Appsian extends platform to SAP customers

Appsian, the leader in ERP data security, announced their security platform will now feature extended support for SAP ERP applications, including Central Component (ECC) and S/4HANA.

Appsian has grown to be the leader in data security solutions for the Oracle ERP market, including PeopleSoft and EBS, with more than 250 customers globally. Appsian’s security platform provides organizations with enhanced data access controls and user activity monitoring.

The platform consists of fine-grained solutions and user behavior analytics that, once installed in an ERP web server, enable organizations to establish policies based on specific data elements. Monitoring and analysis of granular user activity is also available.

“Most organizations have little control over how users are consuming data in ERP applications,” said Piyush Pandey, CEO of Appsian.

“We use context-specific algorithms to comprehensively measure security risk and then deploy adaptive access controls – all while delivering granular logging and analytics that help manage the application at the data and transaction levels.”

By extending support to SAP, Appsian has enabled organizations to address many of the security and compliance challenges present in their legacy ERP systems.

These challenges are largely created by the complexity of managing secure access in mobile environments, along with managing new compliance requirements, such as those required by GDPR and CCPA – both of which mandate how user data is accessed.

“Native SAP security controls are inherently strong, but gaps can quickly appear as organization’s allow expanded access to mobile users in BYOD environments,” said Rajesh Rengarethinam, VP of SAP Engineering at Appsian.

“By applying attribute-based access controls to an organization’s existing role-based access controls, the overall security posture becomes significantly stronger. Also, when the precise context of access can dictate user privilege, risk variables like transaction sensitivity, location, time, and device can be mitigated.”

With recent configuration vulnerabilities, such as the 10KBLAZE exploit, that enabled hackers to use typical SAP business transactions to breach data and redirect corporate funds – the need to proactively monitor and identify malicious behavior has never been greater.

“By enhancing an organization’s ability to control and better understand data access, the integrity of critical SAP business processes can be maintained,” said Piyush Pandey, CEO of Appsian.

“We look forward to building on our success securing Oracle ecosystems, by making our technology available to organizations leveraging SAP because threats are more prevalent than ever.”