Onapsis Inc. announces significant enhancements to Onapsis X1 to address security threats to SAP Mobile Platforms

Organizations now able to perform in-depth security vulnerability assessment and audits of their SAP® mobile platforms

July 17th, 2013 Onapsis Inc., the leading provider of solutions to assess and protect ERP systems from cyber-attacks, today announces significant enhancements to its product Onapsis X1. In addition to making substantial updates to the solution, Onapsis has also added the ability for organizations to perform in-depth security vulnerability assessment and audits of their SAP® mobile platforms.

SAP has recognized the growing concern of mobile threats by creating “SAP Mobile Secure” to help their customers mitigate the risks threatening their implementations. Onapsis has added breath to its Onapsis X1 product by enabling their customers to evaluate the security of their SAP mobile implementations. Organizations can now automatically:

  • Identify existing components supporting their SAP mobile applications
  • Detect security vulnerabilities affecting the mobile components as well as their backend SAP systems
  • Obtain prioritized, actionable information to effectively mitigate existing risks
  • Continuously monitor the security of their SAP mobile platform

Onapsis X1 is the industry’s first comprehensive SAP-certified solution for the automated application security assessment of SAP systems. Backed by the frequent updates from the Onapsis Research Labs, Onapsis X1 detects insecure SAP ABAP and Java configurations, missing SAP Security Notes and patches, dangerous user authorizations, insecure interfaces between SAP systems and threats affecting SAP mobile platforms. Following Onapsis X1’s detailed mitigation procedures, customers can increase the security level of their platform, decrease business fraud risks and enforce current compliance requirements.

Juan Perez-Etchegoyen, CTO at Onapsis, leads the company’s innovative research projects. “After receiving feedback from many of our customers and partners, we have recognized the overwhelming pressure on security professionals to protect their SAP mobile deployments. Because SAP manages critical business processes and houses financial, supply chain and HR data, connecting these systems to the Internet in order to enable mobile users access this data results in exponential risk to the organization,” commented Mr. Perez-Etchegoyen. “With this important enhancement to the product, we are enabling our customers to design, implement and maintain that their SAP implementations are holistically secured,” he stated.

The new version of the product, to be released in August, will provide support for SAP Mobile Platform (Sybase Unwired Platform), SAP NetWeaver Gateway and SAP Fiori applications. The new version will be showcased at the Black Hat security conference starting on July 31st in Las Vegas, NV. Onapsis will be hosting live demos of the new version at booth# 231.

About Onapsis

Onapsis provides the most comprehensive solutions for securing business-critical applications. As the leading experts in SAP cyber-security, Onapsis’ enables security and audit teams to have visibility, confidence and control of advanced threats, cyber-risks and compliance gaps targeting their enterprise applications

Headquartered in Boston, MA., Onapsis serves over 160 Global 2000 customers, including 10 top retailers, 20 top energy firms and 20 top manufacturers. Onapsis’ solutions are also the de-facto standard for leading consulting and audit firms such as Accenture, IBM, Deloitte, E&Y, KPMG and PwC.

Onapsis solutions include the Onapsis Security Platform, which is the most widely-used SAP-certified cyber-security solution in the market. Unlike generic security products, Onapsis’ context-aware solutions deliver both preventative vulnerability and compliance controls, as well as real-time detection and incident response capabilities to reduce risks affecting critical business processes and data. Through open interfaces, the platform can be integrated with leading SIEM, GRC and network security products, seamlessly incorporating SAP applications into existing vulnerability, risk and incident response management programs.

These solutions are powered by the Onapsis Research Labs which continuously provide leading intelligence on security threats affecting SAP systems. Experts of the Onapsis Research Labs were the first to lecture on SAP cyber-attacks and have uncovered and helped fix hundreds of security vulnerabilities to-date affecting SAP Business Suite, SAP HANA and SAP Mobile deployments.

For more information, please visit www.onapsis.com, or connect with us on Twitter, Google+, or LinkedIn.