ERPScan: SAP Security Made Easy

Although modern SAP systems are robust, they can be susceptible to internal frauds and cyber attacks. SAP systems facilitate mammoth storages and operations like procurements, stock resource management, human resource management, and financial reports along with related data mines. “Security is an important aspect and it demands seamless attention if it has to function and protect information as expected by a business,” says Alexander Polyakov, CTO and Co-Founder, ERPScan. Enabling and maintaining security is inherently complex, especially since it is highly customizable with its long list of parameters. The complexity is amplified by the fact that almost every new SAP vulnerability is traditionally solved by installing an additional option with its own set of parameters, which usually leads to new and complex relations between settings. These complicate pre-existent settings and its functions, pushing SAP specialists to work through a series of manuals to get the system working. Hence, the demand for SAP system security specialists is huge, and continues to grow.

Headquartered in Palo Alto, CA, ERPScan makes it a mission to close the gap between technical and business security. The company offers automated solutions that cover all areas of SAP security with a unified platform and allows customers to correlate data from different areas, giving a 360-degree view on SAP security.

ERPScan’s flagship product, ERPScan Security Monitoring Suite for SAP, resolves the issues related to vulnerability management, source code vulnerabilities, backdoors, and access control along with Segregation of Duties (SoD). The solution not only protects the customer’s system from cyber attacks and internal fraud but also decreases TCO by saving on compliance audits and through automation. ERPScan Monitoring Suite for SAP is specifically designed to continuously monitor changes in multiple SAP systems. It generates and analyzes trends on user friendly dashboards, manages risks, tasks and exports results to external systems.Apart from providing an exclusive security product, ERPScan also provides services like SAP Penetration Testing. “Penetration testing is a vision of the system as seen by an attacker,” says Polyakov.