Topics 08 - B ERP Security Challenges and Best Practices

Uploaded by

abdirahman

0% found this document useful (0 votes)

3 views2 pages

ERP Security challenges and best practices

Original Title

Topics 08_b ERP Security challenges and best practices

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

ERP Security challenges and best practices

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

0% found this document useful (0 votes)

3 views2 pages

Topics 08 - B ERP Security Challenges and Best Practices

Uploaded by

abdirahman

ERP Security challenges and best practices

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 2

Search inside document

5/4/2023

ERP Security challenges and Best

practices

Causes for vulnerabilities in ERP systems

 Complexity
 ERP systems process transactions and implement procedures to ensure that users have different access
privileges.
 With the growth of complexity, the possibility of errors and segregation of duties conflicts increases.
 Specificity
 Vendors fix vulnerabilities on the regular basis since hackers monitor business applications to find and
exploit security issues.
 SAP releases patches monthly on Patch Tuesday, Oracle issues security fixes every quarter in Oracle Critical
Patch Update.
 Business applications are becoming more exposed to the Internet or migrate to the cloud.[5]
 Lack of competent specialists
 ISACA states that "there is a shortage of staff members trained in ERP security“
 security services have the superficial understanding of risks and threats associated with ERP systems.
 Consequently, security vulnerabilities complicate undertakings such as detecting and subsequent fixing.
 Lack of security auditing tools
 ERP security audit is done manually as various tools with ERP packages do not provide means for system
security auditing.
 Manual auditing is a complex and time-consuming process that increases the possibility of making a mistake.
 Large number of customized settings
 The system includes thousands of parameters and fine settings including segregation of duties for
transactions and tables, and the security parameters are set for every single system.
 ERP system settings are customized according to customers' requirements.

1
5/4/2023

ERP Security Challenges

 Poor governance:
 Access management:
 Exposure:
 Shared responsibility:
 Fast-changing threat environment: Attackers are continuously evolving
 Customization:
 Frequent software updates:
 Continuously advancing attack vectors:

Best Practices to Beat ERP Security Challenges

 Apply Cyber security policy in ERP strategy
 Know your ERP’s features and limitations:
 Third-party audits:
 Restriction/administration:
 Passwords:
 Software updates:
 Use Encryption technologies for communicating sensitive data
 Monitor threat intelligence:
 Cybersecurity awareness training:

