The importance of security behind digital transformations has never been more relevant. Digital transformation is not only changing all of your business processes, but also moving all your security business systems to the cloud. These kinds of transitions can cause a lot of security risk, requiring a lot of trust on the end of the organization, but also the ability to verify that the processes and systems are still safe and secure. Over 64% of ERP deployments experienced some form of breach in the last 24 months—don’t let your organization become one of them. Listen to Steve Zalewski, Deputy CISO of Levi’s Strauss & Co., discuss digital transformation, security and risk and how Onapsis gave them much-needed visibility in the video below.

About the Author
As CEO and Co-Founder of Onapsis, Mariano drives the strategic direction of the company. Under his leadership, Onapsis has become one of the fastest-growing technology and cybersecurity companies in the world. With 20+ years of experience in the cybersecurity industry, both as an executive and as a cyber security expert, Mariano was the first to publicly present on cybersecurity risks affecting ERP platforms and how to mitigate them at major conferences such as RSA, Black Hat and SANS. Mariano’s contributions to the cybersecurity community include developing the first open-source SAP and ERP Penetration Testing frameworks, and uncovering critical zero-day vulnerabilities in SAP, Oracle, IBM, and Microsoft applications. Mariano’s insights are regularly featured in major media outlets such as CNN, Reuters, Wall Street Journal, Nasdaq, Fortune and The New York Times.
More about this author
Further Reading
How Mandiant and Google Cloud Are Transforming SAP Cybersecurity Collaboration
Securing SAP environments requires bridging the gap between network perimeter defenses and application-layer intelligence. Recently, industry leaders from Mandiant (part of Google Cloud) and Onapsis highlighted how strategic partnerships are reshaping cybersecurity defenses for business-critical applications. This collaboration strengthens incident response, accelerates threat intelligence sharing, and equips Security Operations Centers (SOCs) to defend the entire…
Compliance and Prevention Are Best Friends: How Custom Code Security Drives Verifiable Governance
Modern enterprise compliance requires a shift from reactive auditing to automated, software-driven prevention at the custom application layer. As regulations like NIS2, the Cyber Resilience Act (CRA), and the EU AI Act enforce secure-by-design architectures, organizations must implement strict control planes for their custom ABAP code. Integrating automated application security testing into the development lifecycle…
The Truth About SAP Security Architecture: Why Embedded Tools Are a Single Point of Failure
Protecting enterprise core business processes requires resilient architecture. The latest data from the IBM Cost of a Data Breach Report shows the average global breach lifecycle stretches to 241 days. Organizations face severe financial penalties for slow threat containment. An architectural security failure stalls supply chains, disrupts financial closes, and brings operations to a complete…
