Welcome to SAP Cybersecurity by NO MONKEY – where we make SAP security real, relevant, and actionable.
Hosted by Waseem Ajrab, this podcast breaks down the complexities of SAP cybersecurity into conversations that matter. Whether you're a CISO, SAP admin, SOC analyst, or auditor, we tackle the challenges you face every day: securing critical SAP environments, bridging the gap between security and business, and protecting the digital backbone of global operations.
With over 500,000 SAP customers running critical business processes, securing these systems isn't just an IT issue – it's a business imperative. But SAP security doesn't have to be intimidating or isolated. Through expert interviews and practical insights, we explore:
- Real-world attack vectors and defense strategies
- How to connect SAP security with SOC operations
- Cloud security challenges in SAP BTP environments
- Building effective collaboration between IT Security, SAP teams, and business leaders
- Turning cybersecurity from a cost center into a business enabler
NO MONKEY's approach is simple: People → Process → Technology. We believe security starts with empowering the right people, establishing smart processes, and only then choosing the right tools.
New episodes drop regularly, featuring conversations with cybersecurity experts, SAP practitioners, and industry leaders who've been in the trenches. No vendor pitches. No fluff. Just actionable insights you can apply today.
Because curiosity is free – but recovery isn't.
SAP systems are moving from execution to decision making. Today, AI agents aren't just advising, they're acting autonomously in business processes. In this episode, Waseem sits down with José Marquez to tackle the question most organizations aren't asking: When AI agents make decisions in your SAP environment, who carries the responsibility?
Over 90% of the global top 1000 companies run critical business processes on SAP. Yet security remains a blind spot for most organizations.
Joris van de Vis has spent two decades finding vulnerabilities in SAP systems. Close to 150 zero-day discoveries, all responsibly disclosed. In this episode, he breaks down why the obscurity that used to protect SAP systems doesn't work anymore. Open source tools like Metasploit, PySAP, and Hashcat have leveled the playing field.
The impact when SAP gets breached? Joris points to Jaguar Land Rover. Billions in losses, nearly triggered bankruptcy. The alleged cause? An unpatched SAP vulnerability....
In this conversation, Christoph Nagy discusses the complexities and challenges of SAP Cyber Risk, emphasizing the importance of continuous security and the need for organizations to bridge the gap between technical teams and C-level executives. He highlights the evolution of SAP security practices, the role of audits, and the necessity of proactive measures in cybersecurity. Christoph also addresses the future of SAP security in the context of AI and cloud technology, urging organizations to take action rather than wait for perfection.
In this episode of SAP Cybersecurity, host Waseem Ajrab engages with Maxim Deweerdt, a seasoned expert in cyber defense and SOC operations. They discuss the complexities of SAP security, the importance of an offensive mindset in building effective SOCs, and the challenges faced in detection and response activities. Maxim shares insights on how to bridge the gap between SAP experts and SOC analysts, emphasizing the need for proactive strategies and clear communication. The conversation also touches on the significance of compliance versus security in SOC operations and the evolving landscape of SAP security.