SAP® Security
as a managed Service

Benchmark your performance with your peers and get exposure visibility in the SAP Security Dashboard with an SAP Security Score

Remediation, mitigation, guided procedures

Automate notifications and ticketing workflows with leading third-party software to quickly respond to threats.

Included hourly contingents for extended consulting & advanced advisory services.

• Advanced SAP Security Architect Services for Threat Protection
• Architectural security reviews: Our SAP Security Architects support your internal staff with the review of your Change Requirements.
• Due diligence of 3rd party code, tools, and addons
• Ethical hacking and threat modeling services

Get the guidance you need to take the best path toward digital transformation, cloud adoption, and sustainable innovation.

Premium Engagements

Support your implementation with packaged services and support to co-innovate with SAP and create ground-breaking business models.

Basic SAP Security Controls based on SAP recommendations like the SAP Secure Operations Map, Whitepapers and SAP Security Guidelines.

Detection, classification and active response with your internal Security Staff

Easily demonstrate compliance with pre-built compliance reports for ISO 27001, PCI, HIPAA, BSI and NIST.

Specific SAP controls mapped to:

• GDPR
• BS 10012
• ISO27018:2014

Direct access to our global network of recognized SAP Security Experts.

Periodic compliance assessments of regional, industry-specific, data privacy and global standards

SAP Security Risk Management including Risk Over Time (ROT) Graph, Templated Risk Reporting, Configurable Dashboards, Real-time Risk Monitoring, Centralized Risk Register, Risk Matrix, Risk Categorization, Risk Heatmap, Target Risk Benchmarking, Risk Treatment Workflow

Benefit from reduced hourly rates for additional, advanced SAP Security Services that are not covered by the included contingents.

Specific SAP controls mapped to:

• CDSA
• MPAA
• FACT UK
• Shared Assessments
• FISC Japan
• HITRUST
• MARS-E
• IG Toolkit UK
• FERPA
• GLBA
• FFIEC

• SAP Security Scanning and Vulnerability Management
• Managed SAP Security Assessment
• Continuous SAP Security Management (SAP DevSecOps)

Specific SAP controls mapped to PCI DSS

Periodic strategic meetings

AP Systems are not secure by default. Your subscription includes periodic scans of your sap system profile parameters against our established SAP Security Controls Framework.

Enhanced support case response times

Securely store your raw log data for compliance and forensics in cold storage for up to 36 months (extensions available).

Specific SAP controls mapped to:

• GxP
• HIPAA

Data sovereignty guaranteed by Swiss hosting. From Switzerland, legally registered in Switzerland.All data is protected by the Swiss "Bundesgesetz über den Datenschutz" (DSG) and the "Verordnung zum Bundesgesetz über den Datenschutz" (VDSG), which provides one of the strongest privacy protections in the world. Since Swiss Security Hub AG is located outside the USA and the EU, only a court order from the Cantonal Court or the Swiss Federal Supreme Court can force us to release any data.

Specific SAP controls mapped to TISAX

Your dedicated SAP Security Officer acts as your personal Cyber Hero and responds quickly to any security issues. They can also be part of your internal team and participate in your sprint ceremonies.

Regional and public administration standards covered, specific SAP controls mapped to:

‍

🇺🇸 FedRAMP, NIST

🇩🇪 BSI (IT-Grundschutz), C5

🇨🇭 NCSC (IKT-Grundschutz)

‍

coming soon:

🇬🇧 Cyber Essentials Plus

🇪🇸 ENS, DPA

🇦🇺 IRAP
🇳🇿 GCIO

🇨🇦 PIPEDA

🇦🇷 PDPA

🇯🇵 My Number Act

🇮🇳 MeitY

Custom Control Library‍

• Policy Templates
• Policy Builder
• Policy Versioning
• Policy Status
• Tracking Policy
• Assignment (Business Divisions)
• Policy Development Workflow
• Policy Distribution
• Master Policy Records
• Multi-Lingual Policies