ON DEMAND

Complex SAP landscapes create complex business and security challenges. Moving to a RISE with SAP program has the potential to simplify many aspects of this complexity. However, do you know what your security responsibilities are under RISE with SAP?  

As part of RISE with SAP, customers benefit from high-caliber, secure cloud infrastructure and various security services managed by SAP. However, it’s important to remember that there are areas of security that are NOT covered by SAP that you will have to manage yourself. 

In this informative session, David D’Aprile – VP of Product Marketing at Onapsis, will help you to:

• Understand the Shared Security Model and what is (and is not included) in RISE with SAP
• Learn where you should consider investing time and resources for SAP security
• Get started today – wherever you are in your RISE journey – in establishing broader SAP cyber resilience

ON DEMAND

It’s no secret that true visibility and understanding of risk to SAP landscapes can be challenging to navigate, especially for utility companies. The good news? There is a path forward whether you are just starting your SAP security journey or looking to optimize your security practices.

Join SAP & Onapsis to explore Oklahoma Gas & Electric Company’s (OG&E) comprehensive approach to SAP security. They will share their maturity journey and integrated approach to gain true visibility and velocity when it comes to protecting their SAP landscape.

In this session, we’ll cover:

• Factors that have made SAP security a necessity, not a nice to have, over the last decade.
• Insights from a leader in the utilities space about how to leverage security as a tool, rather than viewing it as an obstacle.
• Recommendations for immediate, short-term, and long-term actions to protect your most critical assets and data effectively.

Don’t miss this opportunity to learn best practices for protecting your SAP landscape.

ON DEMAND

Over the past few months, SAP has released a number of Security Notes (patches) addressing a family of vulnerabilities discovered and reported by the Onapsis Research Labs. This family of vulnerabilities has CVSS scores ranging in criticality from 5.3 to 10. Most of these vulnerabilities are related to the SAP P4 protocol itself. And while chained vulnerabilities historically are not easily exploitable, they tend to be a favorite tactic for more sophisticated threat actors.

Pablo Artuso of Onapsis Research Labs is credited with discovering this large family of related, chainable vulnerabilities as “P4CHAINS.” In this presentation, Artuso will walk through a recap of his and Yvan Genuer’s Black Hat USA presentation, including:

• What is P4CHAINS?
• The potential impact of P4CHAINS
• The vulnerability chain(s)
• Elevated impact from chaining