SAP GRC Interview Question and Answers

17. What do you understand by risk management?
  Risk managemnet is the process by which an enterpirse identifies the risks, sets its tolerance levels for the given risk factors and continuously measures risk factors.
 
Your Name Your Email-ID
Your Answer
18. Briefly explain the functionality of SPM?
  SPM stands for Superuser Privilege Management.. In SPM, all the Superuser is routed through SPM dashboard. The SPM dashboard creates a detailed log of Superuser activities which is readily available for auditors for audit tool.
 
Your Name Your Email-ID
Your Answer
19. What is RAR?
  RAR stands for Risk Analysis and Remediation. It is one of the tools available in SAP GRC.
 
Your Name Your Email-ID
Your Answer
20. Explain the concept of mitigating control in reference to CC - Compliance Calibrator?
  A mitigating control is one which redues the risk associated with a high risk element. An organizaion may want to grant a high risk access to a specific User Id due to business exigencies. Under such circumstances, a mitigating control like senior / supervisor sign off is put in place to reduce the risk. CC - Compliance Calibrator is capable of recording such mitigating controls.
 
Your Name Your Email-ID
Your Answer
123456 Page 5 of 6