Attention – Data Attack From The Inside – “Privilege Misuse”
New year – old risks!
As every year, once again, in 2017, the “Data Breach Investigations Report” has been published by Verizon® for the previous year (2016). From our point of view, it is mandatory for each IT Manager to read this report.
This report covers the topics data security and data corruption and lists various qualified information security incidents from the previous year. These incidents must be prevented – from our point of view – by professional tools and measures.
We – the nexQuent group – are concentrating on the 9 classification patterns and in this case particularly on the top issue: “Privilege Misuse” – misuse of authorizations.
Repeatedly, we had to deal with such cases, even in large and successful companies, with way „too many“ SAP authorizations of an SAP user which led to an identified damage in large and successful companies.
That should not and must not be the case!
In such cases the focus is not only on damages to the image but also on personal data corruptions (current EU Directive), manipulated invoices, stolen company data (patents, recipes) as well as very specific financial damages. This could be the manager’s undoing.
Do you know exactly who is moving in your SAP system how where and when and who is looking at data or is manipulating them?
Those who have experience in this matter know the great manual effort in controlling and limiting these cases and it is usually not workable.
Therefore, we suggest using effective tools which will show you potential risks with only one click.
Count on nexQuent DSS – Dynamic Security Suite for a sustainable and integrated compliance-proof user lifecycle in your whole system landscape. We will provide you with the security you need behind your firewall!
Protect yourself by today! Book our 1-day SAP authorization security audit.
In an SAP authorization security audit we will look into your system landscape and show you a way you no longer have to worry about the „misuse of authorizations“ in future.
We would like to thank Mr. Androniko Hammäcker, the responsible Verizon Partner Agent, for the information and support and we are looking forward to future joint projects with Verizon and CONEO Consulting.
Link: http://www.verizonenterprise.com/resources/reports/rp_DBIR_2016_Report_en_xg.pdf
