SAP Korea announces plans to broaden the support on SAP ERP security provided to public corporations with the SAP Code Vulnerability Analyzer.
This week, SAP Korea said that it has begun the process to obtain a performance evaluation certification for the SAP Code Vulnerability Analyzer solution with security partners BigSphere and Inspiron.
Seong-yeol Lee, CEO of SAP Korea, comments on the announcement:
“Since the beginning of 2020, we have been conducting business discussions with related organizations for performance evaluation. Although it was delayed due to social issues such as COVID-19, we plan to complete the performance evaluation as soon as possible and prepare for the introduction of a code vulnerability analysis solution for public institutions without disruption in the future.”
According to Lee, cybersecurity weakness analysis implementation is expected to emerge as an important part of the information system security evaluation of SAP ERP solutions, especially for the public sector.
The need for a comprehensive SAP ERP security system
Cybersecurity is no longer considered a luxury for IT systems. The lack of a powerful code testing and analysis tool can lead to the loss of confidential customer and company data, as well as critical information on business processes. A successful cyber attack can ruin business reputations.
SAP Code Vulnerability Analyzer is SAP’s static code scanning tool exclusively for ABAP—a programming language used by SAP for its ERP solutions. The source code security weakness analysis tool helps identify and fix vulnerabilities in a company’s SAP ERP security.
Verifying cybersecurity compliance is a necessary procedure, especially for public institutions. In South Korea, there are various laws, regulations, and guidelines that promote cybersecurity. One of these is the Act on the Promotion of IT Network Use and Information Protection (the Network Act) which requires companies to acquire the Information Security Management System (ISMS) certification granted by the Ministry of Science and ICT (MSIT). The ISMS certification verifies that a company has a comprehensive management system in place that includes administrative, technical, and physical protective measures for ensuring the safety and reliability of its IT system.
According to SAP Korea, major South Korean public corporations have been operating with SAP ERP solutions since the early 2000s. Through its partnership with BigSphere and Inspiron, SAP Korea plans to expand its support to more public institutions in improving security vulnerabilities for programs by introducing the SAP Code Vulnerability Analyzer.
SAP Code Vulnerability Analyzer has been introduced and implemented by the following South Korean public corporations:
- Korea Hydro & Nuclear Power – a subsidiary of the Korea Electric Power Corporation that operates large nuclear and hydroelectric plants in South Korea, which are responsible for about 30{aa282f308afcc222aaa21b0478c79e01a8fedd01972e2180867097bd93930f22} of the country’s electric power supply.
- Korea District Heating Corporation – promotes energy conservation and improving living standards through the efficient use of district heating in apartments, business and commercial buildings in South Korea.
- Korea Western Power Co. Ltd. – provides electric energy to residential, commercial, and industrial uses. Korea Western Power manages thermal power stations, pumped-storage power plants, and combined cycle power plants in South Korea.
SAP Korea said that since implementing the SAP ERP security solution, these public corporations have made remarkable achievements in improving critical security vulnerabilities.
