flyingpigtechnologies.com

What It Is

Flying Pig Technologies is an enterprise software/services provider focused on compliance and audit automation. Its stated mission is to use AI/ML-assisted solutions to improve the efficiency, accuracy, and reliability of SOX IT audits, SOC2 reporting, control testing, and monitoring. Its current product direction is centered mainly on SAP Fire Fighter (FF) Analyzer, while it also offers consulting services for cybersecurity compliance, data privacy, and framework implementation.

Core Features and Enterprise Capabilities

SAP FF Analyzer is its flagship tool, designed for reviewing Fire Fighter sessions in SAP GRC environments. The website emphasizes that it reviews the “entire population” rather than relying on sampling, and uses 3 GRC tables to produce auditable analysis results. Key outputs include: identifying sessions with activity where no review workflow was initiated, identifying records with both activity and a review workflow but missing approval, tracking activities that remain unreviewed beyond the required timeframe, and using rules to prevent new sessions from being opened when incomplete reviews exist. On the services side, it covers frameworks such as SOX, SOC1, SOC2, ISO 27001, NIST, HITRUST, COSO, and COBIT, as well as DPIA, data flow mapping, and privacy policies.

Pricing and Delivery Information

The website does not disclose plans, unit pricing, billing cycles, implementation fees, or payment methods. It also does not clarify cloud deployment, self-hosting, API availability, permission management, SLA terms, or standard support channels. SAP FF Analyzer is described as a beta launch, suggesting the product may still be in an early validation stage. There is also no clear policy on a free version or trial.

Pros and Cons

Its main advantage is that it targets a highly specific use case, addressing common issues in SAP GRC Fire Fighter audits such as full-population checks, missing approvals, and review timeliness. Compared with manual sampling, it is theoretically better suited to organizations with strict audit trail requirements. Its consulting services cover multiple mainstream compliance frameworks, making it easier to move from issue discovery to remediation. The downside is the lack of public information: there are no customer cases, UI details, deployment architecture, integration lists, or security certification disclosures. Enterprise buyers would need to conduct substantial due diligence before procurement.

Who It’s For and Access from China

It is best suited to mid-sized and large enterprises using SAP GRC that need to handle SOX IT controls or Fire Fighter reviews, as well as organizations preparing for compliance efforts such as SOC2 or ISO 27001. The website does not provide information about access from China, and both network connectivity and payment methods are unknown. For domestic deployment in China, key considerations should include SAP data cross-border transfer, privacy compliance, implementation support, and local alternatives. Comparable options include AuditBoard, Workiva, ServiceNow GRC, OneTrust, Drata, Vanta, or native SAP GRC capabilities.