BOSTON--(BUSINESS WIRE)--Onapsis, the global experts in SAP and Oracle application cybersecurity and compliance, today announced that it has been recognized as a Sample Vendor in Gartner’s “Hype Cycle for Application Security”¹ for the emerging category of Business-Critical Application Security.
In the report, Gartner analyst Neil MacDonald illuminates that, “As financially motivated attackers turn their attention ‘up the stack’ to the application layer, business applications such as ERP, CRM and human resources are attractive targets. In many organizations, the ERP application is maintained by a completely separate team and security has not been a high priority. As a result, systems are often left unpatched for years in the name of operational availability. In other cases, systems are misconfigured, exposing these systems directly to the public internet and attackers. Publicly disclosed attacks are rare, so the problem remains largely ignored.”
The report goes on to caution, “As business-critical applications are opened up to partners and exposed on the public internet, and as attackers target these applications, their risk profile is changing. By definition, business-critical application security applies to applications critical to the functioning of the business. Downtime of the core ERP system of an enterprise can be catastrophic. Outages and theft caused by hackers should be viewed as critical as downtime caused by hardware or software failures.”
Because this layer of application security has been a blind spot for many organizations, CISOs, IT and SAP BASIS teams are looking for guidance on how to align internally to achieve not only compliance but build best practices for securing these applications.
“When we founded Onapsis we were the first to identify a true industry problem: that business-critical applications such as SAP and Oracle are fully exposed to cyber-attacks. We believe that Gartner’s creation of the Business-Critical Application Security market on this recent hype cycle not only validates our mission, but will help enable organizations to understand the importance of securing their most critical information and processes housed within these systems,” said Mariano Nunez, CEO, and co-Founder, Onapsis.
87% of the Global 2000 rely on business-critical applications such as SAP and Oracle to manage their data such as ERP, HCM, CRM, BI and Supply Chain Management. Despite housing an organization’s “crown jewels” – intellectual property, financial, credit card, customer data, supplier data and database warehouse information – SAP and Oracle systems and their application layer are not protected by traditional security solutions. In addition, these systems are very complex, often having been implemented with customizations that map to specific business processes as outlined by an organization making them more difficult to secure.
Onapsis’ flagship product, the Onapsis Security Platform delivers a near real-time preventative, detective and corrective approach for securing business-critical applications such as SAP and Oracle whether deployed on-premise, or in a private, public or hybrid cloud environment. The Onapsis Security Platform provides unmatched coverage and protection with context-aware insight across SAP NetWeaver, ABAP, J2EE, HANA, and S/4HANA platforms. The platform integrates with network security, security management, SIEM solutions and workflows as well as leading cloud providers. The Onapsis Security Platform also enables customers to securely migrate to cloud environments by seamlessly integrating into private, public or hybrid deployments.
¹Hype Cycle for Application Security, 2017, Published: 28 July 2017 ID: G00314199, Analyst(s): Ayal Tirosh
About Onapsis
Onapsis cybersecurity solutions automate the monitoring and protection of your SAP applications, keeping them compliant and safe from insider and outsider threats. As the proven market leader, global enterprises trust Onapsis to protect the essential information and processes that run their businesses.
