SAP Data Security


What Is Data Security?

Data security is the practice of protecting data from unauthorized access, corruption, or theft throughout its lifecycle. Data security includes every aspect of information security, from the physical security of hardware and storage devices to administrative and access controls and application security. It also includes putting in place specific controls, standard policies, and procedures to protect data from a range of threats.

What Is SAP Data Security?

SAP security for the intelligence enterprise falls into four categories: identity and access governance, data protection and privacy, cybersecurity, and enterprise risk and compliance. In the data protection and privacy area, SAP has implemented a wide range of measures to help protect data controlled by SAP and its customers. These measures include:

What Is Data Security?

Data security is the practice of protecting data from unauthorized access, corruption, or theft throughout its lifecycle. Data security includes every aspect of information security, from the physical security of hardware and storage devices to administrative and access controls and application security. It also includes putting in place specific controls, standard policies, and procedures to protect data from a range of threats.

What Is SAP Data Security?

SAP security for the intelligence enterprise falls into four categories: identity and access governance, data protection and privacy, cybersecurity, and enterprise risk and compliance. In the data protection and privacy area, SAP has implemented a wide range of measures to help protect data controlled by SAP and its customers. These measures include:

  • Data Processing Agreements: SAP signs data processing agreements with its cloud services provider, which mirror the terms of SAP’s customer-facing data protection agreement and include standard contractual clauses (SCCs). SAP implements and maintains technical and organizational measures to adequately protect personal data.
  • Data Transfer Impact Assessments: SAP publishes FAQs to support customers with questions related to data transfer impact assessments when they are using SAP Cloud services.
  • Data Protection Management System: The SAP data protection management system uses SAP’s data protection controls framework for all internal data protection and privacy controls, which cover the requirements of international industry standards.
  • Internal Data Protection: SAP regularly trains employees and ensures data protection compliance with regular audits on the business and legal entity levels.

Further Resources for SAPinsiders

10 Best Practices for Enforcing Data Security, Control, and Consistency in the Software Logistics Process. In this article, security architect Kehinde Eseyin provides best practices, tips, and guidelines for ensuring that the process of making changes and transporting changed data in the SAP ABAP system is well secured against possible security threats and risks.

A Holistic Approach to Managing Cybersecurity & Protecting Your Data. This article provides tips and best practices to secure your data in the intelligent enterprise. SAP offers nearly a dozen solutions employed by many organizations — including SAP itself — to respond to compliance and security requirements and, in the event of a breach, minimize the impact, relates Bruce Romney, Senior Director of Product Marketing for SAP Governance, Risk and Compliance (GRC) and Security Solutions.

Overview of SAP Cybersecurity and Data Protection Solutions. In this presentation, Arndt Lingscheid, Global Solution Owner Cybersecurity and Data Protection at SAP SE, details steps organizations can take to secure the SAP S/4HANA business application environment.

Vendors that can assist SAP customers with data security include: Appsian Security, Capgemini, Fastpath, HPE, Intel, Kyriba, Layer Seven Security, NetApp, Onapsis, Rackspace, Saviynt, Security Weaver, Thales, Virtustream, Xiting, and Xpandion.

 

44 results

  1. Protect Your SAP HANA Environment: Live Q&A on Security Best Practices

    Reading time: 23 mins

    Rapid data center and infrastructure advancements have created endless new opportunities – especially for those who are now live on SAP HANA or SAP S/4HANA. However, now that you’re live, how do you protect your investment? Are you automating OS patch deployment and compliance across your SAP landscape? Are you looking to decrease total cost...…

  2. The Impact of PCI-Validated P2PE

    Reading time: 5 mins

    Join Delego and Bluefin for an upcoming webinar ‘Securing SAP with PCI-Validated P2PE’ on June 15, 11:00 a.m. ET. The State of Data Security In the past few years, the rate of merchant data breaches has grown dramatically. In many cases—from high-profile merchant breaches such as Target and Home Depot to much smaller ones—forensic investigations…

  3. How to Identify What Sensitive Data is Leaking Out of Your SAP System

    Reading time: 10 mins

    Every day users extract potentially business-critical information (such as personally identifiable information [PII], financial and sales figures, new product specifications, and much more) from SAP applications for the purpose of reporting, analytics, and collaboration. Access to data stored inside SAP applications is strictly regulated by roles and authorizations. However, data that can be viewed can...…

  4. How to Protect Your Data from Today’s Biggest Cybersecurity Threats: Q&A on Managing Security in Your SAP Landscape

    Reading time: 28 mins

    Modern enterprises are facing a perfect storm of increasingly sophisticated technology, changing regulations, and cybersecurity attacks that are rapidly growing in their scale, scope, and speed. In today’s technology landscape, cloud and mobile connectivity to SAP systems demand more than just network firewalls and perimeters to effectively protect your applications, and auditors and compliance managers...…