Lab - Visualizing The Black Hats: Objectives
Document4 pages
Lab - Visualizing The Black Hats: Objectives
SK Raphael
No ratings yet
Security Operations Center - Analyst Guide: SIEM Technology, Use Cases and Practices
From Everand
Security Operations Center - Analyst Guide: SIEM Technology, Use Cases and Practices
Arun Thomas
Rating: 4 out of 5 stars
4/5 (1)
Hackers Information by Buddhax iEF
Document20 pages
Hackers Information by Buddhax iEF
Israel a Catalunya
No ratings yet
Active Directory Penetration Test Report Jacob Scheetz PDF
Document12 pages
Active Directory Penetration Test Report Jacob Scheetz PDF
huynhphuc112
No ratings yet
Major Challenges in Audiing ERP Security
Document3 pages
Major Challenges in Audiing ERP Security
sunilmall
No ratings yet
ERP Security Issues and Privacy Issues
Document31 pages
ERP Security Issues and Privacy Issues
Faheem Ebrahim
No ratings yet
A Five-Factor Software Architecture Analysis Based On Far For Atm Banking System
Document21 pages
A Five-Factor Software Architecture Analysis Based On Far For Atm Banking System
Vinod Deenathayalan
No ratings yet
Accounting Information System: The Institute of Chartered Accountants of Bangladesh
Document18 pages
Accounting Information System: The Institute of Chartered Accountants of Bangladesh
Jahed Mishu
No ratings yet
2 Principles and Concepts Data Security Upload
Document39 pages
2 Principles and Concepts Data Security Upload
Divyesh yadav
No ratings yet
EAS-SEC SAP Cybersecurity Framework Qt7vy4
Document30 pages
EAS-SEC SAP Cybersecurity Framework Qt7vy4
al
No ratings yet
IT Control and Audit - Chapter 09
Document24 pages
IT Control and Audit - Chapter 09
Hạ Phạm Nhật
No ratings yet
A Report Erp Security Issues and Privacy Issues: Nithin Sasi
Document12 pages
A Report Erp Security Issues and Privacy Issues: Nithin Sasi
Nithin S Nair
No ratings yet
ASUG82900 - Securing SAP Software Systems From Cyberattacks
Document38 pages
ASUG82900 - Securing SAP Software Systems From Cyberattacks
Fahri Batur
No ratings yet
Design and Analysis of Erp-Sales Order Processing For Small and Medium Enterprises (Smes)
Document5 pages
Design and Analysis of Erp-Sales Order Processing For Small and Medium Enterprises (Smes)
International Journal of Scientific Research in Science, Engineering and Technology ( IJSRSET )
No ratings yet
Trend Micro Apex One Training For Certified Professionals: Duration: 3 Days Course Code: TMAO
Document3 pages
Trend Micro Apex One Training For Certified Professionals: Duration: 3 Days Course Code: TMAO
ilyas
No ratings yet
Top 10 SAP Audit and Security Risks: 2. Insecure Configuration
Document3 pages
Top 10 SAP Audit and Security Risks: 2. Insecure Configuration
TARA_23
No ratings yet
OWASP Top 10 2021
Document18 pages
OWASP Top 10 2021
darknetbot307
No ratings yet
Arcon Epm Brochure
Document8 pages
Arcon Epm Brochure
Patrick Ang
No ratings yet
My Intern
Document22 pages
My Intern
shiny Duddu
No ratings yet
Introduction To Computing - 01
Document10 pages
Introduction To Computing - 01
Geneva Dionio Caingles Medina
No ratings yet
Imperva Database Security: Simplify Data Compliance and Stop Breaches
Document4 pages
Imperva Database Security: Simplify Data Compliance and Stop Breaches
AndresPantojaPachajoa
No ratings yet
Vulnerability Protection by Trend Micro
Document8 pages
Vulnerability Protection by Trend Micro
Nimesha Alwis
No ratings yet
Controls Which Came Along The Way: Technical Controls
Document6 pages
Controls Which Came Along The Way: Technical Controls
GAURAV SOLANKI
No ratings yet
SSE Answers
Document6 pages
SSE Answers
ismathzehraiz
No ratings yet
Epicor GDPR Compliance WP ENS
Document5 pages
Epicor GDPR Compliance WP ENS
Richard
No ratings yet
Application Security
Document20 pages
Application Security
Awal Mamane
100% (1)
Unit 2 Application Security Another
Document27 pages
Unit 2 Application Security Another
Vishal
No ratings yet
Unit 2 Application Security Another - PG 1 - 15
Document15 pages
Unit 2 Application Security Another - PG 1 - 15
Vishal
No ratings yet
Unit II
Document105 pages
Unit II
Yogita Tiwari
No ratings yet
Seqrite Endpoint Security EPS
Document8 pages
Seqrite Endpoint Security EPS
