New Release: The Gorilla Guide to…® A Secure SAP Platform
You might know the sources of common cyberthreats, such as supply chain attacks and the vulnerabilities in the Common Vulnerabilities and Exposures (CVE) catalog. But you might not understand the special impact that security risks have on SAP, or the tools available for securing SAP. This comprehensive guide lists a myriad of tools and practices that range from hardening the operating system to special services offered by major cloud vendors.
Author Dan Sullivan goes methodically through the threats (platform, third-party software, malware) and ways to address them. After exploring common types of breaches, he lists tools for common security practices, such as searching for anomalies in traffic, and special options such as the local firewall for SAP HANA and special anti-virus software that protects SAP.
The guide summarizes the detailed remedies in SAP’s hardening guide. Specialized topics such as zero trust, security tools on Kubernetes, and security features in SUSE Linux Enterprise Service (Figure 1) are included.
Figure 1: SUSE Manager automates multiple management and security operations
Inside the Guide
Gorilla Guides make learning and discovery approachable and easy, and they take the guesswork out of navigating complicated IT technologies. Written by an industry expert, and brought to you by SUSE, this resource is packed full of trusted information about securing SAP!
Download the book and learn all about:
- The Top Five Threats to SAP
- Compliance with Industry and Government Regulations
- How to Achieve Observability
- The Role of Automation
Table of Contents
Introduction: A More Holistic Approach to Management and Operations
Chapter 1: Introduction to SAP security
- Security as a Pyramid
- Infrastructure
- Operating Systems and Networking
- Databases
- Applications
- Users
- Top Threats to SAP
- Additional Challenges to Securing SAP
Chapter 2: Building Blocks for a Secure SAP Platform
- Platform Security
- Platform Compliance
- Platform Reliability
Chapter 3: Keeping Up with Patches and Updates
- The Paradox of Patching
- The Need for Patching Policies
Chapter 4: Vulnerabilities Management
- The Difference Between Patches and Vulnerabilities
- Characteristics of Vulnerabilities
- Cataloging Vulnerabilities
- Time to Remediate: Understanding Day 1 Risks
- Leveraging Specialized Tools Beyond Traditional Vulnerability Management 49
Chapter 5: Improving on Limited Visibility
- Configurations
- Performance
- Changes to Infrastructure
Chapter 6: Secure SAP Best Practices
- Minimizing Operating System Attack Surface
- Firewall for SAP HANA®
- Data Encryption
- Patching and Live Patching
Chapter 7: The Role of Management and Automation Tools
- Server Lifecycle Management
- Security Management
- SAP Performance Monitoring
Chapter 8: Challenges of a Secure SAP Environment Public Clouds
- Microsoft Azure
- Amazon Web Services
- Google Cloud Platform
- Cross-Cloud Support for Security
- Pre-Hardened OS Cloud Images
Chapter 9: SAP Hardening Guidelines
- Security Hardening Settings for SAP HANA® Systems
- Local Firewall for SAP HANA
- SUSE Remote Disk Encryption
- Minimal Package Selection
- Security Updates and Packages
- Side-by-Side for SAP
- Zero Trust Container Security Platform
- Next Steps
About The Author
Dan Sullivan is a cloud and data architect with decades of experience with data intensive application development, database architecture, and cloud computing.
About SUSE
SUSE is a global leader in innovative, reliable, secure enterprise-grade open source solutions, relied upon by more than 60% of the Fortune 500 to power their mission-critical workloads. We specialize in Business-critical Linux, Enterprise Container Management and Edge solutions, and collaborate with partners and communities to empower our customers to innovate everywhere—from the data center, to the cloud, to the edge, and beyond.
SUSE puts the “open” back in open source, giving customers the agility to tackle innovation challenges today and the freedom to evolve their strategy and solutions tomorrow. The company employs more than 2,000 people globally. SUSE is listed on the Frankfurt Stock Exchange.