The global and independent platform for the SAP community.
Community News, Scene

SAP data security in the digital age

Digital platforms such as SAP S/4 Hana and increasing application integration present SAP security managers with new challenges. If you want to effectively secure intellectual property and sensitive data in the future, you need to think beyond system boundaries and establish new data-centric security concepts. A new guide from SECUDE shows what companies can do in the medium and long term to secure processes against data misuse across all systems and to ensure the...
Holger Hügel, Secude
10 October 2017
Content:
Figure guide
avatar
This text has been automatically translated from German to English.

The challenge of system integration

Digitized processes know no system boundaries. Using modern development platforms such as SAP S/4 Hana, thousands of sensitive data are exported from SAP to other applications, such as Microsoft Office, every day without any control.

Traditional, role-based authorization concepts reach their limits here and confidential files quickly fall into the hands of cyber criminals or insiders - whether intentionally or accidentally.

According to a Bitkom study, more than half of German companies have already been victims of industrial espionage, sabotage or data theft in the last two years - a financial loss of almost 55 billion euros per year.

The leaks are often found within the company's own ranks. 62% of the almost 600 companies surveyed stated that the relevant actions originated from their own employees. 41% confirmed corresponding activities from their business environment (competitors, customers, suppliers, service providers). [1]

Increasing pressure to act due to new EU GDPR

Although politicians are trying to curb data misuse with measures such as the EU GDPR, most companies are not yet up to the far-reaching, cross-process documentation obligations for personal data.

Although the law has already come into force and the transition phase is only due to last until May 2018, most companies feel ill-prepared. [2]

Some CIOs have even ordered the topic to be ignored altogether. A decision that could prove fatal for them. After all, those who fail to comply with the new requirements risk high fines of up to 20 million euros or four percent of their annual global turnover. [3]

Regaining control and rethinking for the long term

In order to effectively secure SAP data in the digitalized world, companies must first regain control over cross-system data flows.

Those responsible must know who exports which data and when, and ensure that it is protected across all applications. The same applies to background data transfer between SAP and other systems such as Microsoft or Oracle.

In the long term, the company-wide IT security concepts should also be reconsidered - from the type of data provision to the expansion of the role-based authorization system to include new, context-related data security concepts.

Holger Huegel

https://e3mag.com/partners/secude-gmbh/

To the guide:
http://bit.ly/2xzyUrN

References:
[1] Economic protection in the digital world, Bitkom study 2017
[2] GDPR Report, Veritas Study 2017
[3] EU General Data Protection Regulation (EU GDPR), EU Regulation 2016

avatar
Holger Hügel, Secude

Holger Hügel is Vice President Products and Sercvices at Secude


All articles of the author

Write a comment

SAP and Nvidia

Purchase requisition: SAP Ariba Guided Buying

All for One announces Rise One

Working on the SAP basis is crucial for successful S/4 conversion. 

This gives the Competence Center strategic importance for existing SAP customers. Regardless of the S/4 Hana operating model, topics such as Automation, Monitoring, Security, Application Lifecycle Management and Data Management the basis for S/4 operations.

For the second time, E3 magazine is organizing a summit for the SAP community in Salzburg to provide comprehensive information on all aspects of S/4 Hana groundwork. All information about the event can be found here:

SAP Competence Center Summit 2024

Venue

Event Room, FourSide Hotel Salzburg,
At the exhibition center 2,
A-5020 Salzburg

Event date

June 5 and 6, 2024

Regular ticket:

€ 590 excl. VAT

Venue

Event Room, Hotel Hilton Heidelberg,
Kurfürstenanlage 1,
69115 Heidelberg

Event date

28 and 29 February 2024

Tickets

Regular ticket
EUR 590 excl. VAT
The organizer is the E3 magazine of the publishing house B4Bmedia.net AG. The presentations will be accompanied by an exhibition of selected SAP partners. The ticket price includes the attendance of all lectures of the Steampunk and BTP Summit 2024, the visit of the exhibition area, the participation in the evening event as well as the catering during the official program. The lecture program and the list of exhibitors and sponsors (SAP partners) will be published on this website in due time.