Although some may BE tempted to discount the latest suite of products from SAP as just another governance, risk and compliance (GRC) offering, they would be wrong. With its launch in March of SAP GRC Access Control, SAP GRC Process Control, SAP Global Trade Services, and a new, integrated SAP GRC Risk Management and SAP GRC Strategy Management, SAP has moved as close as any vendor to a one-stop shop for GRC. "I'd say SAP is 80% of the way there," says Michael Rasmussen, former Forrester GRC tech guru and now president of GRC consultancy Corporate Integrity. "They still need something for managing documents and processes, but what's important about this latest portfolio of products is that SAP is delivering on its vision to [move away] from siloed products. They now have got one of the broadest packages out there."
Adds Lee Dittmar, a partner at Deloitte, SAP has made a "qualitative change" in the information management arena.