SEARCH FINANCIAL SERVICES INFRASTRUCTURE SECURITY SCIENCE INTERVIEWS

 

     

ERPScan Rolls Out AI Driven SAP Cybersecurity Platform

November 24, 2017

The new platform leverages Machine Learning and Deep Learning to provide predictive, preventive, detective, and responsive capabilities thus covering all aspects of SAP Security in one platform.

While cyberattacks are looming large over enterprises, it is inappropriate to rely only on the detection and patching of vulnerabilities but crucial to detect any potential attacks or malicious user behavior. Business applications are customized in the way that building the signature-based threat detection is ineffective, and, as a matter of fact, traditional approaches can hardly help.

The new smart ERPScan’s cybersecurity platform introduces 3 salient features to SAP security: it is smart not only about deep learning engine to detect threats and anomalies but intelligent enough to provide each user with a specific interface and set of functions based on his or her role; it is integrated and embraces all SAP security areas, e.g. Platform security, Code security, and SoD like no other vendors; it supports all SAP cybersecurity requirements from Gartner PPDR (Predict, Prevent, Detect, Respond, and Monitor) framework.

"This solution is a real breakthrough for us. We spent the last 2 years on developing a solution that would be able not only to cover all areas of SAP cybersecurity but also be intuitive by adding machine learning and adaptive interfaces. Our secret team of data scientists and machine learning experts battled with highly qualified and experienced members of the Research team and taught the system to detect the most advanced attacks and anomalous user behavior. Now we are ready to present the new generation of SAP Cybersecurity products, and it is so excited!”  – commented Alexander Polyakov, founder and CTO at ERPScan.

There are 2 notable attack vectors on ERP systems. The first is exploiting traditional vulnerabilities to gain remote access (e.g. SQL injections and XSS issues). To detect the attacks, static signatures of known and 0-day vulnerabilities were combined with the neural network engine that analyzes requests thus helping to minimize false positives and identify 0-days. The second step is analyzing the behavior if an attacker finally gains access to the system somehow or already was a legitimate employee.

The engine learns the normal user behavior in SAP System, profiles, user activities, and reports if the number of suspicious events reach a particular mark. The combination of 2 approaches together with other modules that aid in identifying issues, automatically patching them, detecting threats, responding to them, and collecting all the important data is a game-changing solution against hackers.

The last but not least, this solution is user-friendly. A new Monitoring Module provides dashboards for particular roles, be it CISO, CIO, Manager or Developer, and gives its user maximum protection with fewer efforts.

With help of this tool, customers will be able to automatically follow all the requirements of the first public ERP Cybersecurity Framework.

Terms of Use | Copyright © 2002 - 2017 CONSTITUENTWORKS SM  CORPORATION. All rights reserved. | Privacy Statement