You might know the sources of common cyberthreats, such as supply chain attacks and the vulnerabilities in the Common Vulnerabilities and Exposures (CVE) catalog. But you might not understand the special impact that security risks have on SAP, or the tools available for securing SAP. This comprehensive guide lists a myriad of tools and practices that range from hardening the operating system to special services offered by major cloud vendors.
Author Dan Sullivan goes methodically through the threats (platform, third-party software, malware) and ways to address them. After exploring common types of breaches, he lists tools for common security practices, such as searching for anomalies in traffic, and special options such as the local firewall for SAP HANA and special anti-virus software that protects SAP.
The guide summarizes the detailed remedies in SAP’s hardening guide. Specialized topics such as zero trust, security tools on Kubernetes, and security features in SUSE Linux Enterprise Service (Figure 1) are included.
Figure 1: SUSE Manager automates multiple management and security operations
Inside the Guide
Gorilla Guides make learning and discovery approachable and easy, and they take the guesswork out of navigating complicated IT technologies. Written by an industry expert, and brought to you by SUSE, this resource is packed full of trusted information about securing SAP!
Download the book and learn all about:
The Top Five Threats to SAP
Compliance with Industry and Government Regulations
How to Achieve Observability
The Role of Automation
Table of Contents
Introduction: A More Holistic Approach to Management and Operations
Chapter 1: Introduction to SAP security
Security as a Pyramid
Infrastructure
Operating Systems and Networking
Databases
Applications
Users
Top Threats to SAP
Additional Challenges to Securing SAP
Chapter 2: Building Blocks for a Secure SAP Platform
Platform Security
Platform Compliance
Platform Reliability
Chapter 3: Keeping Up with Patches and Updates
The Paradox of Patching
The Need for Patching Policies
Chapter 4: Vulnerabilities Management
The Difference Between Patches and Vulnerabilities
Characteristics of Vulnerabilities
Cataloging Vulnerabilities
Time to Remediate: Understanding Day 1 Risks
Leveraging Specialized Tools Beyond Traditional Vulnerability Management 49
Chapter 5: Improving on Limited Visibility
Configurations
Performance
Changes to Infrastructure
Chapter 6: Secure SAP Best Practices
Minimizing Operating System Attack Surface
Firewall for SAP HANA®
Data Encryption
Patching and Live Patching
Chapter 7: The Role of Management and Automation Tools
Server Lifecycle Management
Security Management
SAP Performance Monitoring
Chapter 8: Challenges of a Secure SAP Environment Public Clouds
Microsoft Azure
Amazon Web Services
Google Cloud Platform
Cross-Cloud Support for Security
Pre-Hardened OS Cloud Images
Chapter 9: SAP Hardening Guidelines
Security Hardening Settings for SAP HANA® Systems
Local Firewall for SAP HANA
SUSE Remote Disk Encryption
Minimal Package Selection
Security Updates and Packages
Side-by-Side for SAP
Zero Trust Container Security Platform
Next Steps
About The Author
Dan Sullivan is a cloud and data architect with decades of experience with data intensive application development, database architecture, and cloud computing.
About SUSE
SUSE is a global leader in innovative, reliable, secure enterprise-grade open source solutions, relied upon by more than 60% of the Fortune 500 to power their mission-critical workloads. We specialize in Business-critical Linux, Enterprise Container Management and Edge solutions, and collaborate with partners and communities to empower our customers to innovate everywhere—from the data center, to the cloud, to the edge, and beyond.
SUSE puts the “open” back in open source, giving customers the agility to tackle innovation challenges today and the freedom to evolve their strategy and solutions tomorrow. The company employs more than 2,000 people globally. SUSE is listed on the Frankfurt Stock Exchange.
Download the book here!
The post New Release: The Gorilla Guide to…® A Secure SAP Platform appeared first on Gorilla Guide.