Minor release, major step!

Cybersecurity for SAP©

Our SecurityBridge platform is a holistic cybersecurity suite for Netweaver, fully integrated with SAP. Based on the NIST Framework, SecurityBridge enables SAP customers to Identify, Detect and Respond to cyber threats. Don’t wait until your company becomes the victim of a cyber attack, protect yourself now.

Table of Contents

Highlights

Summary Vers. 4.73

The following new features were released on Friday 22nd May 2020. This version is a minor release update after the recent 4.7 major release that contained the Security & Compliance Monitor.

  • A brand new HyperLogging module has been released, which enables you to log all events of a particular user across your SAP landscape.
  • New incident management API’s have been released
  • Java Audit Log support
  • Updates for SAP Patchday May
  • Confirm the end of system maintenance
  • Improved user-experience with smart navigation to related checks
  • Predefined event filters
Highlights

HyperLogging

Event Monitor

HyperLogging enables SecurityBridge to track all actions of a particular, across all systems of your landscape. HyperLogging can be activated automatically as an action to a security critical event. E.g. When there is a SAP_ALL assignment SecurityBridge will record all events before, during and after the critical authorization assignment. This enables you to have full and audit compliant insight into all actions executed. In an upcoming major release, a dedicated HyperLogging Fiori app will become available.

hyperloggin-example
Highlights

Saved Searches

Event Monitor

The SecurityBridge Event Monitor now allows end-users to store selection filters for personal or global use. It is possible create a set of saved searches.

SecurityBridge Workcenter for Cybersecurity
Highlights

Announce System Maintenance

Threat Detection

At times an SAP instance goes for regular maintenance a series of admin actions are conducted that trigger security events. These are valid but they shall not trigger investigation actions within the Security Operation Center. SecurityBridge now allows to announce a maintenance period so events can be suppressed during this timeframe. Security relevant actions remain documented without generating alert fatigue.

Announcement System Maintenance
... and more

Detection Pattern updates

after SAP Patchday May 2020

Identification patterns for vulnerabilities published by SAP Patchday in May are already included within our latest SecurityBridge release. A good number of potential exploits can be identified, which will help prioritizing the implementation of patches.

Connectivity API

Incident Management

A set of API services have been released for integrating ITSM Solutions with the SecurityBridge Incident Management application. For details please do check the online knowledge base.

JAVA Audit Log

Threat Detection for SAP©

The Audit Log for JAVA agents now has a dedicated event listener. SAP NetWeaver JAVA instances can therefore easily be connected with your Security Operation Center. JAVA events have the exact same capabilities as events originating from an ABAP based system, offering full integration with the action framework.

Learn more about SecurityBridge here

Security News
In information technology, compliance and security are inseparable. For SAP systems, this relatively simple relationship between compliance and security becomes a little bit more complicated, read more to learn about the reasons.
One-stop-shop Security Platform
Selecting a specialized solution for each security area, however, has some limitations. A holistic approach offers additional benefit that is required to gain insight into potential risks and to offer full transparency of the security posture.
Whitepaper - Top SAP security mistake to avoid
Within this whitepaper you will learn about the key mistakes that can be avoided when it comes to SAP Security. History has shown that many companies have suffered from cyber incidents, moreover, not all incidents are reported or have been made available to the public.
SAP RFC Security Monitor
Latest addition to the SecurityBridge suite is a fully integrated interface monitor, which visualizes RFC interface connectivity across your SAP landscape. Through a bird’s eye view security critical traffic and vulnerable interfaces can easily be spotted.