Cybersecurity Extension for SAP

SAP-Certified Cybersecurity Protection for SAP Systems

Prevent, detect and respond to breaches in your SAP systems with the Cybersecurity Extension for SAP^® Solutions

The Cybersecurity Extension for SAP^® Solutions automates vulnerability management, threat detection, and incident response to secure SAP platforms against advanced persistent threats. This includes known exploited vulnerabilities for SAP such as Log4J/Log4Shell, ICMAD, RECON and 10KBlaze.

The SAP-certified extension protects on-premise, cloud and hybrid SAP systems. It delivers near real-time security intelligence to detect vulnerabilities and indicators of compromise in SAP applications. The software is available as a subscription service.

The solution has been proven to integrate with the SAP NetWeaver ® technology platform via the ABAP add-on deployment certification. The solution helps to protect on-premise, cloud and hybrid scenarios like SAP S/4HANA and SAP HANA, along with ABAP and J2EE platforms.

65% of SAP platforms experience security breaches

Secure your SAP Migration to the Cloud Learn how the global pharmaceutical company Indivior securely migrated SAP systems to AWS with Layer Seven Security

Key Features

Remove blind spots in your security coverage without requiring additional hardware or installing agents in SAP systems.

Perform scheduled scans for thousands of vulnerabilities in SAP platforms including misconfigurations, missing patches and users with administrative privileges. Security checks are benchmarked against industry standards and SAP recommendations. Policies are regularly updated for emerging threats and vulnerabilities.

Prioritize threats to SAP systems based on risk and business impact. Filter, rank and sort the results of automated scans. Comment on findings for collaboration and remediation tracking. Export and share reports across your organization.

Monitor security KPIs using interactive dashboards. Dynamic visualizations provide real-time threat data for SAP vulnerabilities, security notes and open alerts. Drilldown from summarized results to detailed values. Filter and export results.

Detect missing security patches in real-time using a direct connection to SAP Support. Download and apply corrections. Perform change impact analysis to discover the impact of security notes.

Detect vulnerable cross-system connections that could be exploited to hop from breached systems to connected systems and compromise entire SAP landscapes. Analyze internal and external SAP traffic including Cloud connections. Automatically detect remote calls for vulnerable RFC-enabled function modules, URLs, and Web Services.

Continuously monitor event data in SAP logs for indicators of compromise (IOC). Monitor events in the security audit log, gateway server, message server, system log, read access log, STAD, change documents, SAProuter, HANA, and Java security log. Trigger alerts and email/ SMS messages for security incidents. Detect breaches of sensitive data including personal data for GDPR compliance.

Investigate security incidents using guided procedures for rapid response. Apply best practices and standard operating procedures for forensic investigations. Document findings, track investigations and archive results for auditing.

Automate gaps assessments for GDPR, PCI-DSS, SOX, NIST and other compliance frameworks.

Detect anomalies in system and user events using the Predictive Analysis Library (PAL) in SAP HANA.

Scan and secure custom SAP programs using test cases integrated with SAP Code Inspector (SCI) and ABAP Test Cockpit (ATC).

Integrate security alerts with SIEM systems including Splunk, QRadar, ArcSight, LogRhythm and Sentinel.