The service, conducted remotely and without consultants, will check customers' SAP applications for security vulnerabilities.
SAP on Wednesday unveiled a service, SAP Security Optimization, that offers automated security-configuration checks for customers' software.
The one- to two-day evaluations, conducted remotely, search for vulnerabilities in SAP applications and middleware, interfaces and gateways to partners' systems, and user authorizations. Upon completion, customers receive a report and recommendations, similar to what SAP offers through its consulting group, but without the consultants.
"One reason we did this was we had an ever-growing demand in our consulting group [for security evaluations], and we weren't able to meet that demand," says Sachar Paulus, the company's chief security officer. Customers are increasingly connecting enterprise-resource-planning, customer-relationship-management, and other applications internally and with business partners, which complicates security issues, Paulus says.
Legal compliance issues have contributed to customers' need for more thorough security reviews, Paulus says. And hackers represent a related concern, he says. "We see some members of the hacker community showing more interest in ERP systems."
5 Top Federal Initiatives For 2015As InformationWeek Government readers were busy firming up their fiscal year 2015 budgets, we asked them to rate more than 30 IT initiatives in terms of importance and current leadership focus. No surprise, among more than 30 options, security is No. 1. After that, things get less predictable.