Enterprise Resource Planning Blog Posts by SAP
Get insights and updates about cloud ERP and RISE with SAP, SAP S/4HANA and SAP S/4HANA Cloud, and more enterprise management capabilities with SAP blog posts.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

GRC, Trade and Tax with SAP S/4HANA Cloud Public Edition 2502

KatrinDeissner
Product and Topic Expert
Product and Topic Expert
‎2025 Mar 28 2:28 PM
932

Hi everyone,

I'm thrilled to share an update regarding our latest release - SAP S/4HANA Cloud Public Edition 2502 for GRC, Trade, and Tax. This update highlights many significant innovations from SAP Risk and Assurance Management, SAP Watch List Screening, SAP Document and Reporting Compliance, as well as SAP Cloud Identity Access Governance.

For a quick overview of the top release highlights for GRC with 2502, you can watch my video. If you're interested in a complete overview of all release highlights, scroll down to the table of contents.

 

 

This blog covers the following innovations:

SAP Risk and Assurance Management

SAP Watch List Screening

SAP Document and Reporting Compliance

SAP Cloud Identity Access Governance

 

SAP Risk and Assurance Management

Qualitative Risk Management Capabilities

The GRC Risk service offers a risk management solution with capabilities including risk documentation, risk analysis, and tracking of risk treatments. In addition to the existing quantitative risk analysis, it is now also possible to perform a qualitative risk analysis.

Value Proposition

  • Simple and quick - Enable users to assess risks without using precise numbers to determine impact or probability
  • Easy to perform and doesn‘t require expertise or training
  • Encourages collaboration and input from various stakeholders
  • Can be adapted to a wide range of industries and scenarios

Capabilities

  • Addition of qualitative risk assessment to the quantitative method
  • Qualitative risk assessment is a non-numerical approach to evaluating risks
  • Identify and prioritize risks based on their likelihood of occurring and the severity of their impact, using descriptive categories like low, medium, or high
  • Unified scoring to represent severity of risks regardless of quantitative or qualitative assessment approach to ensure comparability of assessment outcomes

 

RAM_2502_Qualitative Risk.png

Video 2: In addition to the existing quantitative risk analysis, it is now also possible to perform a qualitative risk analysis in SAP Risk and Assurance Management

For more information, see: Risk Analysis

Back to top

 

Comprehensive Customer-Specific Reporting

SAP Risk and Assurance Management supports comprehensive customer-specific reporting by making consolidated data available for reporting tools such as SAP Analytics Cloud.

This enables customers to analyze and visualize aspects like Number of Issues by Control over a Certain Time Period. 

Value Proposition

  • Analyze data related to different business objects to get deeper insights.
  • Optimized for reporting purposes.
  • Easy to use and simple to configure.

Capabilities

  • Consistent and consolidated data.
  • Provided via OData interface.
  • Consumable by third-party analytical solutions.

RAM_CUSTOM_REPORTING_SAC_2502_.png

Fig. 1: SAP Risk and Assurance Management supports comprehensive customer-specific reporting

For more information, see: GRC Data Consolidation Service

Back to top

 

Enabling Manual Procedures: Offline Execution

Manual procedures can now be performed offline by procedure owners, meaning that they can be completed wherever they are needed. A template is available for download in the Offline Assigned Manual Procedures app which can then be distributed by compliance managers via email to all relevant people.

Value Proposition

  • Complete manual procedures anywhere, with or without an internet connection.
  • Aggregate data collected by several procedure owners in one place.
  • Leverage familiar tools like spreadsheets for greater ease of use.
  • Share templates with occasional business users in supported languages with minimal administration.

Capabilities 

  • Templates support fast and easy to use manual procedures to ensure that no time is lost.
  • Distribution of templates by compliance managers enables procedure owners to focus on the task at hand with minimal administrative effort.
  • Ability to perform manual procedures offline ensures maximum flexibility.
  • Enables compliance managers to have a better overview of collected data and ongoing tasks.

RAM_Offline Execution.png

Fig. 2: In SAP Risk and Assurance Management, manual procedures can now be performed offline by procedure owners

For more information, see: Perform Offline-Assigned Manual Procedures

Back to top

 

SAP Watch List Screening

Custom Watch List - Uploading of Custom Watch List Content

If you wish to use a custom watch list for screening, instead of or additionally to the watch list provided by SAP, you can now use the Watch List API.
To select the watch lists that should be used for screening, you can use the new app Configure Watch List Screening.

