 and 5.3) and PC 3.0 to the new release. I will release the Top 10 benefits for both AC and PC in another blog shortly.
GRC2011 in Las Vegas is just around the corner. You can expect some significant announcements from SAP. For those who think Las Vegas is a jolly, think again. It's hard work, but one of my favourite weeks of the year. We’ll be catching up with the SAP EMEA and Palo Alto teams, our partners and exchanging ideas with customers and prospects alike.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)