Faulty configurations often are door-openers for external attacks. Complex and historically grown SAP architectures e. g. might have more than 1500 configuration parameters. About 20 percent thereof are security-relevant as they control the inter-system communication or the right to create new users and roles. Also for operators of critical infrastructures (KRITIS) are partly extremely sophisticated and especially developed professional IT systems with a long lifecycle in use, which cannot be secured by a fast import of updates or an exchange of components in risk.
Without experienced experts for the information security management (ISMS) it is practically impossible to minimize the number of potentially hazardous misconfigurations efficiently, because the administration of the protective mechanisms in use and the IT security products within an integrated IT security architecture is a massive challenge: individual methods and tools offer numerous extremely sophisticated possibilities. It requires a high degree of expert knowledge, experience and overview to identify and coordinate the suitable ones as well as to correctly and seamlessly configure them and utilize them ideally in an automated way and to distribute them partly via self-service portals.
Our expertise from a wide range of practical projects and our own security research, is at the service of your business! Use our experts and certified data centers to support your security teams and operate your security infrastructures and solutions.