Value Proposition

  • Use a custom watch list for screening

Capabilities

  • Replace the provided watch list or use the custom watch list as supplement

WLS_2502_Custom List.png

Video 3: With SAP Watch List Screening, it is now possible to use custom watch lists in addition to or as a replacement

For more information, see the Administration Guide:  Watch List API (optional)

Back to top

 

Unified SAP Fiori Apps and Process Optimization

You can now use a new app for ad hoc screening, a new app for reviewing screening hits and a new app for managing automatic screening decisions. The new apps have been designed to enhance your experience with more robust features, a streamlined interface and context-sensitive help. The new apps will eventually replace the old apps.

Value Proposition

  • More robust features
  • Streamlined interface

Capabilities 

  • Context-sensitive help

WLS_New Apps.png

Fig. 3: SAP Watch List Screening now offers three new apps: one for ad hoc screening, one for reviewing screening hits and one for managing automatic screening decisions.

For more information, see: 

Back to top

 

SAP Document and Reporting Compliance

Receiving Electronic Invoices From Suppliers By E-Mail (Germany)

SAP Document and Reporting Compliance offers a process to validate electronic documents sent to you by your suppliers by e-mail to ensure they meet the European standard EN16931. You can use this process to comply with the new German regulation to be technically capable of receiving electronic invoices as of January 1, 2025.

When you receive electronic invoices or credit notes from your supplier by e-mail, you can upload the extracted electronic invoices (XML file) and create electronic documents for them in the Manage Electronic Documents app in SAP S/4HANA Cloud Public Edition. You can then validate them and display them in HTML format using SAP Document and Reporting Compliance, cloud edition.

In addition, you can use SAP Ariba Central Invoice Management to automatically extract and upload the XML from the received email. The validation in the cloud edition can be automated as well as the posting of the supplier invoice for further processing in SAP S/4HANA Cloud Public Edition.

Value Proposition

  • Ensure compliance with the new German regulation to be able to receive invoices from suppliers electronically.
  • Ensure compliance with the German electronic invoicing standards:
  • XRechnung standard using the Cross Industry Invoice (UN/CEFACT) syntax.
  • XRechnung standard using the UBL Invoice or UBL Credit Note syntax.

Capabilities

  • Upload supplier invoices extracted from emails you receive from your supplier to the Manage Electronic Documents app
  • Creation of electronic documents for the supplier invoices in the Manage Electronic Documents app
  • Validation of electronic documents using SAP Document and Reporting Compliance, cloud edition
  • Display of supplier invoices in HTML format
  • Integration with incoming automation solution such as SAP Ariba Central Invoice Management

DRC_Germany.png

Fig. 4: SAP Document and Reporting Compliance allows you to validate electronic documents sent to you by your suppliers by e-mail to ensure they meet the European standard EN16931

For more information, see: Electronic Supplier Invoices (Receipt by E-Mail)

Back to top

 

Migration of Online Submission to SAP Document and Reporting Compliance

In some countries/regions, you can submit your statutory reports electronically by using the web services provided by the respective government agencies. The end-to-end process of submitting statutory reports electronically to the authorities requires that you integrate your system with the service that actually transmits the statutory report electronically. This direct submission feature was supported via SAP Document and Reporting Compliance service and is now migrated to SAP Document and Reporting Compliance, cloud edition.

Value Proposition

  • One single channel for all submissions across countries and processes
  • Simplify IT landscape and reduce total cost of ownership
  • Manage your integrations to tax authorities within your global SAP BTP account

Capabilities 

  • Centralized hub for all submissions to authorities, including reports and other requirements (e.g. HCM)
  • Standardized integration between SAP S/4HANA Public Cloud and SAP Document and Reporting Compliance, cloud edition introduced with scope item 78L. One connection across countries and scenarios

DRC_Online Submission.png

Fig. 5: The direct electronic submission feature for statutory reports has been migrated to SAP Document and Reporting Compliance

For more information, see: Submitting Statutory Reports Using SAP Document and Reporting Compliance, Cloud Edition

Back to top

 

SAP Cloud Identity Access Governance

Extended Access Governance: Support for Additional Authorization in SAP BTP

The SAP Cloud Identity Access Governance application enables comprehensive risk assessment of permission-level authorization data by extracting BTP roles and scopes, while also providing the capability to define rules.

