SAP Security Assessment is a service that verifies:
- SAP Architecture
- are best practices applied
- surface attack area
- SAP Technical setup
- SAP Basis parameters
- Transport Management System
- Encryption
- Security Processes
- vulnerability management
- threat detection
- risk management
- privileged access management
- Presence of some common risks
- Interfaces to external systems
The outcome is a detailed report that covers all identified problems, vulnerabilities and risks.
I perform hardening of:
- SAP S4/Hana
- SAP ERP
- all SAP Netweaver ABAP systems
- Hana DB
- SAP BTP
- technical components:
- SAP WebDispatcher
- SAP Connector
Privileged Access Management is a process to gain elevated privileges for a limited period of time.
I perform:
- review of existing policies and advice on improvements
- setup EAM process in SAP GRC
I advise on and setup the following security processes in SAP environments:
- vulnerability management
- threat detection
- privileged access management
- risk management