Technology Blogs by SAP
Learn how to extend and personalize SAP applications. Follow the SAP technology blog for insights into SAP BTP, ABAP, SAP Analytics Cloud, SAP HANA, and more.
Showing results for 
Search instead for 
Did you mean: 
Product and Topic Expert
Product and Topic Expert
0 Kudos


If you have attended any of the previous two instalments of the SAP Conference on Internal Controls, Compliance and Risk Management - in March 2018 in Amsterdam or in March 2019 in Barcelona, you will already know what this event is 2 days filled with customers sharing their tips and tricks but also their lessons learned on their implementation and usage of SAP solutions for Three Lines of Defense (namely: SAP Process Control, SAP Risk Management, SAP Audit Management and SAP Business Integrity Screening).

Well, this third instalment focusing on the theme “Connected Controls and Risks”, will take place on March 3rd and 4th in the beautiful city of Copenhagen and will continue to build on the great feedback received. The agenda has just been published but I have summarized below the key information:

Preconference Workshops


* Workshop 1: How Can You Create a Business Case for a GRC Solution and Make It Relevant to the Organization?

In this session, my colleague Michael Hecker from GRC Centre of Excellence for EMEA North, and I will provide an overview of what constitutes SAP Governance, Risk, and Compliance (GRC) solutions end to end. In addition, we’ll be providing actionable advice on how to create a business case and make it relevant for current and future business requirements. This is really an introductory session for those seeking to discover the portfolio and wanting to make a case for a software solution to support the GRC processes.

* Workshop 2: Increase Audit Efficiency by Digitally Transforming Your Engagement

In this more in-depth session, my colleagues Bo Baade-Pedersen from GRC Centre of Excellence for EMEA South, and Gabriele Fiata from UK GRC Presales will provide suggestions on how to increase audit efficiency by using connected risks and controls in audit planning and engagement phases. Including of course how to create a risk-based audit plan from contributions of risk coordinators in the business.

Customer Session


Who best to share their feedback and lessons learned than users themselves?

I personally think that this is the great value in this conference: the number of customer sessions and the willingness of speakers to share their stories.

In this respect, Carlos Jaimes and Krzysztof Kapustka from Heineken N.V. will provide an overview of how they manage internal controls at Heineken N.V., and how SAP Governance, Risk, and Compliance solutions support the process. In addition to sharing their experience using SAP GRC solutions, they will discuss how they envision the software can support their internal controls journey as they move forward.

Philippe Gicot from Tetra Pak S.A. will then explain how Tetra Pak has implemented integrated, standardised processes and systems to manage risk and controls. During this session, Philippe will explain how the Governance, Risk, and Compliance process supports management business decisions. In addition, Philippe will highlight the value of integration and will also share lessons learned and ideas for an efficient and effective control framework.

To close the first day of the conference, Larry Herzog-Butler from Delivery Hero SE will describe how two functions at Delivery Hero SE - the Internal Audit function and the GRC function, use SAP Governance, Risk, and Compliance solutions and the SAP Analytics Cloud solution to improve efficiency and effectiveness. The session will demonstrate how storytelling based on digitalized reports can increase engagement and collaboration.

After a well-deserved evening event (and a night of rest!), Dennis Kazich and Sven Bachmann from Kasse Hamburg will provide their feedback on how the ability to scan large volumes of data in real time enables organizations to detect errors and anomalies, prevent fraud, and better predict and prevent future occurrence.

Jos Mennens from Perfetti Van Melle Group B.V. will then share feedback on how the company has implemented SAP Audit Management and is using the application as the end-to-end audit management solution for audit planning and preparation, audit execution and reporting, and of course follow-up.

Finally, Daphne Cascini from British American Tobacco plc will give the audience an overview of BAT’s current Governance, Risk, and Compliance footprint and the journey taken. Including key challenges addressed in managing reliable and accurate GRC data, lessons learned from using GRC for continuous control monitoring and controls assurance reporting and a practical implementation for a disclosure survey and user attestation review.

The Roadmap


One of the other highlights of this conference is also the roadmap session. As for the 2 previous events, we will be once again be fortunate to be joined by Jochen Thierer, Head of Development and Product Management for Governance, Risk, and Compliance solutions at SAP, who will talk about the main topics his team is currently working on. Attendees will also learn about the recently delivered enhancements that users can already leverage now to support their GRC processes and Jochen will of course provide a glimpse into the future direction for SAP GRC solutions.

The Keynote


It doesn’t stop there: since 2008, AMRAE in collaboration with its external partner has been carrying out a survey on a yearly basis, listing vendors of Risk Management Information Systems (RMIS) and solutions available on the market. François Beaume from AMRAE (French  Association for Corporate Risk and Insurance Management) will deliver a keynote at the event where he'll share the latest insights into current and future trends of Risk Management, Audit, Internal Control and Insurance information systems.

How does that sound? If you are interested in learning more about this event, I would recommend the following links:

* Home page for the SAP Conference on Internal Controls, Compliance and Risk Management

* Agenda of the conference with details on the sessions and speakers

I look forward to meeting you there or reading your thoughts and comments either on this blog or on Twitter @TFrenehard