Name
B5. What You Don't Know About SAP Security Could Hurt You
Track
Security Management
Date
Tuesday, June 8, 2021
Time
11:15 AM - 12:15 PM
Description
Many organizations running the SAP system have hidden or misunderstood security issues that could result in significant harm if not addressed. In this session we will cover traditional issues related to the authorization concept, such as failure to understand that a focus on TCodes results in an incomplete security model or analysis, as well as emerging risks related to Fiori, Solution Manger, the HANA database, and even cybersecurity. Regardless of your depth of SAP security knowledge, this course is for you.
Learner Objectives
After completing this session, the learner will:
- Understand exactly what gets checked when a user runs an SAP transaction
- Be able to explain the multiple pathways to the SAP database and how to secure them
- See several common ways SAP controls and security mechanisms can be bypassed (via live demonstration)
- Learn the additional security risks that need to be considered in the move to SAP S/4HANA
- Be able to articulate why SAP cybersecurity risks are likely being missed in traditional assessments, and create a business case for shining a light on these issues
Speakers