CyberArk boosts SAP ECS security with zero-standing privileges

CyberArk has announced that SAP Enterprise Cloud Services (ECS) will implement CyberArk to secure privileged and sensitive access to their cloud services, adopting a zero-standing privileges model to protect client data and simplify auditing processes.

SAP ECS supports over 6,000 organisations worldwide, using their SAP enterprise resource planning (ERP) software on their preferred cloud infrastructures. To manage and secure privileged access granted to administrators of these cloud services, SAP ECS will deploy various components of the CyberArk Identity Security Platform, including CyberArk Secure Cloud Access.

The initiative will enforce zero-standing privileges for all sessions, spanning cloud consoles, applications, and database access, and will operate from a single user interface. CyberArk Secure Cloud Access is recognised as the only identity security solution with capabilities for zero-standing privileges, surpassing the principle of least privilege, which is a significant component of many security frameworks and regulatory standards.

Roland Costea, CISO Enterprise Cloud Services and Executive Vice President at SAP, commented on the initiative, “My team’s vision for introducing CyberArk to SAP ECS is to build next-generation identity security for the business, providing the highest possible level of protection and reassurance to our global customer base. I look forward to partnering with CyberArk to enhance our cyber robustness and reinforce ECS’s reputation as the world’s private cloud provider of choice.”

Privileged administrators within cloud services frequently become targets for cyber attackers due to their high-level access. Therefore, a modern approach to securing extended IT users is crucial. This involves ensuring that no user has any entitlements by default, and that always-on access is eliminated.

Matt Cohen, Chief Executive Officer of CyberArk, also expressed optimism regarding the partnership, stating, “With identity-based attacks on the rise, a new paradigm is required for identity security—one where every identity is secured with the right level of privilege controls. The team at SAP ECS understands this and has laid out a bold vision for protecting its customers through zero standing privileges and just-in-time access. CyberArk is thrilled to partner with SAP ECS on this important initiative and we are committed to delivering best-in-class identity security solutions to support the evolving needs of its business.”

SAP ECS is identified as the largest private cloud globally with hundreds of thousands of servers running the core operations for more than 6,000 significant organisations across various industries. The deployment of CyberArk solutions aims at reducing vulnerabilities by ensuring privileged session access and administration rights are reviewed and revoked in a timely manner, aligning with the zero-standing privileges model. This new approach in securing identities is anticipated to significantly strengthen the cyber resilience of SAP ECS and its global client base.