PROFILETAILOR DYNAMICS GRC Control GRC, be prepared for audits, pinpoint violations of SoD rules, and reduce business risks. Xpandion’s complete and fully-automated solution for GRC (Governance, Risk and Compliance) and SoD (Segregation of Duties) requirements, identifying violations on both the static level of granting authorizations to users, and on the dynamic level as a compensating control. ProfileTailor GRC monitors actual real-time behavior usage for every SAP user and sends alerts about unusual activities, including risk severity level. Installed externally to SAP, ProfileTailor GRC is up and running instantly. Automation of in-house and outsourced auditing tasks using ProfileTailor GRC saves an average of 30% on external auditor hours, including SAP audits, SoD/SOX projects and pre-defined risk reports.