Introducing ESNC Security Suite

Scan SAP Systems for Security Vulnerabilities  | Detect and Respond to SAP Attacks

Comprehensive overview of your SAP security landscape

ASSESS | PROTECT | DETECT | FIX

Secure Your SAP systems and ABAP Code

Secure SAP Hana, SAP ABAP, SAP Java, SAP Router and many other SAP technologies which are powering your business.

Have Complete Visibility of Your SAP Security Posture

Utilize our enterprise dashboards to gain real-time insights into the security status of your entire SAP landscape, whenever you need them.

Stay Up-to-date Against Latest Threats

SAP security and attacks evolve. ESNC Security Suite is regularly updated against most current SAP specific threats for protecting your systems.

ESNC Security Suite Modules

Choose what is the best for you

A01 – Audit and Assessment for SAP

Our Audit & Assessment module empowers you to prioritize business risks through technical analysis of your SAP infrastructure and comprehensive segregation of duties (SoD) assessment. This approach tackles both insider threats and external attack vectors originating from the internet.

P01 – SAP Penetration Testing

Black box SAP vulnerability testing / SAP penetration testing is an important part of the security lifecycle. Simulate real-life attacks and enhance security awareness among key stakeholders with our penetration testing module.

A02 – GDPR, SoX, ISO27001, PCI-DSS and Compliance of SAP Systems

Ensure your SAP system compliance against the latest industry standards such as EU-GDPR, ISO27001, SoX, and PCI-DSS. Implement custom rules and checklists for your organization's specific compliance frameworks, and establish baselines for ongoing monitoring and enforcement.

C01 – ABAP Code Security Assessment

Ensuring the security of custom ABAP developments, including SAPUI5 applications and Fiori elements, is a significant challenge for large enterprises. Our module streamlines the testing process, enabling you to proactively identify and mitigate critical security vulnerabilities such as ABAP code injections or unauthorized privilege escalations before they impact your production environment.

A03 – Remediation and Risk Management

Our SAP risk management module enhances SAP authorization and segregation of duties functionality, providing landscape-based dashboards with drill-down capabilities.  This enables simplified risk assessments with increased analysis capabilities, maximizing the value of SAP scan results and streamlining SAP security review projects.

R01 – Real-Time Monitoring & SAP Fraud Detection and Prevention with Enterprise Threat Monitor

Enterprise threat detection is a prerequisite for any proper SAP security implementation. SAP security actions must focus on detecting hacking attempts and on prevention of any security breaches. Please refer to www.enterprise-threat-monitor.com for more information

A04 – Security Policy Enforcement

Policy enforcement is crucial for maintaining a secure SAP environment. Accidental misconfigurations during system changes, like adding new application servers, or improper hardening of new SAP systems can introduce vulnerabilities. Establish clear organizational security policies and implement automated alerts to notify the appropriate teams immediately in case of any violations.

R02 – Enterprise Threat Monitor SIEM Integration Add-on

Proactively collect and correlate SAP event information, automatically forwarding it to any SIEM solution in its native format. ESNC's extensive research and SAP expertise guarantees accurate and timely delivery of critical events to your SIEM, enabling effective security monitoring and incident response.

Did you Know?

Often attackers start from the weakest link in the chain such as test and development systems. At an average 7% of the users on these systems have the same password in production. When an attacker breaches a test system, it is likely that it can jump to a QA or Prod system in many cases.

Integration Scenarios with Your SAP Landscape

ESNC offers extensive integration capabilities tailored to your specific ESNC application usage. Some integrations, like SIEM, are seamless and ready to use out of the box. Others may require minor customization for features such as personalized pre-correlation of SIEM events or integrating SAP Workflow for issue tracking and real-time event monitoring. For advanced integrations with BO-BW or embedding Risk Management dashboards into your Enterprise Portal, our professional services can provide tailored customization.

ESNC Security Suite Software Licensing & Support

ESNC Security Suite refers to independent applications developed by ESNC which offer subscription licensing model (licensing rental) based on various parameters. Please contact us for options specific to your SAP environment and requirements.

Support and Maintenance

Standard Support and Maintenance

Covers release updates, definition updates and email support during regular business days.

Enterprise Support and Maintenance

Only available with enterprise license. Please contact us for more information.

Platinum Support and Maintenance

For our enterprise customers which have mission critical landscapes, we offer platinum support. Please contact us for more information.

