SAP Survey Reflects High Levels of Commitment to Governance, Risk and Compliance but More Investment Needed
SAP SE (NYSE: SAP) today announced the results of a global survey which indicates that despite the importance of governance, risk and compliance (GRC) in an organization, companies are not satisfied with their tools to meet regulations, and many are vulnerable to losing business or revenue as a result. The survey, conducted by Loudhouse Research, involved interviews with 1,010 employees responsible for GRC in large organizations in the United States, the United Kingdom, Germany, the Netherlands, Brazil, Japan, France, South Africa and the Nordics.
Most companies surveyed recognize the importance of investing in GRC technologies to create competitive advantage and profitability. However, the survey found that nine in ten organizations are not satisfied that they have adequate GRC technologies and processes in place. On average, only 46 percent of GRC data that an organization has access to is effectively captured and used to support strategic goals, and nearly half (48 percent) of organizations have not reviewed their GRC processes or technologies for at least three years. Furthermore, the vast majority (81 percent) of GRC professionals surveyed say risk and regulation has become more complex in the last five years.
"Companies need to act fast to limit exposure to further risk," said Thack Brown, general manager and global head of Line-of-Business Finance at SAP. "The ability to effectively manage risk can help improve profits. Garnering IT support, investing in skilled resources and opening up funds to achieve and maintain a sturdy GRC system are critically important."
Based on the survey feedback, SAP recommends a five-point plan to improve GRC practices:
- Make a case for the strategic value of GRC. Governance, risk and compliance should be everyone's business, so it is important to educate the entire organization on the benefits of robust GRC processes.
- Make a decision about who's responsible. Businesses need to determine an owner to ensure accountability.
- Seek a holistic, future-proof solution. To satisfy future ambitions, consider architecture that will allow GRC to integrate with other business functions. A solution should be end-to-end and fully integrate with finance and other operational processes.
- Drive cultural change. GRC awareness and understanding should be prioritized at every level of the business. Organizations that respect the importance of GRC to commercial success will be successful.
- Do it now. Regulatory pressures in all industries are growing - now is the time to act.
Read the full report here
. Information on SAP® solutions for GRC can be found here
For more information, visit the SAP News Center
. Follow SAP on Twitter at @sapnews
Julia Fargel, +1 (650) 276-8964, email@example.com
Janice Tsoules, +1 (650) 223-4817, firstname.lastname@example.org
SAP News Center press room
Any statements contained in this document that are not historical facts are forward-looking statements as defined in the U.S. Private Securities Litigation Reform Act of 1995. Words such as “anticipate,” “believe,” “estimate,” “expect,” “forecast,” “intend,” “may,” “plan,” “project,” “predict,” “should” and “will” and similar expressions as they relate to SAP are intended to identify such forward-looking statements. SAP undertakes no obligation to publicly update or revise any forward-looking statements. All forward-looking statements are subject to various risks and uncertainties that could cause actual results to differ materially from expectations. The factors that could affect SAP's future financial results are discussed more fully in SAP's filings with the U.S. Securities and Exchange Commission ("SEC"), including SAP's most recent Annual Report on Form 20-F filed with the SEC. Readers are cautioned not to place undue reliance on these forward-looking statements, which speak only as of their dates.