JP Perez-Etchegoyen
As CTO, JP leads the innovation team that keeps Onapsis on the cutting edge of the Business-Critical Application Security market, addressing some of the most complex problems that organizations are currently facing while managing and securing their ERP landscapes. JP helps manage the development of new products as well as support the ERP cybersecurity research efforts that have garnered critical acclaim for the Onapsis Research Labs. JP is regularly invited to speak and host trainings at global industry conferences, including Black Hat, HackInTheBox, AppSec, Troopers, Oracle OpenWorld and SAP TechEd, and is a founding member of the Cloud Security Alliance (CSA) Cloud ERP Working Group. Over his professional career, JP has led many Information Security consultancy projects for some of the world’s biggest companies around the globe in the fields of penetration and web application testing, vulnerability research, cybersecurity infosec auditing/standards, vulnerability research and more.
Return of the ICMAD: Critical Vulnerabilities Affecting ICM over HTTP/2
In 2023, the cybersecurity landscape has seen the return of ICMAD. Learn more about the two vulnerabilities and if your company might be affected.
SAP Remote Function Call (RFC) Vulnerabilities in 2023
In 2007, Onapsis CEO & Co-founder Mariano Nuñez presented several vulnerabilities and attacks affecting the RFC Protocol at Black Hat Europe. That presentation became a call-to-action for the research community to dedicate time into improving the security of SAP applications and SAP Protocols.
P4CHAINS Vulnerabilities
Onapsis reviews the p4chains vulnerability and how vulnerability changing plays a role in this family of vulnerabilities.
Build a Strong SAP Security Strategy With the NIST Framework
Leveraging the NIST Cybersecurity Framework best practices can help teams eliminate blind spots and have a more secure, compliant environment for SAP systems.
Application Security: Expert Tips from Onapsis CTO JP Perez-Etchegoyen
JP Perez-Etchegoyen shares tips for business application security. Learn how to better protect your critical data.
Q&A With Onapsis CTO JP Perez-Etchegoyen: Recent Active SAP Exploitation Activity
CTO JP Perez-Etchegoyen answers six questions around recent SAP application exploitation activity and shares tips for SAP security and next steps organizations can take to protect their critical systems.
Securing Australia’s Critical Infrastructure
The Australian Government has expanded and deepened cybersecurity obligations for the critical infrastructure sector under the SOCI Act. Here’s how organizations can demonstrate compliance with positive security obligations for SAP business applications.
Three Actively Exploited SAP Vulnerabilities Identified by Onapsis Research Labs: What You Need to Know
The Onapsis Research Labs detected active exploitation activity related to three vulnerabilities that were already patched by SAP.
Ask the CTO: Strong Business Application Security Starts With the Right Cybersecurity Foundation
Onapsis Chief Technology Officer JP Perez-Etchegoyen explains why an enterprise cybersecurity strategy for protecting business-critical applications should start with alignment to a strong security framework.