Brian Tremblay, Onapsis Compliance Practice Leader, joins Security & Compliance Weekly to talk about how misconfigurations and vulnerabilities in your mission-critical applications can lead to compliance problems and the need for organizations to adopt a process of continuous compliance. As a former auditor, Brian understands the best practices leaders can use to identify, monitor and mitigate compliance risks. Watch the full podcast episode below with Security Weekly to learn more.
Interested in learning more about how Onapsis can protect your mission-critical applications? Join us at the 2020 Gartner Security & Risk Management Summit, September 14 – 17. Click here to register now!
About the Author
Brian Tremblay leads Onapsis’s Compliance Practice, drawing on over 20 years of experience in internal audit and risk management. As a former Chief Audit Executive, he brings hands-on expertise in preparing organizations for public offerings and implementing critical frameworks like SOX and GDPR. Brian’s deep knowledge of IT General Controls and regulatory compliance enables him to guide customers on mitigating risks related to their business-critical applications. His background at global companies like Raytheon and Deloitte establishes him as a trusted authority on audit-ready SAP systems and bridging the gap between security and compliance.
More about this author
Further Reading
The Utilities Guide to SAP RISE: Navigating Shared Responsibility and Security
Electric utilities operate in a highly regulated physical domain. As organizations like Oklahoma Gas and Electric (OG&E) modernize their enterprise resource planning environments, executing a secure RISE with SAP business transformation requires a fundamental shift in defensive strategy. Defending the enterprise core requires security leaders to understand that migrating to a hyperscaler does not eliminate…
The 2026 SAP Security Assessment Checklist
Conducting a comprehensive SAP security assessment is a mandatory operational requirement for modern enterprises. As organizations deepen their reliance on SAP and navigate increasingly complex RISE, S/4HANA, and BTP landscapes, the threat environment heading into 2026 is more active and more unforgiving than ever. Executing a structured SAP risk assessment provides the exact visibility required…
Kerberos & RC4 – What It Means for SAP Customers and How Onapsis Helps
Microsoft is changing how Windows Kerberos handles RC4, an old, insecure encryption algorithm that has historically been the default service ticket encryption for user-account SPNs (the category most SAP service accounts fall into) whose msDS-SupportedEncryptionTypes attribute is unset. The final enforcement phase begins July 2026. SAP environments with service accounts in this state, and keytabs…