SAP’s Chief Security Compliance & Risk Officer presenterte

Marielle Ehrmann, SAP’s Chief Security Compliance & Risk Officer shared SAPs Security and Cloud Compliance Strategy. The heading of the presentation was: Running a resilient business with security compliance and risk management. A very demanding title, but Marielle and her colleagues seem to have this are under control. When she started the job had been very much firefighting but now she said they had had many successes and they are working strategic and planning ahead.

The NIST Cybersecurity Framework is used to steer the process to ensure security into all SAPs solutions. To use the Framework has been veery successful. It is a Prioritised and systematic methodology for managing cyber risk not related to the American government or any American rules. Just a systematic methodology which SAP adapts to regional rules. It holds guidance for Risk-based information security management. The framework is used as Common language for security risk communication across the organisation. The Version 2.0 establishes governance.

SAPs strategy components must work together to achieve their vision. They regard them successfull when all align.

The vision is to earn unwavering customer trust by embedding harmonized security and compliance into SAPs cloud and AI-driven future, ensuring continuous risk minimization and operational excellence.

SAPs Mission is to earn customer trust by reducing security and compliance risks through risk-based strategies, business-focused solutions, and advanced automation, in partnership with our LoBs and central services.

SAP Expands Its Cybersecurity and Compliance Framework to Govern AI, see above.

The full presentation for download

Is Security Compliance & Risk a topic of interest to you? Tell me and we organise a web session where we get lastest news and you can ask your questions