Search

SAP published seven new and two updated Security Notes for October 2023 Patch Tuesday. Relative to previous SAP Security Patch Day releases, this month’s release contains fewer patches overall and with lower than typical severity. Only one of these Security Notes received the HotNews maximum priority rating (CVSS scores ranging from 9.0 to 10.0). However,…

Pathlock is excited to unveil a new release of our Application Access Governance (AAG) product within our risk and compliance platform, Pathlock Cloud. This release marks a pivotal advancement in our mission to deliver the industry’s most comprehensive application GRC platform. Unlike other industry solutions focused on a single or limited number of applications, Pathlock…

Many companies have developed their authorization structures organically over time. As a result, users have often been given broader authorization privileges than necessary for their everyday work. This can pose a serious threat to data availability, integrity, and system availability. Authorization managers are increasingly recognizing the need for action to minimize the risk of SAP…

Many enterprises rely on SAP applications to manage their essential operations in today’s digital world. As organizations undergo digital transformation and migrate to SAP S/4HANA, their SAP systems become more complex and are spread across multiple environments, increasing the risk of cyberattacks. The sheer number of assets and configurations can make it difficult for even…

What Is SAP GRC? SAP Governance, Risk, and Compliance (SAP GRC) is a set of SAP solutions that enable organizations to meet data security and compliance standards. These solutions also provide control mechanisms to manage and mitigate risk. SAP GRC consists of four major components and multiple modules that manage risks, controls, identities, cyber threats,…

SAP published three new and three updated Security Notes for November 2023 Patch Tuesday. Like last month, this month’s release is relatively quiet in terms of number of patches and severity. Only two Security Notes received the HotNews maximum priority rating (CVSS scores ranging from 9.0 to 10.0). One HotNews note is new, and one…

Workday is a widely used cloud-based enterprise software platform designed to manage various aspects of an organization’s workforce, including HR, payroll, and finance. Given the sensitive nature of the data that is accessed and transactions that are performed within Workday, it has become the focus of security and compliance initiatives for many organizations, especially when…

In today’s world, keeping sensitive data safe is more important than ever. One way large and medium-sized businesses do this is by using an Application Access Governance (AAG) solution. This solution helps ensure that only the right people can access important information, which is crucial for keeping data secure, ensuring regulatory compliance, and mitigating access…

The DoD ZT-RA, or Department of Defense Zero Trust Reference Architecture, plays a pivotal role as a crucial framework for the Department of Defense in its mission to protect sensitive data, operations, and assets from a diverse range of cyber threats. Unlike traditional security models that rely on the assumption of trustworthiness within the network,…