Many companies are finding it difficult to decide what resources they can or should migrate from their own private data centers into the modern and less expensive clouds run by IT giants such as Amazon and Microsoft. The decision of moving to the cloud is generally based on limitations of customized legacy platforms, the low cost of migration, and the even lower cost of maintenance.
The cost benefits of the cloud are clear, but there is one concern to address before moving to the cloud: You must trust the cloud vendor to protect and secure your data. Information such as HR data, finances, and product intellectual property require careful handling due to legal requirements and corporate governance. How do you ensure your financial data residing in a cloud application is safe from a prying IT administrator? And how can you make sure the systems’ security meets the requirements of your company and the laws under which you operate?
Protect Your Sensitive Data
Keeping your SAP data out of the cloud is not as easy as you might think. Cloud services extend to every element of the modern day-to-day activities of your employees. Whether you like it or not, some of your SAP data may already be in the cloud, and beyond your control. Do your employees use cloud storage, like Dropbox or SkyDrive? Do you allow employees to access company resources on their mobile devices and tablets? Do you work with partners and share information? Are their email systems and collaboration platforms already in the cloud, storing data you’ve shared with them? A very significant portion of your SAP data is already in the cloud and there is a strong chance you have no idea where it is.
Fortunately, there is an answer to the problem. Technologies like the Microsoft Active Directory Rights Management Services (AD RMS) wrap files in cryptography and access controls, ensuring that only authorized users can access sensitive data. But to effectively protect all the sensitive data leaving your SAP systems, you need to directly integrate Microsoft AD RMS with SAP NetWeaver and SAP GUI. This way, when someone attempts to download a file, it is only delivered in a protected format. Then it won’t matter where the document goes — every time someone attempts to open it, they will need to log in with an authorized account.
Take Control of the Cloud
SECUDE, an experienced SAP security company, has released a solution that helps companies integrate the document security technology of Microsoft AD RMS to their SAP solutions. Halocore for SAP NetWeaver ensures the protection of any type of SAP data as it is downloaded via SAP GUI, and other methods will be supported in the future. This protection then allows you to secure the SAP data no matter where it ends up: on an employee laptop, in the cloud, or forwarded from a partner’s inbox to a competitor.
For more information on how Halocore for SAP NetWeaver can help you protect your sensitive SAP data in the cloud, please visit www.secude.com/solutions/halocore/for-sap-netweaver.