Value Proposition

  • Empowers organizations to enhance security and compliance by enabling precise risk assessments at the permission level
  • Improved operational efficiency, reduced risk exposure, and strengthened trust in enterprise access management processes

Capabilities 

  • Define rules at BTP roles as action and scopes as permissions
  • Execute risk assessment at granular permission-level authorization data

IAG_Extended Risk Authorization.png

Fig. 5: SAP Cloud Identity Access Governance enables comprehensive risk assessment of permission-level authorization data by extracting BTP roles and scopes

For more information, see: SAP Busines Technology Platform - Cloud Foundry | SAP Help Portal

Back to top

 

Automatic Deprovisioning for Expired Business Role Assignments

Implementing an efficient process to automatically deprovision expired roles eliminates the need for manual review and identification of expired assignments. This automation ensures that relevant audit information is consistently updated to accurately reflect changes in role assignments, supporting compliance and streamlined access management.

Value Proposition

  • Streamline the Deprovisioning Process: Utilize the "Deprovision Expired Business Role Assignments" job to automate the identification and removal of expired business role assignments, eliminating the need for manual review.
  • Enhance Access Control: Ensure that users are promptly removed from roles they no longer need or are unauthorized to access, helping maintain strict access compliance.
  • Maintain Accurate Audit Trails: Automatically update audit logs and the "Business Role User Assigned" tab to reflect the deprovisioning of roles, ensuring a clear record of changes for compliance and review purposes.

Capabilities 

  • Administrators can now automate the removal of expired business role assignments by scheduling the "Deprovision Expired Business Role Assignments" job through the Job Scheduler app.

IAG_Automatic Deprovisioning.png

Fig. 7: SAP Cloud Identity Access Governance enables automatic deprovisioning for expired business role assignments

For more information, see: Help Document: Deprovision Expired Business Role Assignments

Back to top

 

Additional Risk Details in the Approver View Through a More Extensive Risk Perspective

An improved inbox view for approvers in the Access Request app, offering a more extensive risk perspective with additional details on risk factors, functions, actions, and authorization objects related to access.

Value Proposition

  • Equip approvers with comprehensive insights into risks, actions, and permissions that contribute to elevated access risks for users.

Capabilities 

  • More-extensive risk information, including additional information concerning risk factors, functions, actions, and authorization objects associated with access for the Access Approver view

IAG Risk Details.png

Fig. 8: In SAP Cloud Identity Access Governance, the inbox view for approvers in the Access Request app has been improved

For more information, see: Help Document: Access Request - Detailed Risk View

Back to top

 

Don’t hesitate to leave a comment and check out our community page to ask your questions and engage with the experts. Follow the PSCC_Enablement tag to stay up to date with our latest blog posts. 

Follow us on @SAP and #S4HANA, and myself on LinkedIn and X.

KatrinDeissner_0-1739354299818.png

 

 

More innovation can be found in the What's new viewer

--------------------------------------------------------------------------------------------------------------------------------------

KatrinDeissner_1-1739354299921.png

 

 

The Future of Business, Today: Get Your Access to AI-Assisted Features Thanks to this Limited Promotion Now! 

The 2502 update is a strategic investment that combines advanced AI with powerful enterprise management tools. Whether scaling your business, enhancing productivity, or building sustainable operations, its capabilities help support a more agile and resilient future.

Sign up for following features through the limited Promotion for AI-assisted Features in SAP S/4HANA Cloud Public Edition (for all countries, customers, and partners):

KatrinDeissner_2-1739354299936.png

 

 

Watch the Replays of Our SAP S/4HANA Cloud Public Edition 2502 Early Release Series! 

Between January 21 and January 24, we conducted a series of 21 engaging live sessions to showcase the thrilling innovations included in the SAP S/4HANA Cloud Public Edition 2502 release. If you missed the live sessions, don't worry! You can still access the whole series or select the sessions that interest you the most. Seize this opportunity to watch them on demand at your convenience–anywhere, anytime.

KatrinDeissner_3-1739354299887.png

 

 

 Find All of Our Assets 

SAP S/4HANA Cloud is the foundation of the intelligent, sustainable enterprise and is an innovative, robust, and scalable ERP. We at Cloud ERP Product Success and Cloud Co-Innovation offer a service as versatile as our product itself. Check out the numerous offerings our team has created for you below: 

KatrinDeissner_4-1739354299827.png

 

 

 

 

 

Link: https://chart-bdmaicr0au.dispatcher.eu2.hana.ondemand.com/index.html?hc_reset