Today, SAP released their monthly security notes. This month, there are 23 new SAP notes that contain new switchable authorization checks in RFC, and 7 SAP notes for missing authorization checks. This month’s security notes also includes 29 note updates from previously published security notes. Taking into account that only 3 notes are considered high priority, it is safe to assume that October is not a ‘risky’ month. Nevertheless, many of this month’s notes require manual activation in order to ensure that they are fully effective in securing SAP.
Senior SAP Security Specialist
As a member of the Research Labs team, he is responsible for performing SAP Security Assessments, understanding the evolving regulatory landscape affecting SAP systems and delivering trainings about the latest risks affecting SAP platforms.
With seven plus years of experience in business consulting, information technology and systems auditing, he has assisted numerous large companies from various industries including Oil & Gas, Manufacturing and Telecommunications, covering a wide variety of SAP modules and solutions. He has also been involved in several SAP GRC projects.
Julian has delivered talks and trainings on SAP security at SANS Network Security, SANS Sydney and at Black Hat among others.
In today’s evolving IT landscape, companies are constantly planning their next steps when it comes to business-critical application security. Specifically, they are planning these steps around their SAP environment which supports core business processes for some of the world’s largest organizations. When it comes to migrating SAP solutions to the cloud, different roadmaps are regularly being assembled and developed in order to properly transfer solutions that were traditionally supported by on premise SAP systems to a diverse range of cloud offerings provided by SAP.
Subscribe to our monthly newsletter, the Defender's Digest!