At ComplianceNow, we developed the CN Risk Library as a key asset within our CN Access Control solution, providing organizations with a comprehensive framework to address common SAP risk areas. Covering critical areas such as SAP Security, HR/Payroll, Finance, Procure to Pay, and more, the risk library enables organizations to identify and mitigate risks early in the process. Our aim was to create a robust, universal library that minimizes the need for self-developed rulesets, helping businesses accelerate their SAP risk management efforts.
Complementing this, the CN Control Library offers corresponding mitigating controls, designed to help organizations manage accepted risks and build stronger internal control processes. Together, the risk and control libraries form the foundation of a holistic approach to SAP risk management.
While the ruleset is robust and applicable to organizations across industries, some configuration and customization will naturally be required to fit your specific processes and needs.
To ensure our solution remains up-to-date with evolving risks and best practices, the CN Risk Library undergoes an annual review by PwC, with any recommendations incorporated into subsequent updates. This continuous improvement process is key to maintaining relevance and effectiveness in SAP environments.
To read more in-depth about the scope, limitations, and customization of the CN Risk Library and ruleset, click below.
Remember that you can also follow us on LinkedIn and get instant access to our latest articles and posts on SAP and compliance.