2025 was a dramatic wake-up call for business-critical application security, marked by critical zero-days, public exploits, and a significant rise in sophisticated, targeted attacks against SAP systems globally. Security Operations Center (SOC) teams are struggling to keep pace, frequently lacking the deep SAP threat insights and specialized exploit detection necessary to defend these complex, mission-critical assets effectively.

This session will provide security professionals with an in-depth, educational look at the new threat landscape, detailing the latest tactics, techniques, and procedures (TTPs) used by threat actors to directly compromise SAP applications.

You will learn:

• Key Lessons from 2025: Analysis of the most impactful SAP vulnerabilities, exploits, and breaches, including the anatomy of zero-day attacks and ransomware infiltration vectors.
• Next-Gen Methodologies: The essential tools and specialized threat insights required to overcome the knowledge gap and achieve effective, rapid defense for SAP.
• The Power of Unification: How Onapsis Defend (for specialized SAP context and exploit detection) and Microsoft Sentinel for SAP (for centralized SIEM, AI, and SOAR capabilities) integrate to provide a unified, accelerated incident response workflow that protects your critical business systems.
• Walk away with a clear roadmap for leveraging specialized threat intelligence and automation to optimize your SAP incident detection and response processes.

Ask the Experts sessions provide an informal setting to connect one-on-one with subject matter experts and experienced end users on specific areas of expertise. Bring your pressing questions and be ready to discuss your key challenges and priorities.

Topics covered: Zero Trust, Private Cloud ERP Security aligned to SAP Shared Responsibility

Hear how Merck, a global leader in healthcare, science, and technology, has developed a cyber resilience strategy for their SAP S/4HANA Cloud environment using Zero Trust principles in the S/4HANA Private Cloud. Lessons learned emphasize collaboration, proactive security, SAP and partner technologies, user engagement, and an understanding of shared responsibilities. By attending this session, attendees will leave with ideas to strengthen their security posture and address evolving cyber threats in the SAP S/4HANA environment.

As SAP customers embark on or plan for an SAP S/4HANA transformation, SAP security professionals must prepare for this new frontier. With the Clean Core approach, the SAP landscape is shifting toward an API-first model where SAP BTP, specifically SAP Integration Suite, is central. For organizations coming from the SAP PI/PO world, this this is a new environment with its own limitations and challenges. As SAP Integration Suite becomes the hub for both SAP-to-SAP and SAP-to-non-SAP integrations, the granular RBAC controls familiar from the ABAP/Java world are no longer available in the same way.
 
Join this session to:

• Gain clarity on how SAP Integration Suite reshapes integrations with a Clean Core.
• Learn about process and architecture considerations to secure and govern SAP Integration Suite.
• Walk away with guidance on tenant strategy, CPI security, API security, policy and identity and access management.

Cybersecurity is no longer just an IT concern — it’s a business imperative. In a world of increasing regulatory pressure, AI-powered threats, and complex digital ecosystems, SAP environments remain high-value targets for cyberattacks. Yet many organisations still struggle to translate technical risks — such as unpatched vulnerabilities, excessive user access, and insecure integrations — into board-level conversations that drive action. Learn how to reframe SAP security from reactive protection to proactive value creation. Explore how to quantify risk in business terms, align with executive priorities, and build security strategies that support trust, compliance, and business continuity. With real-world insights from global operations and transformation programs, you'll leave with a practical framework for elevating cybersecurity to a strategic conversation.

You will learn how to:

• Speak the language of the business: Learn how to communicate SAP cyber risks to senior executives with impact — linking technical threats to financial, reputational, and operational outcomes.
• Prioritize what matters most: Discover how to assess and rank SAP vulnerabilities using likelihood and business impact — helping teams focus on what really drives risk reduction.
• Stay ahead of emerging risks — from AI-enabled threats to data sovereignty and new compliance pressures.

SAP transformations—whether migrating to SAP S/4HANA, adopting SAP BTP, or expanding cloud capabilities—introduce significant cyber risk exposure. As organizations modernize their SAP landscapes, they must navigate complex threat vectors, evolving compliance requirements, and heightened data privacy concerns. Without a robust cyber risk strategy, transformation efforts can be delayed, disrupted, or compromised. This session explores how organizations can embed cyber risk management into the heart of their SAP transformation programs. You will learn how to identify and assess SAP-specific risks, implement controls aligned to transformation milestones, and build governance models that ensure security without slowing innovation. The session will also highlight common pitfalls and lessons learned from real-world SAP transformation projects. You'll leave with actionable strategies to strengthen their security posture across SAP environments, including cloud, hybrid, and on-premise deployments.

