Press Release

Onapsis Announces Program to Secure SAP S/4HANA to Optimize Digital Transformation Projects

Business-critical application security leaders, along with key partners IBM and Infosys Limited, enable continuous security during SAP S/4HANA implementation and migration projects

Boston, MA – May 31, 2018 – Onapsis, the global experts in ERP and business-critical application cybersecurity and compliance, and the only cybersecurity solution certified by S/4HANA, today announced the Secure SAP S/4HANA program in partnership with IBM and Infosys. This program is aimed at strengthening and streamlining SAP S/4HANA and digital transformation projects by providing security risk insight through relevant stages of the deployment and will save significant costs to organizations by ensuring secure implementations. The program uses the Onapsis Security Platform to enable early threat modelling and security assessments at the right stages of digital transformation projects. This ensures security is considered early and often and prevents critical SAP infrastructure from being exposed to cyberattacks or compliance failures.

“SAP customers invest large amounts of money and resources on such critical upgrades and transformation projects. Without appropriate controls and to secure these new systems, they cannot maximize their investment and increase their risk to cyberattacks. With this program, Onapsis, along with our strategic partners, aims to make security an enabler in these pivotal projects to avoid cost overruns later and ensure that the organization’s crown jewels are protected,” said Ashish Larivee, Chief Product Officer, Onapsis Inc.

“We are currently working with a number of customers who are struggling to implement proper security controls, while trying to migrate their complex SAP landscapes to S/4HANA. With this new offering, we will be able to proactively assess S/4HANA implementations and fix security risks throughout the various stages of migration. This will help ensure that projects are not sidetracked or halted because of security issues later, as it typically happens if security is not considered,” said Charlie Singh, Associate Partner – Cyber Risk Management, IBM Security.

“Understanding how to engrain security into digital transformation projects can be a challenge for any organization as these projects are highly complex, involve several teams and have very strict deadlines. Because of this, plans to implement proper security controls, and ensure each step is secure when moving to S/4HANA or any type of cloud migration, could cause significant delays. We are excited to be utilizing the Onapsis Security Platform to be able to demonstrate key security issues in the beginning of these large scale SAP S/4HANA projects and work with the organization on each step to ensure that their critical data and processes are secure,” said Manohar M. Atreya, Vice President and Delivery Head, Cloud Infrastructure and Cyber Security Services, Infosys Limited.

Secure S/4HANA will allow organizations to perform security and compliance assessments of their S/4HANA deployment and allow our partners to take a programmatic approach to infusing security into large migration projects. This will provide SAP and infosec teams with actionable information about the key security issues that need to be addressed early and securely move forward with the implementation, allowing organizations to benchmark their security posture at different stages of their digital transformation project. Considering security during the early design and implementation phases of the project could be up to five times less expensive than doing it after the go-live. The Secure S/4HANA program can save organizations significant costs and resources especially for a large transformation project.

Onapsis and key partners will be at SAP SAPPHIRE next week and will be showcasing this program during the event.

About Onapsis

Onapsis cybersecurity solutions automate the monitoring and protection of your SAP and Oracle ERP and business-critical applications, keeping them compliant and safe from insider and outsider threats. As the proven market leader, global enterprises trust Onapsis to protect the essential information and processes that run their businesses.
Headquartered in Boston, MA, Onapsis serves over 200 customers including many of the Global 2000. Onapsis’s solutions are also the de-facto standard for leading consulting and audit firms such as Deloitte, IBM, Infosys and PwC.

Onapsis solutions include the Onapsis Security Platform™, which is the most widely-used SAP-certified cybersecurity solution on the market. Unlike generic security products, Onapsis’s context-aware solutions deliver both preventative vulnerability and compliance controls, as well as real-time detection and incident response capabilities to reduce risks affecting critical business processes and data. Through open interfaces, the platform can be integrated with leading SIEM, GRC and network security products, seamlessly incorporating enterprise applications into existing vulnerability, risk and incident response management programs.

These solutions are powered by the Onapsis Research Labs, who continuously provide leading intelligence on security threats affecting SAP and Oracle enterprise applications. Experts at the Onapsis Research Labs were the first to lecture on SAP cyberattacks and have uncovered and helped fix hundreds of security vulnerabilities to-date affecting SAP Business Suite, SAP HANA, SAP Cloud and SAP Mobile applications, as well as Oracle JD Edwards and Oracle E-Business Suite platforms. This patented technology is well known, industry wide, and has gained Onapsis recognition on the Deloitte Technology Fast-500, as a Red Herring North America Top 100 company and a SINET 16 Innovator.

For more information, please visit, or connect with us on Twitter, Google+, or LinkedIn.
Onapsis and Onapsis Research Labs are registered trademarks of Onapsis, Inc. All other company or product names are registered trademarks of their respective owners.