s@n
No ratings yet
Chapter 8
Document4 pages
Chapter 8
Mayur Kamatkar
No ratings yet
Security Requirements Engineering Framework-Compressed
Document24 pages
Security Requirements Engineering Framework-Compressed
betariangl24
No ratings yet
Almacenamiento en La Nube
Document15 pages
Almacenamiento en La Nube
Felipe Guzman
No ratings yet
The Evolution of Endpoint Protection: Welcome
Document12 pages
The Evolution of Endpoint Protection: Welcome
riyasathsafran
No ratings yet
Subject: ERP For Fashion Business Assignment 1: Part 2: National Institute of Fashion Technology, Mumbai
Document6 pages
Subject: ERP For Fashion Business Assignment 1: Part 2: National Institute of Fashion Technology, Mumbai
Mourushi Borah
No ratings yet
EventTracker Security Center Product Sheet
Document2 pages
EventTracker Security Center Product Sheet
Manu Pratap
No ratings yet
Securing The NetworkWA
Document9 pages
Securing The NetworkWA
wasirifie
No ratings yet
OT Security Checklist
Document15 pages
OT Security Checklist
ct pentest
No ratings yet
Next-Generation Application Monitoring
Document7 pages
Next-Generation Application Monitoring
mathurashwani
No ratings yet
PC 3 - 4.4 Owasp
Document5 pages
PC 3 - 4.4 Owasp
Pravindra Kumar
No ratings yet
Cybersecurity Measures Hardware Vulnerabilities
Document12 pages
Cybersecurity Measures Hardware Vulnerabilities
Seethal S Kumar
No ratings yet
Itot Integrated Security Log Management
Document10 pages
Itot Integrated Security Log Management
Just Another Youtuber
No ratings yet
Function Category
Document15 pages
Function Category
Francesco F.
No ratings yet
Unit 6: Internet of Things: Iot Privacy, Security and Vulnerabilities Solutions
Document51 pages
Unit 6: Internet of Things: Iot Privacy, Security and Vulnerabilities Solutions
Khushbu Bora
No ratings yet
MaxPatrol 8 (En)
Document33 pages
MaxPatrol 8 (En)
andi susanto
No ratings yet
CMGT 400 Week 3 Individual Assignment Security Considerations
Document10 pages
CMGT 400 Week 3 Individual Assignment Security Considerations
robpacha
100% (1)
Tripwire Executives Guidetothe CISCSC
Document16 pages
Tripwire Executives Guidetothe CISCSC
Romero Giancarlo
No ratings yet
Securing The Modern Enterprise SToRM
Document15 pages
Securing The Modern Enterprise SToRM
Mildred Echezano
No ratings yet
Erp Ass 1
Document3 pages
Erp Ass 1
Sami Ullah
No ratings yet
Chapter 8
Document31 pages
Chapter 8
Amirah20
No ratings yet
Secure Software Development Standard
Document10 pages
Secure Software Development Standard
rontechtips
No ratings yet
Vulnerabilidades Sistemas Infor
Document20 pages
Vulnerabilidades Sistemas Infor
Erick Carhuas Huaynates
No ratings yet
Mohammad Inzamam Quraishi: Professional Summary
Document2 pages
Mohammad Inzamam Quraishi: Professional Summary
Muhammad Saquib Anjum
No ratings yet
The Easiest Solution For: Next-Generation SIEM
Document11 pages
The Easiest Solution For: Next-Generation SIEM
eakbas1627
No ratings yet
Understanding Comprehensive Database Security: Technical White Paper
Document36 pages
Understanding Comprehensive Database Security: Technical White Paper
temptiger
No ratings yet
5 Linux Skills You Must Master To Be A Cybersecurity Professional
Document1 page
5 Linux Skills You Must Master To Be A Cybersecurity Professional
motojime
No ratings yet
Session 12 - ERP System Ver 1
Document41 pages
Session 12 - ERP System Ver 1
Fikriansyah Adzaki
No ratings yet
UEBA
Document15 pages
UEBA
Nirnay Patil
No ratings yet
L Loftley JR Resume April 2021
Document7 pages
L Loftley JR Resume April 2021
Ashwani kumar
No ratings yet
SoheilTavakkol - S.a.a.S ERP
Document2 pages
SoheilTavakkol - S.a.a.S ERP
ss.ad.tvkl
No ratings yet
Information Systems Audit Report: Presented by - Sanjiv Arora, Cisa, Cism, Cgeit
Document15 pages
Information Systems Audit Report: Presented by - Sanjiv Arora, Cisa, Cism, Cgeit
delhi guy
No ratings yet
MGT422
Document8 pages
MGT422
Uzair Farooq
No ratings yet
Cloud One™ - Application Security: Trend Micro
Document4 pages
Cloud One™ - Application Security: Trend Micro
Yogesh Jain (H4CK3RLeX)
No ratings yet
Topics 02 - ERP Design Consideration - Development Vs Acquisition
Document22 pages
