on 03-15-2012 4:03 AM
Hello All,
My client requirement is to deroute CUP request to different risk owners based on risk ids. The custom field does not have the option to specify the risk id. Could you let me know wht is the possible option to detour based on Risk ids to respective Risk owners?
Regards,
Sudhakar S
Hello Kaushal & Simon,
Thanks for your response. My Client is on GRC5.3 & need CUP to be config to reroute to respective risk owners based on risk ids? Mitigation Controller / Approver would also suffice fot this purpose. All we need is the request to reroute to respective risk owners based on risk ids for approval.
Sudhakar S
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sudhakar,
Thanks for clearing that up. In 5.3, I am not sure if the Custom Approver Determinator (CAD) functionality can be configured to route risks by Risk ID owners in 5.3. In version 5.2/3, I had configured a CAD to detour requests with risks to an approver based upon the combination "Company Defined in the Request header (e.g. X)+ Role's Functional Area (e.g Finance)", therefore requests containing violations were approved by the required company risk owners, e.g. Company X's Financial Risk Owner (defined in the CAD results)
I don't think I have the answer ito your question in relation to 5.3, but I am sure someone else on the forum may have further advice for you.
All the best.
Sudhakar,
I don't think that you will be able to do this for Risk Owner as there could me MULTIPLE RISKS on a mitigation control. However, you stated that you would be ok with Mitigation Approver or Mitigation Monitor. Both of these are delivered approvers that you can use within your SOD Approval Detour. With that being said, you will need to require that the Mitigation be applied prior to the time the request access this particular stage for this approval.
This functionality has been enhanced in GRC 10.0, but we are limited to fewer choices when working in AC5.3 in comparison.
Hope this helps.
Kevin Tucholke
Hello Kaushal & Simon,
Thanks for your response. My Client is on GRC5.3 & need CUP to be config to reroute to respective risk owners based on risk ids? Mitigation Controller / Approver would also suffice fot this purpose. All we need is the request to reroute to respective risk owners based on risk ids for approval.
Sudhakar S
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sudhakar,
SAP have released the following SAP note (manual implementation) to allow this stage/approver setting to be used in GRC 10.0
https://service.sap.com/sap/support/notes/1670504
Hope it helps.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.