ESNC Security Suite for SAP NetWeaver and S4/Hana – Module [A01]

In-Depth SAP Vulnerability Assessment

A01 – Comprehensive SAP Audit Tool and Sap Vulnerability Scanner for Securing Large Enterprises

Our Audit & Assessment module allows you to focus on business risks via technical assessment of your SAP infrastructure and segregation of duties analysis (SoD), where the focus is both on insider threats and Internet based attack vectors.

ESNC offers the most comprehensive SAP security audit software available, enabling rapid analysis of numerous SAP systems for critical security issues. Streamline your SAP security reviews and significantly reduce the time required to identify and address vulnerabilities.

Our SAP security scanner module conducts in-depth analysis of your SAP systems, security configurations, user authorizations, and various other components during an SAP audit. It generates comprehensive SAP system security health check reports, empowering you to implement industry best practices and enhance the security posture of your SAP environment.

ESNC Security Suite for SAP® NetWeaver™ and S4/Hana® Audit and Assessment Module Benefits for SAP Vulnerability Assessments and SAP Security Audits:

Transparent overview of your current SAP security issues.
Regularly updated with latest SAP security publications.
Easy to understand results with instructions on how to fix.
Verify your change/configuration management processes with SAP security scan results.
Check and view secinfo/reginfo configuration, SAP system security parameters, message server configuration, SAP systems patching, Oracle DB security settings, SAP Hana security and many more.
Get detailed information based on SAP SE’s recommendations and references on how to fix your SAP security issues after each SAP security scan.

ESNC SAP Security Audit and Assessment module includes hundreds of checks including the following:

SAP Gateway Security Configuration including ACL Analysis
SAP Hana Security
SAP Message Server Configuration
SAP Single Sign-on security
SoD (Segregation of Duties) conflicts – User Authorizations Analysis
JMS, SAP Management Console and Relevant Components’ security
Missing SAP Security Patches/Notes
SAP Router Security
Enterprise Portal Security
SAP Security Audit Log Configuration Analysis
RFC / Soap-RFC Enabled Applications Security
SAP Payment Card Interfaces Security (PCI)

ESNC Security Suite for SAP – Module [A02]

SAP GDPR, ISO27001, PCI-DSS, SoX (Sarbanes-Oxley) and Industry Specific Compliance

A02 – ISO27001, PCI-DSS, and Compliance of your SAP Systems

Check your SAP system compliance against industry standard compliance frameworks such as ISO27001, SoX, PCI-DSS 3.0 and more. Easily implement rules and checklists for your organizational compliance frameworks and baselines

ESNC Security Suite SAP Compliance Module Benefits:

Check your SAP systems against ISO27001 compliance issues
Check your SAP systems against SoX (Sarbanes-Oxley) compliance issues
Check your PCI related SAP systems and payment interfaces against PCI-DSS 3.0 compliance (new)
Integrate with your existing compliance frameworks to get/update your ISO27001 maturity from all ISO domains
Apply best practices including ISACA or DSAG SAP security recommendations
Get detailed information based on SAP SE’s recommendations and references on how to fix your SAP security issues after each SAP security scan.
Configure your internal SAP security guidelines or Gold Standard
Get reports showing the compliance status of your SAP systems

ESNC Security Suite for SAP – Module [A03]

SAP Risk Management and Remediation

A03 – Remediation and Risk Management

The Risk Management module adds enhanced SAP authorization/segregation of duties functionality and landscape based dashboards which you can drill-down. It allows easier risk assessments with its increased analysis capability and supports you in getting the most out of SAP scan results and simplifies SAP security review projects significantly.

ESNC Security Suite SAP Risk Management Module Benefits:

Focus on all of your SAP systems’ security and their users from a single interface where you can easily group and filter SAP security issues based on your priorities. Enables horizontal and vertical issue solving e.g. focusing on a single issue on all systems or focusing on all security issues of a single system
Develop mitigation plans based on the SAP assessment results.
Trigger actions in SAP Workflow [see ESNC Security Suite integration]
Re-prioritize SAP security issues, create security acceptances (variances/exceptions), be notified when the variances/security exceptions expire
After each SAP scan, access numerous charts which can be used in enterprise dashboards and SAP system progress tracking.

ESNC Security Suite for SAP – Module [A04]

Security Policy Enforcement on SAP Systems

A04 – Security Policy Enforcement

Real time policy enforcement is an important process to remain in a secure state. Accidental changes when adding a new application server instance to the SAP system can lead to insecure/misconfigured SAP settings becoming productive. New SAP systems can be setup without adhering to company policies. Define and setup organizational security policies and provide notifications when policies are in-compliant.

