United States

Home Country Sites Log In Create New Profile Contact SAP online or
Call +1-800-872-1727

   
Industries

Industries

Solutions

Solutions

Security

Security

Technical Resources

Technical Resources

Partners

Partners

News & Events

News & Events

Services

Services

Platform

Platform

Ecosystem & Partners

Ecosystem & Partners

About SAP

About SAP
  Your Resource Center

Security

Partners

SAP is committed to ensuring the highest levels of security in both our solutions and our customers' IT environments. To that end, SAP works with a broad range of security partners.

In addition to their built-in security features, SAP solutions are further secured through SAP software partners, and the security of SAP solutions is verified through partner testing.

Global Security Alliance

What's more, SAP has formed the Global Security Alliance, a platform for information and knowledge exchange that comprises leading providers of security and risk management offerings. Members must demonstrate a high level of security knowledge, best practices, and the ability to integrate their technologies and collaborate to provide customers with a complete, long-term security solution. SAP provides a single point of reference so that customers can easily get expert advice and deploy the most effective security solution.

For information about becoming a member of the alliance, contact Klaus Schimmer at klaus.schimmer@sap.com.

The following companies are members of the Global Security Alliance:

Avira
Avira offers a broad portfolio of professional security solutions, focusing mainly on antivirus and recovery solutions. With the AntiVir Virus Scan Adapter, Avira provides the first SAP-certified antivirus solution for the SAP NetWeaver platform. AntiVir can detect and eliminate viruses, Trojan horses, worms, and other threats, including adware and spyware.

Beta Systems Software
Beta Systems Software is a leading supplier of infrastructure software for enterprise-critical applications for the automation and protection of business processes. Beta Systems provides software for identity management, enterprise content management, and data center infrastructure. The company's worldwide customer base comprises more than 1,000 IT service providers and large organizations in finance and insurance, manufacturing, commerce, telecommunications, logistics, energy supply, and the public sector.

BMC Software
BMC empowers companies to align people with business processes and IT services. BMC Identity Management Suite supports organizational efforts to run an identity-aware business by providing centralized management of identities and access privileges, reducing operational costs, and ensuring that access is coordinated with business policies and regulations. BMC Identity Management Solutions permit centralized, policy-based management of enterprise identities and corresponding access privileges, and strengthen the ability to establish, monitor, and validate access policies. BMC's comprehensive identity and access solution spans corporate directory management and visualization, access management, password management, user administration and provisioning, and identity audit and compliance.

CA
CA, one of the world's largest IT management software companies, unifies and simplifies the management of enterprisewide IT. To effectively conduct business, you must know who your users are and what they can access. You also need to know what is happening in your environment and be in a position to intelligently and quickly react to threats. CA's eTrust Security Management solutions enable you to proactively manage your entire security environment so you can focus on your business. eTrust is the trusted advisor in security management that helps you achieve business efficiencies, ensure continuous operations, enforce security policies, and comply with regulations.

Conet
Conet has been developing and implementing IT solutions since 1987. The company provides a broad range of solutions and services, including consulting, software development, information and communications technology, and consulting on regulatory compliance and security.

Corisecio
Corisecio offers an innovative product line, including solutions for mobile security, portal security, Web services security, and database encryption. These solutions deliver advantage through a service-oriented business security framework that allows for a modular implementation. Because of its early specialization, the company also delivers sophisticated security solutions for service-oriented architectures (SOA). As an SAP partner and member of the Global Security Alliance, Corisecio complements SAP NetWeaver with certified products that deliver enhanced security functionality. Corisecio is headquartered in Darmstadt, Germany, and is supported by business partners around the world. Many DAX-30 companies are among Corisecio's customers and partners.

Cybsec
Cybsec is the leading Argentinean information security company, with more than 11 years of expertise. More than 250 clients in Latin America, Europe, and the United States attest to our commitment. Cybsec has been working closely with SAP security since 2001. Our professional services in the SAP security area include security architecture design, secure configuration, secure Web applications, and penetration testing. They also feature hardening, including operating system, parameterization, and Internal user profiles, as well as security audit, including Sarbanes-Oxley, Payment Card Industry (PCI) security, and ISO 27001 compliance.

Deny All
Deny All specializes in Web and XML application firewalls dedicated to Web applications and Web services. It delivers proven solutions to major organizations worldwide, across all market sectors, with more than eight years of production experience. Its rWeb, rWeb XML Edition, rFTP, and sProxy solutions are available as software and appliances to ensure the protection, authentication, and acceleration of Internet, extranet, and intranet transactions. With these solutions, Deny All can protect SAP Web applications and portals against known and unknown attacks for http(s) and SOAP/XML. rWeb implementations protect more than 2,000 Web applications around the world.

EnCrisp
EnCrisp is a global leader in designing and implementing leading-edge SAP governance, risk, and compliance solutions, with a business-driven approach to improving SAP security, automating audit risk assessments, and eliminating inefficiencies. Private, public, and government entities all benefit from EnCrisp's corporate governance, internal controls, security design, training, and audit solutions. The EnCure solutions platform and methodology incorporate real-world experience from Big Four audits, large IT integration projects, and compliance software design to deliver rapid implementation of SAP security design, accelerated issue remediation, and clear return on investment.

