SAP Basis Security: Are You Protecting Your Systems Right?

discussion between SAP basis guys and ourselves on yes, you guys do not know how to protect those environments and you could test it. One other thing is that, you know, companies do is they really enforce some controls some controls only on production system. And there's a lot of staging levels for SAP system. So, you can imagine going from a development stage to a acceptance stage to a regression stage and yeah, we don't have to put controls there. We keep it flat network, no network segmentation. Amazing. But we can protect we can we should protect only the production environment. So, SAP basis team takes care of security. Think of SAP basis team as IT administrators. So, um

the skill set of actually protecting an SAP system is not there. So, they will not know how to even start or where to start from. Um there's a ongoing um uh what do you call it? Discussion between SAP basis guys and ourselves on yes, you guys do not know how to protect those environments and you could test it.