RED RAYS
360° SAP Security Loop
Audit
Pentest
Threat Modeling
ABAP Scan
Monitoring
SoD Analysis
RED RAYS — SAP SECURITY 360
SAP LANDSCAPE
Assessment
SAP Audit
System configuration and authorization analysis
Basis Config
Authorization
Compliance
Penetration Testing
SAP Pentest
Attack simulation on ICF/RFC, Gateway, SSO
ICF/RFC
Gateway
Network
Design Security
Threat Modeling
DFD, threat and trust zone analysis
DFD
Threats
Risk Analysis
SAST
ABAP Code Scan
Static code analysis and vulnerability detection
Injections
Secrets
Custom Code
Continuous Security
Monitoring
Continuous event monitoring and alerts
Events
Logs
Alerts
Access Control
SoD Analysis
Segregation of duties and conflict analysis
Conflicts
Risk Matrix
Controls
Outputs — universal channels
SIEM
correlation/alerts
correlation/alerts
Email
reports, alerts
reports, alerts
Slack
notifications
notifications
API
webhooks/integrations
webhooks/integrations
GRC Tools
SoD/Compliance
SoD/Compliance