Governance, Risk, and Compliance (GRC) Cloud Services

摘要

Governance, risk, and compliance (GRC) functionality is implemented in a cloud environment utilizing logic provided by a function library that is present within an underlying in-memory database layer. In some embodiments, the GRC logic of the in-memory database function library is expressed in a language (e.g., C++) agnostic to that of an overlying application layer(s). In other embodiments, the in-memory database function library may be expressed in a specialized application code (e.g., ABAP of SAP SE) that is utilized by an application/application layer designed to interact with the in-memory database (e.g., HANA of SAP SE). In such embodiments the logic of the function library may be consumed (e.g. by the in-memory database engine) utilizing a function afforded by that specialized language. Particular embodiments may check for Segregation of Duties (SoD) violations based upon user and risk information input to the system.