Onapsis Announces Business-Critical Application Security to be Trending Topic at RSA Conference 2016
Latest research to be showcased in presentations, demonstrations and roundtables
Boston, Mass., February 25, 2016 - Onapsis, the global experts in business-critical application security, today announced that they will be attending the 2016 RSA Conference in San Francisco, California from February 29 – March 4, 2016. During this event they will be showcasing the latest research available in the business-critical application security market.
The business-critical application security market is continuing to expand as attacks against platforms such as SAP and Oracle are the best economics for cyberattackers. SAP applications manage the most sensitive information and processes of an organization including ERP, HCM, CRM, BI and Supply Chain Management. Despite housing an organization’s “crown jewels” - intellectual property, ﬁnancial, credit card, customer data, supplier data and database warehouse information – SAP systems and their application layer are not protected by traditional security solutions.
“As threats are becoming increasingly more advanced, business-critical application security is becoming top of mind for Global 2000 organizations. Our research labs are constantly working to expand the industry’s understanding of vulnerabilities against business-critical applications by providing the most up to date threat intelligence available,” said Ezequiel Gutesman, Director of Research, Onapsis.
To better understand how organizations are truly managing cybersecurity risks in their SAP ecosystem, the Ponemon Institute’s latest study reveals senior level perceptions about SAP, its security challenges, and the risk of data breaches and cyberattacks. Uncovering the Risks of SAP Cyber Breaches surveyed over 600 IT security practitioners who are involved in the security of SAP applications used by their organization to manage business operations and customer relations. The full details of this research will be presented by Onapsis at their booth during the RSA Conference.
“During RSA conference we’ll be helping organizations understand steps they can begin taking now to secure their business-critical applications running on SAP or Oracle. Additionally, we will be demoing the most common cyberattack vectors that attackers are currently using to breach insecure SAP systems,” continued Gutesman.
Business-Critical Application Security at RSA Conference:
The CISO Imperative – Taking Control of Cyberattacks on SAP
Sage Wagner, Senior Security Engineer, Onapsis
When: Tuesday, March 1, 2016, 11:40 AM - 12:00 PM PST
Where: South Hall Expo Briefing Center, Moscone Center, San Francisco, CA, 94103
Abstract: Business-critical applications running on SAP and Oracle are emerging as the next big target of attacks and the ultimate economic targets for cyber attacks. They are also the biggest blind spot for CISOs. In this session CISOs will learn about the top attack vectors targeting SAP, how the attacks access sensitive information and the top 5 things to incorporate into an information security strategy.
Understanding the "Why" in Enterprise Application Security Strategy
Troy Grubb, Information Security Manager, GRC & SAP Security, The Hershey’s Company
When: Wednesday, March 2, 2016, 11:30 AM - 12:20 PM PST
Where: West, Room 3002, Moscone Center, San Francisco, CA, 94103
Abstract: The Hershey’s Company initiated a strategic initiative to identify all of the truly critical IT assets that enable the company’s continued success. The evaluation confirmed the importance of protecting their business critical SAP systems. To get executive cross functional buy-in the security team implemented an SAP Vulnerability Management program with a clear strategy of “why” to influence results.
Onapsis at AGC’s 2016 Information Security & Broader Technology Growth Conference
Mariano Nunez, CEO and co-Founder, Onapsis
Onapsis CISO Roundtable
To help align industry leaders on the current state of SAP cybersecurity, Onapsis is hosting a private, invite-only CISO roundtable
Ponemon Institute Research Report: Uncovering the Risk of SAP Cyber Breaches
Download the report here: https://www.onapsis.com/ponemon-report
Onapsis booth at RSA Conference: #3434
Onapsis provides the most comprehensive solutions for securing SAP and Oracle business-critical applications. As the leading experts in SAP and Oracle cybersecurity, Onapsis enables security and audit teams to have visibility, confidence and control of advanced threats, cyber risks and compliance gaps affecting their enterprise applications.
Headquartered in Boston, Onapsis serves over 200 Global 2000 customers, including 10 top retailers, 20 top energy firms and 20 top manufacturers. Onapsis’ solutions are also the de-facto standard for leading consulting and audit firms such as Accenture, IBM, Deloitte, E&Y, KPMG and PwC.
Onapsis solutions include the Onapsis Security Platform (OSP), which is the most widely used SAP-certified cybersecurity solution in the market. Unlike generic security products, Onapsis’ context-aware solutions deliver preventative vulnerability and compliance controls, as well as real-time detection and incident response capabilities to reduce risks affecting critical business processes and data. Through open interfaces, the platform can be integrated with leading SIEM, GRC and network security products, seamlessly incorporating enterprise applications into existing vulnerability, risk and incident response management programs.
These solutions are powered by the Onapsis Research Labs™, which continuously provide leading intelligence on security threats affecting SAP and Oracle enterprise applications. Experts of the Onapsis Research Labs were the first to lecture on SAP cyberattacks and have uncovered and helped fix hundreds of security vulnerabilities to date affecting SAP Business Suite, SAP HANA, SAP Cloud and SAP Mobile applications, as well as Oracle JD Edwards and Oracle E-Business Suite platforms.
Onapsis and Onapsis Research Labs are registered trademarks of Onapsis, Inc. All other company or product names may be the registered trademarks of their respective owners.