The service, conducted remotely and without consultants, will check customers' SAP applications for security vulnerabilities.
SAP on Wednesday unveiled a service, SAP Security Optimization, that offers automated security-configuration checks for customers' software.
The one- to two-day evaluations, conducted remotely, search for vulnerabilities in SAP applications and middleware, interfaces and gateways to partners' systems, and user authorizations. Upon completion, customers receive a report and recommendations, similar to what SAP offers through its consulting group, but without the consultants.
"One reason we did this was we had an ever-growing demand in our consulting group [for security evaluations], and we weren't able to meet that demand," says Sachar Paulus, the company's chief security officer. Customers are increasingly connecting enterprise-resource-planning, customer-relationship-management, and other applications internally and with business partners, which complicates security issues, Paulus says.
Legal compliance issues have contributed to customers' need for more thorough security reviews, Paulus says. And hackers represent a related concern, he says. "We see some members of the hacker community showing more interest in ERP systems."
IT's Reputation: What the Data SaysInformationWeek's IT Perception Survey seeks to quantify how IT thinks it's doing versus how the business really views IT's performance in delivering services - and, more important, powering innovation. Our results suggest IT leaders should worry less about whether they're getting enough resources and more about the relationships they have with business unit peers.
What The Business Really Thinks Of IT: 3 Hard TruthsThey say perception is reality. If so, many in-house IT departments have reason to worry. InformationWeek's IT Perception Survey seeks to quantify how IT thinks it's doing versus how the business views IT's performance in delivering services - and, more important, powering innovation. The news isn't great.