Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security budgets naturally compete with other priorities for funding, and finance departments traditionally prioritize immediate financial gains over long-term investments. Cybersecurity, with its focus on prevention, is often seen as an element that’s ‘nice to have’ rather than a necessity. Especially when compared to tangible projects with quicker returns, cybersecurity initiatives can be left chronically underfunded. Where do we spend? And where are the attacks coming from?

The COVID-19 pandemic triggered a seismic shift in how we work, propelling remote work from a niche option to the mainstream. Organizations scrambled to adapt, often prioritizing business continuity over security. However, as the dust settles, it's clear that this new normal of remote work isn't going anywhere. This presents a significant challenge: how do we secure a workforce that's no longer confined within the traditional office perimeter?

SAP recently announced the end-of-life for SAP Identity Manager (IDM). This announcement required SAP to establish guidelines for existing customers to transition away from the platform with other products. One Identity is a leading vendor of choice for this migration due to its well-established market presence and robust SAP solutions support. In this two-part blog series, we will shed some light on how One Identity can seamlessly integrate with SAP products, starting with its certified ABAP connector.

Knowledge is power, right? Well, yes – except when it comes to access and authentication. That’s because knowledge-based factors, in the form of passwords, are making organizations less powerful, and more vulnerable. As a result, many are looking toward a future beyond passwords. You may have seen the Forrester report estimating that 80% of security breaches involved privileged credentials.

Cyber insurance is a critical form of risk management, designed to mitigate the financial impact of a breach or other security incidents. By spreading the risk, it helps reduce the potentially catastrophic consequences to manageable levels. Cyber insurance is a fundamentally financial tool that is often handled by the financial or insurance arm of any organization, with strong involvement of the cyber security teams. While complex, this blog aims to simplify the essentials.

Active Directory (AD), a Microsoft Windows directory service, helps maintain a robust security perimeter within enterprise environments. It helps your business enforce security policies, assign permissions and mitigate security risks within the network. Let’s say your business’s IT infrastructure is a fortress, wherein AD acts as the gatekeeper controlling who enters and what they have access to.

Cyber attackers relentlessly scour online resources for vulnerabilities, particularly within software solutions. Despite the best efforts of dev teams and quality assurance processes, maintaining a defensive edge is a relentless challenge. Unfortunately, vulnerabilities persist, especially in trusted software solutions used by companies as the cornerstone of their cybersecurity posture, such as privileged access management (PAM).

Imagine this: a sales representative at your company needs to update customer information in your CRM system. She enters her login credentials, but the system rejects them. After a frustrating series of password resets and calls to IT, she finally gains access. But her ordeal isn't over yet. She still needs to log into several other applications: the marketing automation platform, the customer support portal and the internal communication tool – each with its own unique username and password.

In part two of this blog series, we will look at how One Identity can support SAP environments from an Identity and Access Management (IAM) perspective. As SAP Identity Management (IDM) reaches its end-of-maintenance, customers will need to explore alternatives for their identity management landscapes. Here is a list of some key elements to consider.

If you think data privacy law is a minefield, you’re not alone. At our last count, there were 120 jurisdictions around the globe, each with their own data privacy legislation. Each set of legislation is as complex and intricate as the next. How are you supposed to tame this multi-headed monster? How on earth did we end up here? Let’s look at the current state of global data protection legislation, where it’s headed and what you can do about it.