Industry: Home Furnishing Retailer
Company Size: 34,000 employees
JYSK, an international and family-owned home furnishing retailer with Scandinavian roots, operates more than 3,600 physical stores and webshops across 50 countries. With over 34,000 employees and a massive global footprint, JYSK relies on a complex SAP landscape to manage its extensive retail operations. Frank Folsach Olsen, Senior Technology Architect for the SAP Platform at JYSK, is responsible for the architecture, security, and governance of the company’s SAP environments, spanning both on-premises and cloud deployments.
The Challenge
Recognizing that security is often viewed by the business as a blocker for innovation, the JYSK team sought a solution that could automate complex security tasks while providing clear governance. In their 2021 Project Charter, they defined the need for a comprehensive platform capable of removing critical profiles with minimal effort, ensuring GDPR compliance, and strengthening overall system security through automated scanning of ABAP code and HANA. After an RFP process, JYSK selected Onapsis to secure their entire SAP application attack surface.
The Solution
The partnership with Onapsis has created a high-maturity security operation.
- Unified Attack Surface Management
Onapsis provided a single platform to manage vulnerabilities across on-premises, hybrid, and cloud environments. - Holistic Governance Support
The platform supported the newly established SAP Security Forum (SSF), providing the data needed to define security measures and audit structures under a mandate from the CISO. - DevSecOps Integration
By implementing Onapsis Control, JYSK integrated code scanning directly into the SAP development team’s workflow. - Hybrid Cloud Readiness
As JYSK started using SAP BTP and explores RISE with SAP, Onapsis streamlines customer-owned responsibilities such as Application Threat Detection and Custom Code Security.
The Result
- Elevated Security Maturity: JYSK successfully moved up the maturity scale, now positioning themselves higher than the average Consumer Products & Retail industry peer in both security effectiveness and coverage.
- Streamlined Compliance and Audit: The establishment of the SSF (SAP Security Forum), powered by Onapsis data, created a clear forum for discussing SAP security issues and secured a mandate for long-term operational excellence.
- Proactive Vulnerability Management: Automated scanning
of ABAP and HANA code has significantly reduced the risk of vulnerabilities reaching production systems. - Future-Proofed Security for RISE: JYSK has defined a clear roadmap for real-time defense, including rule sets for Onapsis Defend to monitor and react to alerts in a hybrid productionenvironment.
The journey of JYSK illustrates that moving to a more mature security approach requires both the right organizational structure and the right technology. By leveraging Onapsis, JYSK has built a proactive foundation for its future expansion and cloud migration.
“Management anchoring and a clear scope definition were crucial. Onapsis allowed us to establish a forum where SAP Basis and application security issues can be discussed with a mandate to implement change.”
Frank Folsach Olsen | Senior Technology Architect, SAP Platform | JYSK
“Onapsis helps us automate the technical complexities so we can focus on governance and maintaining our organizational mandate for security.”
Frank Folsach Olsen | Senior Technology Architect, SAP Platform | JYSK