You will learn how to:

• Identify security risks unique to SAP transformation initiatives (e.g., SAP S/4HANA, SAP BTP). 
• Integrate cybersecurity controls into SAP project governance and delivery. 
• Align cyber risk management with regulatory and data privacy requirements. 
• Apply lessons learned from real-world SAP transformation case studies.

As enterprises accelerate adoption of SAP S/4HANA Cloud, Ariba, and SuccessFactors, the complexity of managing cybersecurity, risk, and compliance across this fragmented ecosystem increases dramatically. This workshop provides a deep dive into how to operationalize the Shared Responsibility Model (SRM) across SAP cloud platforms. Attendees will be guided through a structured methodology to clarify ownership boundaries, embed security and compliance into SAP programs, and define a unified governance model. Interactive exercises and real-world case studies will equip participants with practical tools to identify control gaps, align cyber strategies with enterprise risk frameworks, and drive compliance across hybrid SAP environments. This session is designed for security, risk, and IT executives who want to go beyond theory and return with a blueprint ready to apply across their SAP cloud landscape.

You will learn how to:

• Apply the Shared Responsibility Model to SAP cloud applications to clarify ownership and reduce risk. 
• Design a unified cyber, risk, and compliance strategy across SAP S/4HANA Cloud, Ariba, SuccessFactors, and more. 
• Identify control gaps and implement governance models that scale across hybrid SAP environments. 
• Align SAP cloud security operations with enterprise risk frameworks and regulatory expectations.

Explore the details of functionality, differentiators, and important platform aspects in the latest SAP GRC On Premise and Cloud provisioning and compliance solutions. Gain detailed insights into the SAP Compliance applications of SAP GRC Access Control 12.0 and SAP Cloud Identity Access Governance and consider which application, platform, and functionality is best for current and long term compliance and provisioning requirements.

You will:

• Learn about the GRC evolution and why it is important to progress and plan ahead. 
• Discover how to identify where you are on the evolution roadmap, define where you want to be, and what it takes to get there through time and effort estimates. 
• Learn about SAP GRC application functionality through the lens of real customer examples of success and pitfalls at different stages of the GRC evolution.

AI and Agentic AI promise significant benefits, however, they bring security risks such as breaches of privacy and confidentiality, unauthorized access and action. The unpredictability of Generative AI also poses new risks. We must ensure chat bots, co-pilots and agents stay within their intended scope boundaries and authorizations. Agents that interact with business systems and especially those that can act on users' behalf need to be carefully controlled and these risks multiply when agents start collaborating together.
 
This session gives an overview of the security risks for AI workloads across the stack, from agent and application, down to the models, platforms, and infrastructure. This established cybersecurity practice helps to identify security risks so they can be addressed early. Join this session to learn techniques, tools, and services that SAP uses itself to secure AI workloads and minimize risk without inhibiting pace of innovation.

You will learn:

• Full-stack security risks for AI workloads (SAP or otherwise). 
• Core principles of AI and Agentic AI threat modeling and risk identification. 
• Techniques, tools and services that can help reduce security risks.

With the acceleration of cloud adoption, protecting SAP systems has increased both in importance and complexity. This session will address how SAP cybersecurity has changed in recent years, what organizations can do to be better prepared, and the role AI and automation play in the current threat landscape and protecting SAP systems.

Join this session to gain insight into:

• How the threat landscape has changed for SAP systems.
• What makes cybersecurity for SAP landscapes unique.
• Best practices for moving from a reactive security posture to proactive, continuous risk management.

This dynamic discussion session examines recent high-profile cybersecurity breaches to highlight how threats evolve, how attackers exploit vulnerabilities, and how impacts extend far beyond the breached organization. Attendees will learn how disruptions to systems, sensitive data exposure, and compromised third-party relationships can trigger financial losses, regulatory scrutiny, reputational damage, and supply chain instability. The session will also explore broader economic implications, including market volatility and increased operational costs for organizations that were not directly breached.

Join this session for an interactive discussion on:

• Strengthening security posture.
• Improving vendor risk management.
• Building resilience to mitigate far-reaching effects of modern cyberattacks.

Are you ready to elevate your SAP security expertise? Join us for an immersive and interactive SAP Security Game, crafted to simulate real-world security challenges faced by organizations. Participants will navigate various scenarios designed not only to test but also to enhance their strategic and technical expertise in SAP security. This active session offers an invaluable opportunity to enhance your skills in security planning, compliance management, and breach response while promoting collaboration and learning in a supportive and competitive setting. Throughout the workshop, we will engage with three critical topics including preventative security control implementation, compliance request/audit handling, and security breach response. 

You will: 

• Learn to develop and implement robust security controls to safeguard your SAP environment. 
• Gain experience in efficiently managing and responding to compliance requests and audits with precision. 
• Practice responding swiftly and decisively to a simulated security breach, aiming to minimize damage and ensure business continuity.