How to Improve the Security of Personal and Confidential Data Using Attribute-Based Access Control (ABAC)

Case Study of NextLabs Zero-Trust Data-Centric Security Software

Reading time: 1 mins

Key Takeaways

⇨ NextLabs helps enterprise streamline role management through automation using policies.

⇨ NextLabs solutions support data masking, and dynamic authorization of business transactions allowing for regulatory compliance.

⇨ NextLabs out-of-the-b0x support for leading enterprise and cloud applications including SAP ECC, SAP S/4HANA, SAP BW, and SAP HANA

Petróleo Brasileiro S.A., commonly referred to by its acronym Petrobras, is a Brazilian multinational corporation headquartered in Rio de Janeiro, Brazil. Petrobras is a publicly-held corporation that operates in an integrated and specialized manner in the oil, natural gas, and energy industry. Ensuring access to business-critical data on a need-to-know basis is a crucial aspect for companies to ensure their information is protected from data loss. For Petrobras, their need to improve the security of their confidential data and personal data was overcome through NextLabs’ solutions which used attribute-based access control (ABAC) and dynamic authorization technology. This dynamic approach not only addressed Petrobras’ need to remain in compliance and maintain agility with the advancement of new regulations for the protection of personal data and business-critical data; the approach also helped automate role provisioning, strengthen SAP security profiles, as well as improving data management and access control.

As part of its digital transformation strategy, Petrobras started the #trans4mar Project in 2019. The objective was to convert its SAP ERP from ECC to S/ 4HANA, along with the review and improvement of some selected business processes. Petrobras IT with the support of Deloitte and Nextlabs resources, worked in tight collaboration to implement the primary deliverable of Nextlabs SAP DAM within four months to quickly deploy and meet the data governance-initiatives set forth. With this zero-trust data-centric approach using SAP DAM, Petrobras is now able to ensure fine-grained access control for applications that create, store, or modify personal data. To further SAP ERP protect privacy, data is dynamically masked on transaction fields where personal data is present. This is taken one step further, by also dynamically segregating data for reports, ensuring that personally identifiable information (PII) and business-critical data are protected, helping maintain data privacy.

Click below to learn more!

Explore related questions


More Resources

See All Related Content