SAP BusinessObjects GRC vs XM Cyber comparison

SAP and XM Cyber are both solutions in the Continuous Controls Monitoring category. SAP is ranked #2 with an average rating of 6.0, while XM Cyber is ranked #8 with an average rating of 8.0. SAP holds a 16.4% mindshare in CCM, compared to XM Cyber’s 0.2% mindshare. Additionally, 75% of SAP users are willing to recommend the solution, compared to 100% of XM Cyber users who would recommend it.

SAP BusinessObjects GRC

Read 5 SAP BusinessObjects GRC reviews

282 Views
127 Comparison Views

75% willing to recommend

XM Cyber

Read 2 XM Cyber reviews

0 Views
1 Comparison Views

100% willing to recommend

SAP BusinessObjects GRC

XM Cyber

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between SAP BusinessObjects GRC and XM Cyber based on real PeerSpot user reviews.

Find out in this report how the two Continuous Controls Monitoring solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed SAP BusinessObjects GRC vs. XM Cyber Report (Updated: June 2025).

Buyer's Guide

SAP BusinessObjects GRC vs. XM Cyber

June 2025

Download the complete report

Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SAP BusinessObjects GRC

Ranking in Continuous Controls Monitoring

2nd

Average Rating

7.6

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

GRC (18th)

XM Cyber

Ranking in Continuous Controls Monitoring

8th

Average Rating

8.0

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

Vulnerability Management (35th), Cloud Security Posture Management (CSPM) (26th), Continuous Threat Exposure Management (CTEM) (3rd)

Mindshare comparison

As of June 2025, in the Continuous Controls Monitoring category, the mindshare of SAP BusinessObjects GRC is 16.4%, down from 25.7% compared to the previous year. The mindshare of XM Cyber is 0.2%. It is calculated based on PeerSpot user engagement data.

Continuous Controls Monitoring

Featured Reviews

Osama Saleh

Deputy Finance Director at Abdul Latif Jameel

Provides a lot of useful information and helps in managing risks and controls

BusinessObjects is very dated. It is not that user-friendly. It should be made more user-friendly. In addition, if they could make predictive analytics an embedded part of it where people get to know what is there to offer, it would be great. They need to invest heavily in business planning and consolidation. They have a BPC tool, which is known for planning and consolidation, but its implementation consumes a lot of effort. It is not that easy to implement. It would be better if they come up with a solution that is more user-friendly and easy to integrate so that we can have multiple consolidations or versions.

Read full review

Chee Young Tan

Director at ST Electronics

Has a valuable feature for attack simulation; it highlights the vulnerability and offers recommendations for improvement

XM Cyber helps identify risk by creating a shadow environment mirroring the production system. While it doesn't directly mitigate risks, it simulates attacks across this replica, uncovering vulnerabilities and weak points within the system. Once a WISC is established, it highlights the vulnerability and offers recommendations for improvement. It provides reporting templates, making the process faster. I rate it an eight out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The best features are the scalability and flexibility to implement applications on top of the BW."

"We have enterprise clients for the product."

"The tool helps create reports for projects, including the creation of any ad-hoc reports"

"Initial setup was straightforward. It took maybe one week."

"It is wonderful from the control perspective. The GRC tools help you in knowing what are the risk controls, how to mitigate risks, and how to ensure that there are no conflicts between the roles. From the user perspective, you get to know what are the permission risks and access risks. You get a lot of useful information."

"The platform's most valuable feature is attack simulation."

"What I personally like very much, from my experience, is that it is very reliable."

Cons

"We cannot actively log in to the system. It should also improve support."

"An additional feature I would like to see is the option to add wait time and integrate sources in wait time."

"BusinessObjects is very dated. It is not that user-friendly. It should be made more user-friendly. In addition, if they could make predictive analytics an embedded part of it where people get to know what is there to offer, it would be great."

"I think the old system is better than the new one. From an improvement perspective, the tool needs to ensure that the new technologies it offers are better than the old ones."

"Technical support could be better and faster."

"XM Cyber could identify all areas of vulnerability. They could expand the identification span for different areas."

"We'd like to see a cheaper price."

Pricing and Cost Advice

"There is a yearly licensing cost. I would rate their pricing 4 out of 5."

