Search

In today’s rapidly evolving digital landscape, SAP systems serve as the nerve centers of many organizations, managing and processing a vast amount of sensitive data and critical operations. Given the importance of these systems, it’s imperative to maintain their security and resilience against potential threats. However, safeguarding an SAP environment is no small task; it…

Many enterprises rely on SAP applications to manage their essential operations in today’s digital world. As organizations undergo digital transformation and migrate to SAP S/4HANA, their SAP systems become more complex and are spread across multiple environments, increasing the risk of cyberattacks. The sheer number of assets and configurations can make it difficult for even…

Many companies have developed their authorization structures organically over time. As a result, users have often been given broader authorization privileges than necessary for their everyday work. This can pose a serious threat to data availability, integrity, and system availability. Authorization managers are increasingly recognizing the need for action to minimize the risk of SAP…

Pathlock is excited to unveil a new release of our Application Access Governance (AAG) product within our risk and compliance platform, Pathlock Cloud. This release marks a pivotal advancement in our mission to deliver the industry’s most comprehensive application GRC platform. Unlike other industry solutions focused on a single or limited number of applications, Pathlock…

SAP published seven new and two updated Security Notes for October 2023 Patch Tuesday. Relative to previous SAP Security Patch Day releases, this month’s release contains fewer patches overall and with lower than typical severity. Only one of these Security Notes received the HotNews maximum priority rating (CVSS scores ranging from 9.0 to 10.0). However,…

In today’s fast-changing business landscape, keeping pace with regulatory reforms is crucial, and the UK Corporate Governance Reform (also referred to as UK SOX) is no exception. For organizations aiming not just for compliance but also improved governance, risk management, and operational efficiency, exploring suitable solutions is essential. In this blog post, we’ll delve into…

SAP has been implementing a strategy for how users interact with its software for several years. Complex SAP applications are divided into role-based SAP Fiori apps to improve user-friendliness and enhance the user experience. Many companies are considering implementing these apps and must determine which authorizations their employees require to access them. In the following…

The Security Audit Log allows SAP customers to monitor users with extensive authorizations. This is particularly useful for ensuring compliance with both internal security policies and external legal requirements. The SAP standard tool gives an overview of critical activities relevant to security and logs them. Secure Logging with SAP Security Audit Log The SAP Security…

Most organizations today operate in a hybrid, multi-application environment. This also means that sensitive information and users who access this information are spread across applications. When this is the case, a crucial aspect of cybersecurity is managing access to those various applications. To tackle this challenge effectively, many organizations have turned to implementing cross-application access…