Data privacy and data protection regulations, and best practices, require organizations to implement both technical and organisational measures appropriate to the nature of data access and processing, and the associated risks of course.
Organizations need to ensure there are appropriate processes in place to test the effectiveness of both technical controls and policies, but also to undertake any required improvements.
This fourth blog on the “What is really SAP Governance, Risk, and Compliance (GRC)?” series will focus on the cybersecurity, data protection and privacy aspects of the portfolio.
Managing data protection and privacy
With that in mind, SAP solutions for Cybersecurity and Data Protection help customers:
- Develop, maintain and implement policies and regulatory compliance, with auditable evidence of gaps and remediation
- Provide technical access, masking and logging controls, geopolitical fencing, and management of digital identities
- Protect system and landscape security, and perform early watches
- Perform risk analysis and records of processing activities, linked technical measures, and data protection events to document and manage the appropriate and legal response
- Implement security frameworks such as the one from the National Institute of Standards and Technology (NIST)
SAP Enterprise Threat Detection – Address cyber-threats with real-time intelligence
SAP Privacy Governance – Manage and comply with evolving data privacy regulations
SAP Data Custodian – Gain greater visibility and control of your data in the public Cloud
SAP UI Logging – Data access transparency and analysis
SAP UI Masking – Protect sensitive information in the user interface layer
I hope this helps in introducing the cybersecurity, data protection, and privacy offering from SAP’s Governance, Risk, and Compliance portfolio.
As a reminder, you can find all the other blogs in this series listed below:
- GRC Tuesdays – What really is SAP Governance, Risk, and Compliance (GRC)?
- GRC Tuesdays – What really is SAP Governance, Risk, and Compliance (GRC)? – Focus on the Enterprise Risk and Compliance pillar (released on 20/04/2021)
- GRC Tuesdays – What really is SAP Governance, Risk, and Compliance (GRC)? – Focus on the Identity and Access Governance pillar (released on 04/05/2021)
- GRC Tuesdays – What really is SAP Governance, Risk, and Compliance (GRC)? – Focus on the International Trade Management pillar (released on 01/06/2021)
I look forward to reading your thoughts and comments either on this blog or on Twitter @TFrenehard