Skip to content
Medtronic Article

CISO initiated SAP Vulnerability Management in Health Tech Industry.

author icon
SecurityBridge
January 5, 2026
4 min read

Chapters

Share Article

Let's Talk SAP Security

Have questions about SAP Security? We’re here to help. Contact Us

At a glance

As a global health tech company, Medtronic is challenged to secure sensitive data across hundreds of interconnected SAP systems both on-prem and cloud-based. Initially using default SAP tools, the SAP team faced integration limitations and operational issues due to the complex architecture. The solution, initiated by the CISO organization, automated SAP patching and vulnerability management and helped the new SAP Security team to minimize testing and efficiently address critical vulnerabilities. Over three years, security posture and monitoring have strengthened, and integrated into the CISO organization to ensure compliance and ongoing resilience against cyber-attacks.

About Medtronic

As a global health tech company, Medtronic is challenged to secure sensitive data across hundreds of interconnected SAP systems both on-prem and cloud-based. Initially using default SAP tools, the SAP team faced integration limitations and operational issues due to the complex architecture. The solution, initiated by the CISO organization, automated SAP patching and vulnerability management and helped the new SAP Security team to minimize testing and efficiently address critical vulnerabilities. Over three years, security posture and monitoring have strengthened, and integrated into the CISO organization to ensure compliance and ongoing resilience against cyber-attacks.

Why SecurityBridge?

"With SecurityBridge, we can efficiently enforce secure configurations across our large SAP landscape. The Security Roadmap gives our small but specialized team guidance and helps responding to critical SAP vulnerabilities.”

Daryl Mennen, SAP Security Architect

Challenges

As a health tech company, Medtronic processes sensitive and business critical data in hundreds of interconnected SAP systems running on-prem and in the SAP RISE cloud. With limited security knowledge, the SAP team used out-of-the-box SAP capabilities, like the Configuration Validation in SAP SolutionManager and the SAP Security Baseline to mitigate vulnerabilities in the systems.
 
This cumbersome and costly approach triggered the CISO organization to look for automating the change management process for the monthly SAP Security Notes. The
new approach should also help to create clear responsibilities between Cybersecurity and SAP when it comes to protecting and hardening the SAP landscape.

Solution

The CISO-driven project led by an SAP security expert initially identified Protect4S as a good fit for automating the existing process. After the acquisition of Protect4S by SecurityBridge in the fall of 2023, the initial setup for SAP patching and vulnerability management has been transitioned to the SecurityBridge Platform.

While the responsibility for user identity and authorization management remained in the SAP Basis team, the new team within the CISO organization took full ownership for SAP vulnerability and patch management including the changes for hardening the systems. With the SecurityBridge Roadmap they understand the impact of the changes and keep the testing effort minimal. The solution also allowed them to efficiently mitigate the CVSS 10 scored zero-day issue in April 2025.

Results and Customer Benefits

SAP Vulnerability Management is now operated with reduced overhead, allowing the team to focus testing efforts only where they are most essential. All security-related changes for SAP systems are centrally owned and managed by the SAP security team, which has led to significant improvements in control and accountability.

Over the last three years, the organization has steadily enhanced its security posture and implemented monitoring to avoid deprecation. Vulnerability management and security reporting have been fully integrated into the CISO organization, helping to always maintain compliance and resilience against cyber-attacks. Finally, security and system status reporting have become routine for both the CISO and the VP of SAP.

About SecurityBridge

SecurityBridge is the leading provider of a comprehensive, SAP-native cybersecurity platform. Trusted by organizations worldwide to safeguard their most critical business systems. Our platform seamlessly integrates real-time threat monitoring, vulnerability management, and compliance capabilities directly into the SAP environment, empowering organizations to protect their data’s integrity, confidentiality, and availability with minimal manual effort. With a proven track record, including a stellar customer success rating and over 5,000 SAP systems secured globally. SecurityBridge stands out for its ability to accurately provide a 360° view of the SAP security posture, ease of use, rapid implementation, and transparent licensing. We are committed to innovation, transparency, and customer-centricity, ensuring businesses can confidently navigate the evolving landscape of SAP security threats.

SecurityBridge Location

See SecurityBridge in Action

Book a demo today to see how SecurityBridge’s SAP security platform provides all the tools you need to keep your SAP systems secure and compliant.

Request a demo
Contact Us