ESNC Security Suite Modules
Choose what is the best for you
Secure SAP Hana, SAP ABAP, SAP Java, SAP Router and many other SAP technologies which are powering your business.
With our enterprise dashboards, see the current status of your SAP security based on information of all your SAP systems, whenever you need it.
SAP security and attacks evolve. ESNC Security Suite is regularly updated against most current SAP specific threats for protecting your systems.
Choose what is the best for you
Our Audit & Assessment module allows you to focus on business risks via technical analysis of your SAP infrastructure and segregation of duties assessment (SoD), where the focus is both on insider threats and Internet based attack vectors.
Black box SAP vulnerability testing / SAP penetration testing is an important part of the security lifecycle. Simulate real-life attacks and increase security awareness of key stakeholders using our penetration testing module.
Check your SAP system compliance against latest versions of industry standard compliance frameworks such as EU-GDPR, ISO27001, SoX, PCI-DSS and more. Easily implement rules and checklists for your organizational compliance frameworks and create baselines
Securing self developed ABAP programs, BSP pages, and DynPros is a big challenge for large organizations. With this module, any code that needs to go to production can be easily tested and critical security issues such as ABAP injection or privilege escalation can be addressed before any incident takes place.
Our SAP risk management module adds enhanced SAP authorization/segregation of duties functionality and landscape based dashboards which you can drill-down. It allows easier risk assessments with its increased analysis capability and supports you in getting the most out of SAP scan results. It simplifies SAP security review projects significantly.
Enterprise threat detection is a prerequisite for any proper SAP security implementation. SAP security actions must focus on detecting hacking attempts and on prevention of any security breaches. Please refer to www.enterprise-threat-monitor.com for more information
Policy enforcement is a critical step to remain in a secure state. Accidental changes when adding a new application server instance to the SAP system can lead to insecure/misconfigured SAP settings becoming productive. New SAP systems can be setup without proper hardening. Define organizational security policies and ensure right teams are informed as soon as a violation occurs.
Pre-collect and pre-correlate your SAP event information and automatically send this to any SIEM solution in its native format. ESNC’s long research and SAP background ensures that you get the right events in real time pushed into your SIEM solution.
Often attackers start from the weakest link in the chain such as test and development systems. At an average 7% of the users on these systems have the same password in production. When an attacker breaches a test system, it is likely that it can jump to a QA or Prod system in many cases.
ESNC Security Suite refers to independent applications developed by ESNC which offer subscription licensing model (licensing rental) based on various parameters. Please contact us for options specific to your SAP environment and requirements.
Covers release updates, definition updates and email support during regular business days.
Only available with enterprise license. Please contact us for more information.
For our enterprise customers which have mission critical landscapes, we offer platinum support. Please contact us for more information.
ESNC supports many integration scenarios, based on the ESNC applications used. Some of this integration such as SIEM integration works out of the box and some integration might require minor customization e.g. for customized pre-correlation for SIEM events or for issue tracking/deadline monitoring with SAP Workflow for security issues or real-time events. Also some customization via professional services is required for BO-BW integration and/or Enterprise Portal integration of the Risk Management dashboards.
Our Audit & Assessment module allows you to focus on business risks via technical assessment of your SAP infrastructure and segregation of duties analysis (SoD), where the focus is both on insider threats and Internet based attack vectors.
The ESNC provides the most comprehensive SAP security audit software to date. Analyzing many SAP systems for critical security issues is only a few clicks away. SAP security reviews can be completed much faster now.
Our SAP security scanner module analyzes your SAP systems, their security configurations, SAP user authorizations and many other SAP components during an SAP audit. It creates SAP system security health check reports, which you can use for applying security best-practices to your SAP systems.
Check your SAP system compliance against industry standard compliance frameworks such as ISO27001:2013, SoX, PCI-DSS 3.0 and more. Easily implement rules and checklists for your organizational compliance frameworks and baselines
The Risk Management module adds enhanced SAP authorization/segregation of duties functionality and landscape based dashboards which you can drill-down. It allows easier risk assessments with its increased analysis capability and supports you in getting the most out of SAP scan results and simplifies SAP security review projects significantly.
Real time policy enforcement is an important process to remain in a secure state. Accidental changes when adding a new application server instance to the SAP system can lead to insecure/misconfigured SAP settings becoming productive. New SAP systems can be setup without adhering to company policies. Define and setup organizational security policies and provide notifications when policies are in-compliant.
Assurance testing / SAP penetration testing is an important part of the security lifecycle. Simulate attackers and increase awareness using our penetration testing module
Securing self developed ABAP programs, BSP pages, and DynPros is a difficult task for large organizations. With this module, any code that needs to go to production can be easily tested and critical security issues such as ABAP injection or privilege escalation can be addressed before any incident takes place.
Enterprise threat detection is critical for ensuring proper SAP security incident monitoring and response. SAP security efforts must focus on detecting hacking attempts and on prevention of any security breaches.
Our module R01 (Enterprise Threat Monitor) contains numerous threat monitoring cases and it detects SAP hacking activities in real-time. Customers focused on fraud detection on SAP can use license the advanced version of Enterprise Threat Monitor or the Fraud Detection Add-on, which comes with many built-in SAP fraud cases related to general ledger, procure to pay, order to cash and inventory processes – ready to run.
Using ETM, SAP customers can detect attacks and ensure SAP security and SAP fraud incidents are investigated on time.
Announcing: Enterprise Threat Monitor as a managed security service. See how you can leverage MSS to reduce cost of SAP security monitoring.
Pre-collect and pre-correlate your SAP event information and automatically send this to any SIEM solution in its native format. ESNC’s long research and SAP background ensures that you get the right events in real time pushed into your SIEM solution.