ESNC Security Suite SAP Security Policy Enforcement Module Benefits:

Define your security baselines and enforcement policies
Define system groups and categories for communication
Setup alerts to relevant teams when a violation occurs

ESNC Security Suite for SAP – Module [P01]

SAP Penetration Testing and Blackbox Vulnerability Assessment

P01 – SAP Penetration Testing – ESNC Penetration Testing Suite

Assurance testing / SAP penetration testing is an important part of the security lifecycle. Simulate attackers and increase awareness using our penetration testing module

ESNC Security Suite SAP Penetration Testing Module Benefits:

Perform blackbox SAP security analysis and penetration testing with zero configuration on your systems.
Enable a wide range of unauthenticated and authenticated attacks.
Optimized for speed and efficiency—capable of analyzing over 1,000 SAP systems in under an hour.
Detect traces of shadow IT within your network.
Use the ABAP injection toolkit to demonstrate ABAP code injection vulnerabilities.
Conduct attacks targeting SAP Gateways, cryptographic components, RFC, ABAP and Java AS systems, ICF/ITS web services, and more.
Simulate attacks on SAP single sign-on systems, potentially allowing access to ABAP and Java systems without password authentication.

ESNC Security Suite for SAP – Module [C01]

ABAP Code Security and Vulnerability Assessment

C01 – ABAP Code Security Assessment & Correction

Ensuring the security of custom ABAP developments, including SAPUI5 applications and Fiori elements, is a challenge for large enterprises. Our module streamlines the testing process, allowing you to proactively identify and mitigate critical security vulnerabilities such as ABAP code injections or unauthorized privilege escalations before they impact your production environment.

ESNC Security Suite ABAP Code Security Module Benefits:

Analyze your current state of ABAP security
Find out if your custom ABAP code applies best practices
Detect common attack scenarios based on code vulnerabilities
Establish trends and see progress

ESNC Security Suite for SAP – Module [R01]

Real-Time Threat Monitoring and Fraud Detection on SAP systems

R01 – Real-Time Threat Monitoring & SAP Fraud Detection and Prevention with Enterprise Threat Monitor™

Enterprise threat detection is critical for ensuring proper SAP security incident monitoring and response. SAP security efforts must focus on detecting hacking attempts and on prevention of any security breaches. Our module R01 (Enterprise Threat Monitor) contains numerous threat monitoring cases and it detects SAP hacking activities in real-time. Customers focused on fraud detection on SAP can use license the advanced version of Enterprise Threat Monitor or the Fraud Detection Add-on, which comes with many built-in SAP fraud cases related to general ledger, procure to pay, order to cash and inventory processes – ready to run. Using ETM, SAP customers can detect attacks and ensure SAP security and SAP fraud incidents are investigated on time.

Enterprise Threat Monitor Benefits:

Monitor the security of your SAP systems 7/24
Be informed of attacks and breaches
Detect when someone downloads business critical information such as customer information, payroll data, pricing, financial reporting and/or profit margins
Detect when a user is added to a production system via unauthorized users
Detect when certain transactions are executed on production systems
Detect when production systems are opened for changes and modification
Build a safety net based on business processes e.g. automatically detect suspicious access SAP users when the associated employees are terminated in SAP HR
Detect business related fraud scenarios such as a user changing a vendor bank account and posting an invoice to it
Detect violations of four-eyes principles
Automatically block many types of SAP specific attacks via blocking users in SAP system or by triggering firewall/switch/IPS block rules
Inform relevant incident response teams via automated processes
Easily customize rules based on your organizational requirements

Announcing:

Enterprise Threat Monitor as a managed security service. See how you can leverage MSS and AI automation to reduce cost of SAP security monitoring.

ESNC Security Suite for SAP – Module [R02]

SAP SIEM Integration

R02 – SAP SIEM Integration

Pre-collect and pre-correlate your SAP event information and automatically send this to any SIEM solution in its native format. ESNC’s long research and SAP background ensures that you get the right events in real time pushed into your SIEM solution.

ESNC Security Suite SAP SIEM Integration Module Benefits:

Integrate the results of pre-correlated SAP real-time monitoring analysis and fraud detection results to SIEM products
Define actions such as creating ServiceNow tickets based on the detection results
SAP ArcSight integration with HP ArcSight native format
SAP QRadar integration Supports IBM QRadar Leef format
SAP Splunk integration uses Splunk’s HTTPs event collector
Supports TCP/UDP/SSL Syslog formats for integrating with any SIEM solution including McAfee SIEM and LogRhythm SIEM
Support for load balancing, event thresholds and many other features

Stay Up-to-date Against Latest Threats

SAP security and attacks evolve. ESNC Security Suite is regularly updated against most current SAP specific threats for protecting your systems.