Topics 02 - ERP Design Consideration - Development Vs Acquisition
abdirahman
No ratings yet
Topics 01 - ERP As A Business Enabler01-Feb-2024
Document17 pages
Topics 01 - ERP As A Business Enabler01-Feb-2024
abdirahman
No ratings yet
Topics 04 - Notable Enterprise Resource Planning (ERP) Software
Document8 pages
Topics 04 - Notable Enterprise Resource Planning (ERP) Software
abdirahman
No ratings yet
Evolution of HRM HRIS - The Role of Information Technology
Document13 pages
Evolution of HRM HRIS - The Role of Information Technology
abdirahman
No ratings yet
Lecture 6
Document11 pages
Lecture 6
abdirahman
No ratings yet
Lecture 4
Document13 pages
Lecture 4
abdirahman
No ratings yet
Lecture 5
Document8 pages
Lecture 5
abdirahman
No ratings yet
Lecture 1
Document19 pages
Lecture 1
abdirahman
No ratings yet
Graphical Password Authentication
Document11 pages
Graphical Password Authentication
IAmTech
No ratings yet
Claves Eset 5
Document3 pages
Claves Eset 5
Orquesta Sensacion Caribe
No ratings yet
Initial Server Setup With Ubuntu 20.04
Document5 pages
Initial Server Setup With Ubuntu 20.04
Abu Fadilah
No ratings yet
Cryptography and Network Security JNTH r18 UNIT-5
Document29 pages
Cryptography and Network Security JNTH r18 UNIT-5
Bhavana Matam
No ratings yet
Issue Tracker Template
Document10 pages
Issue Tracker Template
Tawfiq4444
No ratings yet
Fortinet Price List 2019 Singapore
Document135 pages
Fortinet Price List 2019 Singapore
Anchor Business & IT Solutions
No ratings yet
Battle Card - Fortinet Vs Cisco ASA Series11 PDF
Document2 pages
Battle Card - Fortinet Vs Cisco ASA Series11 PDF
Muhd Alif
No ratings yet
About Digitalme
Document6 pages
About Digitalme
babytwelve
No ratings yet
Internal Audit's Role in Cyber Security
Document4 pages
Internal Audit's Role in Cyber Security
ThilakPathirage
No ratings yet
Dilemma On Ransomware
Document6 pages
Dilemma On Ransomware
Ellen Mynelle Mabulac
No ratings yet
Job Adverts by Cybersecurity Certifications 1566535264
Document4 pages
Job Adverts by Cybersecurity Certifications 1566535264
adriana_994745362
No ratings yet
Cisco RV220-W VPN Router & GreenBow IPsec VPN Software Configuration
Document16 pages
Cisco RV220-W VPN Router & GreenBow IPsec VPN Software Configuration
greenbow
No ratings yet
VCIT Status and Activity Report For August 2023
Document3 pages
VCIT Status and Activity Report For August 2023
accidentalcio
No ratings yet
Full Course Clf100 r62 Solution Overview
Document30 pages
Full Course Clf100 r62 Solution Overview
Arbaz Ali
No ratings yet
Week 1 Introduction
Document14 pages
Week 1 Introduction
Anonymous lcQ0saI
100% (1)
Computer Security
Document43 pages
Computer Security
Viraf Patrawala
No ratings yet
Getting X509 Certificates in and Out of The Key Store
Document7 pages
Getting X509 Certificates in and Out of The Key Store
luyentl
No ratings yet
SIEM Use-Cases Pertaining To PCI DSS V3
Document6 pages
SIEM Use-Cases Pertaining To PCI DSS V3
Moazzam Ch
No ratings yet
Violation of Privacy in Computers and It'S Prevention: by I Archana
Document7 pages
Violation of Privacy in Computers and It'S Prevention: by I Archana
Archana
No ratings yet
CSC662 - Computer Security Short Note
Document10 pages
CSC662 - Computer Security Short Note
Mohamad Yusri
No ratings yet
FacebookPasswordList
Document3 pages
FacebookPasswordList
Ashlee Renee
100% (1)
Jestro Master Solution
Document6 pages
Jestro Master Solution
Ganni Anaufal Nasution
No ratings yet
Encryption
Document66 pages
Encryption
Roberto Raimondo
No ratings yet
Bravish Babu CV - Information Security Engineer
Document1 page
Bravish Babu CV - Information Security Engineer
smartbroad26
No ratings yet
(Draft 1.0) - 20 Most Important Controls and Metrics For Effective Cyber Defense and Continuous FISMA Compliance
Document40 pages
(Draft 1.0) - 20 Most Important Controls and Metrics For Effective Cyber Defense and Continuous FISMA Compliance
Gilligan Group Inc.
100% (4)
Chapter 2 (B) - Block Ciphers and Data Encryption Standard
Document36 pages
Chapter 2 (B) - Block Ciphers and Data Encryption Standard
Aris Munandar
No ratings yet
Chapter 16IT Controls Part II
Document10 pages
Chapter 16IT Controls Part II
Chene Soriano
100% (1)