Security Hub Starter Kits

Challenges

• The increasing complexity of attack paths makes it more difficult to detect threats.

• Lack of execution guidelines: Clear definitions for permitted actions must be established.

• Distributed systems, single view at system level not sufficient: Complex attacks require analysis of data from multiple sources to recognize patterns.

Solution

• Installation and operation of Microsoft Sentinel
• Identification and connection of relevant data sources
• Establishment and definition of rules and guidelines
• Flexible integration: Option to forward data to the existing SIEM system

Benefit

• Holistic overview of the security of the entire IT landscape
• Centralized analysis for rapid risk identification and targeted response
• Precise threat detection through comparison with worldwide databases of known malware sources
• Flexible, scalable solution with an adaptable cost structure

Challenges

• High data sensitivity: SAP systems require precise monitoring in order to recognize security-critical actions in good time.​

• Lack of transparency: Security data in SAP systems is difficult to capture as many SIEMs offer insufficient integration.

Solution

• Basic SIEM package required

• Installation and operation of Sentinel SAP Connector with curated set of rules

• Collection and correlation of logs from SAP systems

Benefit

• Transparency and deeper insights into security data at software and SAP level
• Faster detection of anomalies such as suspicious transactions and suspicious data downloads with out-of-the-box detection capabilities
• Intelligent pattern recognition: comprehensive linking of logs with data from other systems