SAP security can only be sustained with proper business processes and security governance.
Many of our customers have more than a hundred SAP systems within their enterprise. Securing the complete SAP landscape is a much bigger challenge than focusing on a small number of individual SAP systems.
We work together with our customers to develop customer specific SAP security hardening guideline documents, which they can apply globally. The guidelines cover ABAP security, SAP JAVA security and the SAP BASIS security part. They help aligning business requirements with proper security controls enterprise-wide and they are the main input for security enforcement.
After the initial implementation, our customers use our SAP security products for verifying their systems against the SAP security standards documents and their other internal policy requirements. The complete process is documented according to the requirements and the results show progress accomplished in each specific area. Thanks to this iterative process and support of the security tools, SAP security and compliance can be accomplished in a much shorter time frame compared to individual efforts.