Entrust
Entrust is a leader in securing digital identities and information. More than 1,500 enterprises and government agencies in more than 50 countries rely on Entrust solutions to help secure the digital lives of their citizens, customers, employees, and partners. The company's proven software and services help organizations achieve regulatory and corporate compliance while turning security challenges such as identity theft and e-mail security into business opportunities.

Eurosec
Eurosec specializes in IT security consulting, with a strong focus on the overall security of complex SAP landscapes. The company offers longtime experience with SAP software, based on extensive security analyses of SAP solutions and support for SAP's solution security strategy. Eurosec also has experience in risk-based security assessments of complex SAP customer landscapes and the development of concepts for strategic IT security solutions.

IBM
IBM Tivoli security management solutions address two critical e-business challenges: automated identity management and security event management. The IBM Tivoli identity management solution helps organizations quickly realize return on investment by bringing users, systems, and applications online fast, while effectively managing users, access rights, and privacy preferences throughout the identity life cycle. The IBM Tivoli security event management solution helps organizations actively monitor, correlate, and quickly respond to IT security incidents across their e-business.

Imperva
Imperva, a leader in application data security and compliance, delivers activity monitoring, real-time data protection, and risk management solutions for business applications and data. Imperva's practical solutions provide full visibility into sensitive data, database, and application access – enabling granular control and maintenance of critical data. Over 2500 of the world's leading enterprises and government organizations in over 30 countries rely on Imperva's automated, scalable, and business-relevant solutions to prevent data theft, data abuse, and ensure data integrity. Imperva solutions for SAP include full protection for SAP Web applications via the SecureSphere Web Application Firewall – and full auditing, activity monitoring, and protection for SAP applications, from the database through application tiers, via the SecureSphere Database Monitoring Gateway.

Kuppinger Cole + Partner
Kuppinger Cole + Partner is the only European analyst group to focus exclusively on identity and access management (IAM) software and solutions. The company's clients are leading manufacturers, vendors, and services companies, most of them major players in the global market for digital ID and IAM, as well as major national and international corporations actively involved in IAM projects. Kuppinger Cole + Partner provides market perspective, critical product analysis, and strategic consulting, enabling companies to improve the quality and compliance of their business processes and better align their IT with rapidly changing business needs.

LogicaCMG
LogicaCMG covers SAP business practices in 18 countries on four continents. The company delivers a full range of solutions to organizations implementing, upgrading, extending, outsourcing, or aiming to maximize their SAP solutions. With 3,300 SAP consultants and more than 1,000 SAP-based implementations completed globally, LogicaCMG boasts a strong concentration of SAP skills and industry experience. The company has a strong track record in industry sectors such as aerospace and defense, automotive, aviation, banking and insurance, consumer products, food and beverage, high tech, logistics service providers, media, professional services, public sector, retail, oil and gas, and utilities.

NetContinuum
NetContinuum was the first company in the industry to define and implement a comprehensive and integrated controller appliance. It continues to lead the industry with its breadth of security features, real-world performance, and ease of use. The company's application controllers efficiently deploy, secure, and manage enterprise Web applications. Its application gateways enable rapid, secure deployment of new enterprise applications. And its Web application firewalls enable data center teams to immediately secure existing enterprise applications. Headquartered in Santa Clara, California, NetContinuum has regional offices in Bangalore, India; Tokyo, Japan; and throughout the United States.

Novell
Novell offers security and identity solutions that enable companies to integrate, automate, and secure access to information for customers, partners, and employees. Standards-based solutions provide cross-platform compatibility for maximum agility and choice. As a result, SAP customers can simplify and secure their enterprise while controlling costs and meeting regulatory demands.

Protiviti
Protiviti is a leading provider of independent risk consulting and internal audit services. The firm provides consulting and advisory services to help clients identify, assess, measure, and manage financial, operational, and technology-related risks encountered in their industries, and assists in the implementation of the processes and controls to enable their continued monitoring. Protiviti also offers a full spectrum of internal audit services to assist management and directors with their internal audit functions, including full outsourcing, co-sourcing, technology and tool implementation, and quality assessment and readiness reviews.

RSA Security Inc.
RSA, the security division of EMC, is the premier provider of security solutions for business acceleration, helping the world's leading organizations succeed by solving their most complex and sensitive security challenges. RSA's information-centric approach to security provides SAP users with identity assurance and access control, encryption and key management, compliance and security information management, and fraud protection. These solutions bring trust to millions of user identities, the transactions they perform, and the data they generate.

Secude Global Consulting
Secude Global Consulting is an independent sister company of Secude International, which is one of the world's leading providers of SAP security solutions. Secude Global Consulting focuses on consulting and implementation services for enterprise risk management, especially IT security, regulatory and legal compliance, corporate governance, and identity and access management for SAP customers. By applying a holistic approach and a team of international experts, Secude Global Consulting helps SAP customers achieve compliance and a higher level of security for their business processes, SAP applications, and IT systems.