"SAP BusinessObjects GRC is expensive."

"The license is costly."

"The product's licensing costs involve a one-time purchase. The tool also allows others to make annual payments towards the licensing charges of the product."

"We have to pay standard licensing fees."

See which vendors are best for you

Use our free recommendation engine to learn which Continuous Controls Monitoring solutions are best for your needs.

See recommendations

859,129 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Financial Services Firm

14%

Manufacturing Company

10%

Government

Financial Services Firm

15%

Computer Software Company

15%

Manufacturing Company

10%

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about SAP BusinessObjects GRC?

The tool helps create reports for projects, including the creation of any ad-hoc reports

See all answers

What needs improvement with SAP BusinessObjects GRC?

There isn't anything in particular that my company doesn't like about the product. It is an old system that is currently being used by its users, which works in areas like prompts and reports. I th...

See all answers

What advice do you have for others considering SAP BusinessObjects GRC?

My company is in touch with the vendor who takes care of the maintenance phase of the solution. I cannot recommend the product to other organizations. Other organizations can choose from the many t...

See all answers

What do you like most about XM Cyber?

The platform's most valuable feature is attack simulation.

See all answers

What is your experience regarding pricing and costs for XM Cyber?

We have to pay standard licensing fees. There are no additional costs. It is an expensive product. I rate the pricing a seven out of ten.

See all answers

What needs improvement with XM Cyber?

XM Cyber could identify all areas of vulnerability. They could expand the identification span for different areas.

See all answers

Comparisons

RSA Archer vs SAP BusinessObjects GRC

Compared 29% of the time

ACL Analytics vs SAP BusinessObjects GRC

Compared 24% of the time

IBM OpenPages vs SAP BusinessObjects GRC

Compared 20% of the time

Security Weaver vs SAP BusinessObjects GRC

Compared 15% of the time

Oracle GRC Controls vs SAP BusinessObjects GRC

Compared 12% of the time

More SAP BusinessObjects GRC Competitors

Pentera vs XM Cyber

Compared 21% of the time

Cymulate vs XM Cyber

Compared 17% of the time

Wiz vs XM Cyber

Compared 14% of the time

SafeBreach vs XM Cyber

Compared 7% of the time

Qualys VMDR vs XM Cyber

Compared 6% of the time

More XM Cyber Competitors

Product Reports

Buyer's Guide

Continuous Controls Monitoring

May 2025

Download SAP BusinessObjects GRC product report

Buyer's Guide

Continuous Threat Exposure Management (CTEM)

June 2025

Download XM Cyber product report

Also Known As

BusinessObjects GRC

No data available

Overview

SAP GRC helps you automatically detect, remediate, and prevent access risk violations - no matter the industry or business size. Get real-time visibility into your current risk position, and confidently reduce unauthorized access, fraud, and the cost of compliance.

SAP

XM Cyber is a leading hybrid cloud security company that’s changing the way innovative organizations approach cyber risk. Our attack path management platform continuously uncovers hidden attack paths to your critical assets across cloud and on-prem environments, so you can cut them off at key junctures and eradicate risk with a fraction of the effort. This overcomes the big disconnect that security teams experience when they’re presented with endless alerts, yet can’t see which exposures impact risk the most, how they come together to be exploited by an attacker, or how to efficiently eliminate them. This approach is a complete game-changer, which is why some of the world’s largest, most complex organizations choose XM Cyber to help eradicate risk. Founded by top executives from the Israeli cyber intelligence community, XM Cyber has offices in North America, Europe, and Israel.

XM Cyber

Sample Customers

INEOS Melamines GmbH, Banco Galicia

Hamburg Port Authority, Plymouth Rock Corporation

Buyer's Guide

SAP BusinessObjects GRC vs. XM Cyber

June 2025

Free Report: SAP BusinessObjects GRC vs. XM Cyber

Find out what your peers are saying about SAP BusinessObjects GRC vs. XM Cyber and other solutions. Updated: June 2025.

DOWNLOAD NOW

859,129 professionals have used our research since 2012.

See our SAP BusinessObjects GRC vs. XM Cyber report.

See our list of best Continuous Controls Monitoring vendors.

We monitor all Continuous Controls Monitoring reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.