Home >> News >>

ERPScan Became The Hot Company In Vulnerability Management Solutions By CDM Awards At RSA 2015

Tuesday, 28 April 2015, 11:48 Hrs

ERPScan announced today that Cyber Defense Magazine, the industry's leading electronic information security magazine and media partner of the RSA Conference 2015, has named ERPScan a winner in the Hot Company category of Vulnerability Management Solutions.

After many months of review and judgement by leading independent information security experts, Cyber Defense Magazine is pleased to have selected ERPScan as a winner.

"We’re thrilled to recognize next-generation innovation in the information security marketplace and that’s why ERPScan has earned this award from Cyber Defense Magazine. Some of the best INFOSEC defenses come from these kinds of forward thinking players who think outside of the box,"

- said Pierluigi Paganini, Editor-in-Chief, Cyber Defense Magazine.

SAP security assessment is a process that requires dedicated time. Additionally, since these are complex systems to operate coupled with an array of different installation types, the need for different divisions of security specialists is urgent. Even the application server may be based on either ABAP, J2EE, HANA, or another platform, and they require completely different specialists, not to mention particular applications and modules, which amount to more than 50. Manual in-depth SAP security assessment is time-consuming because of the varying vulnerabilities and configurations on top of the issues related to user access control. ERPScan is a great innovative solution which can solve all these complex tasks and help enterprises, consulting companies, and penetration testers do their job more quickly and clearly.

"SAP Vulnerability Management is just a part of our Suite, which also checks source code security, access control, and segregation of duties. But today, I would like to highlight how ERPScan helps in vulnerability management. Penetration testers, for instance, can use our tool for hundreds of checks that can be launched anonymously. Our unique set of exploits can target specific SAP systems to gain unlimited access to business data. Consulting companies can save time by using the automatic checks in the customer's SAP landscape against multiple standards and industry-specific guidelines like SOX, PCI DSS, NERC CIP, ISACA, DSAG, and EAS-SEC recommendations. What’s more important, enterprise customers can do it all on a scheduled basis: compare results, analyze trends in nice dashboards, and export results into any GRC or SIEM system for further analysis."

- adds Alexander Polyakov, CTO of ERPScan