Secude International
Secude International is a market leader in authentication and authorization, encryption, data integrity, and the management of digital identities, delivering a higher level of IT security to organizations around the world. The company offers solutions for single sign-on, role-based access control, and the security of documents, applications, and transactions. Secude International is a member of iT_SEC SWiSS AG and was founded in 1996 as a partnership between SAP and the Fraunhofer Institute.

Securinfo
Securinfo integrates innovative technology with an industry-standard methodology of information ownership, providing organizations with a fully automated identity- and risk-based solution for SAP application security. Information ownership empowers business process owners to manage access to their information, thereby enabling responsibility and accountability as required by Sarbanes-Oxley and ISO 17799. Securinfo for SAP is unique in that it automates the build process with rapid re-engineering of existing authorizations to deliver business-process-oriented roles and permissions on a highly controlled platform with workflow-enabled security, user, risk, and control management components wrapped in a change management layer.

SecurIntegration
Founded in 2001, SecurIntegration is an independent SAP security consultancy, with headquarters in Cologne, Germany, and offices in Europe, the United States, and Asia. Its team of security experts delivers services around the world and provides know-how through books and articles. As an SAP software and services partner, the company specializes in SAP NetWeaver authorizations, GRC consulting, SAP security audits, and implementation of secure enterprise portals and single sign-on in SAP systems.

Security Innovation
Security Innovation is a world leader in application security, providing risk assessment, risk mitigation, and education services to global enterprises and technology vendors such as SAP, IBM, Microsoft, ING, Symantec, Visa, and GE. Security Innovation's service portfolio includes code reviews, application security testing, threat modeling, and training. The company has a global presence, with offices in Boston, Seattle, and Amsterdam.

Siemens Communications
Siemens offers a comprehensive portfolio of end-to-end security solutions. The portfolio includes best-in-class products that ensure the confidentiality, integrity, reliability, and availability of information. It comprises DirX products for identity and access management, smart card products with the CardOS operating system for smart card-enabled solutions, and TranSON products for network and system security. Together with SAP, Siemens offers integrated identity management for SAP NetWeaver, SAP ERP, and other SAP software in heterogeneous environments.

Sun Microsystems
Sun Microsystems helps companies deploy enterprise services-oriented architecture (enterprise SOA) by applying people and technology, in equal parts, to build a computing environment that brings manageability and flexibility to the data center, security to the enterprise, and integration within a heterogeneous IT landscape. While Sun's focus starts in the data center, its impact goes well beyond. The company helps enterprises better connect with their customers, suppliers, partners, and employees. On a broader level, Sun's philosophy of sharing innovation and building communities is at the forefront of the next wave of computing: the Participation Age.

Turnkey Consulting
Turnkey Consulting is a niche consultancy company focused on the provision of high-quality SAP security, SAP GRC, and SAP portal solutions. Turnkey has developed best-practice methodologies for the implementation of these solutions and has a network of IT professionals with the combination of technical knowledge, consulting skills, and broad business understanding required to deliver end-to-end solutions in these areas. Working together with implementation partners and directly with clients, Turnkey also offers SAP security audit, review, and remediation services. The company has its headquarters in London and will be opening satellite offices in Australia and the United States in 2007.

VICCON
VICCON is a leading consultant with 12 years of experience in risk, security, and crisis management as well as fraud management. Main objectives are consulting services in different areas including security management for corporate and site security, security processes, ISO 27001 compliance and requirement management, information security and privacy, IT security architecture and digital forensics. VICCON supports corporate security and BCM units with software based on the SAP NetWeaver technology platform.

Virtual Forge
Virtual Forge offers security consulting services and tools for SAP solution-based security and governance, risk, and compliance. The company combines in-depth security expertise and SAP know-how based on many years of experience. Its portfolio covers the complete software development life cycle, including requirements engineering, secure architecture and design, code review, and security testing. The company has offices in Walldorf, Germany, and Palo Alto, California.

Visonys
Based in Switzerland, Visonys is a worldwide leader in standard IT security products. Its solutions protect Web applications, including the SAP NetWeaver platform, against threats, increasing availability and reducing operating costs. In addition to filtering mechanisms, Visonys solutions include authentication enforcement and single sign-on for seamless integration of SAP applications. Because SAP solutions handle http, https, and xml traffic, the company's award-winning Web application firewall, visonysAirlock, can secure the application as well as the associated Web services. Nine out of 10 Swiss banks, including branches worldwide, secure their Web applications with Visonys.

wikima4
wikima4, the leading Swiss consulting company for SAP security, provides support in all areas of process and system security. wikima4's services include consulting, training, and development of solutions for regulatory compliance, identity and access management, authentication and smart sign-on, as well as digital signatures and public key infrastructures. The company's security offerings for SAP solutions have been implemented by many leading organizations. In addition to consulting, wikima4 employees are actively engaged in education and research cooperation at science institutions in Switzerland and Germany.

Want to learn more? Contact us, call +1-800-872-1727, or contact your nearest SAP sales office.
Save
Share

Investors Careers Inside Access Communities Education and Training ASUG Contact SAP
Copyright/Trademark Privacy Impressum Using SAP.com Text-Only View Print View

Questions or comments about the Web site?
Contact the webmaster@sap.com.