Here at Tietoevry we have focused a lot of effort to ensure that security of SAP on public cloud is as worry-free as possible. For example, we have created a publicly available security whitepaper and additionally a very detailed security policy document about how security for SAP is achieved, and we maintain it continuously as both the public cloud and SAP evolve. These documents are a result of our years of experience with our SAP and Public Cloud customers.

Here are some of the most crucial areas for consideration regarding security of SAP on Public Cloud:

1. Governance

Taking security into account already in the company’s Cloud Governance is important. The governance contains the rules by which everybody must operate their workloads and companywide security requirements are defined here. Common processes like naming conventions or resource locations passively contribute to security.

2. Cloud Architecture / SAP Landscape

Tietoevry SAP on Public Cloud reference architecture is the starting point for all our customer engagements. The reference architecture has been designed with security in mind and contains various cloud-native mechanisms for improving customer SAP security. Our specialists can consider customer security requirements and implement those into the SAP on Public Cloud architecture.

The important thing is to consider all connectivity requirements, attack vectors, and good old anti-virus solutions. We keep evolving the reference architecture to make sure all our customers are always protected and optimized.

3. Managed services for SAP Basis and Managed Cloud

Providing 24/7 support for the deployed SAP on Public Cloud environment is the most important link in the chain for security. Proactive threat monitoring, incident management, and fast responses to alerts or suspicious activity can mean the difference between a compromised environment or a failed attack. Our managed service teams are supported by, for example, our monitoring tooling and rules to identify attack vectors before customers even notice. No disruption to business continuity.

If you have not considered these three crucial areas from a security perspective, you should address them immediately. We at Tietoevry are happy to help you!

Tietoevry SAP on Public Cloud engagement is split into multiple phases

1. Our first phase is a customer readiness check where we help the customer understand cloud fundamentals and manage expectations.
   
   
2. The second phase, design, is where our architects work with the customer to evaluate requirements and how security can be achieved when migrating SAP to the public cloud.
   
   
3. The third phase is the actual implementation/migration of the workload. During this phase, all the designed security controls will be established and verified.
   
   
4. The fourth and fifth phases are then the daily operations and continuous optimization phases during which our managed teams make sure the environment is operating within parameters and continuously improved/optimized for increased efficiency and security.

The Tietoevry SAP on Public Cloud security policy contains detailed, technical considerations regarding how security can be achieved in any SAP on Public Cloud scenario. The policy is used during a Tietoevry SAP on Public Cloud project.