What is the SAP standard strategy for implementing a SAP Business Workflow in SAP ECC, so that the access and risk of executing a Work Item in SAP ECC is under the control, monitoring, and mitigation of SAP GRC SoD (Segregation of Duties) Rules?
For example, the Work Item is included in the SoD Rule Set, and then access to, and execution of, the Work Item (e.g. Responsibility Agent) is controlled by GRC SoD Risk review of the Work Item, security role, and agent assignment.
Where would I find an existing body of work in this regard? Are there existing white papers, implementations, or conversations that can be shared? Thank you!
