English
Deutsch
PCG logo
Search Icon
Search Icon
Article
  1. Home
    2. /
  2. Insights
    3. /
  3. Articles

RISE with SAP: Why Security Is More Than a Standard Service

09 Sep 2025

The security of an SAP landscape is only as strong as its weakest link. In the context of RISE with SAP, this means that only when SAP, the hyperscaler, and the customer clearly assume their respective responsibilities can a robust security level be achieved.

Shared Responsibility in RISE

Many organizations mistakenly assume that SAP takes full responsibility for security under RISE. While SAP does relieve operational burden, a significant part of security remains with the customer, including:

  • Network security: Firewalls, VPNs, subnets in the hyperscaler.
  • Secure SAP code: Validation of custom developments using ATC, ABAP Code Inspector, or third-party tools.
  • Security monitoring & forensics: Audit logs, SIEM integration, anomaly detection.
  • System hardening: SNC, TLS, parameter configuration, RFC security.
  • User & identity management: Role design, SoD checks, integration with SAP GRC or Azure AD.
  • SAP Security Notes: SAP applies only critical notes automatically; all others require customer implementation.

Closing the Gaps

To address these potential security gaps, organizations can:

  1. Extend SAP services via Cloud Application Services.
  2. Engage AMS providers for monitoring, patching, and security assessments.
  3. Build internal teams with specialized expertise.

From Trust to Continuous Validation

Even with clearly defined contracts, the key question remains: How can I ensure my system is truly secure? Experience shows that without continuous validation, risks arise – such as incorrectly applied notes, insecure RFCs, or excessive authorizations.

Advisory from the Public Cloud Group

The Public Cloud Group (PCG) helps organizations address security risks in a structured way. As part of our RISE Assessment, we explicitly analyze security responsibilities, identify gaps, and design a robust security strategy – covering governance, monitoring, and concrete technical measures.

Conclusion

RISE with SAP simplifies operations but does not replace a comprehensive security strategy. Only through clearly defined responsibilities, continuous monitoring, and expert guidance from partners like Public Cloud Group does RISE become a secure foundation for digital transformation.

Make an appointment now!


Services Used

SAP
Get Started

Continue Reading

Article
What is SAP Business Data Cloud (BDC)?

Access to a single, trusted database is crucial for making informed business decisions. SAP BTP offers a solution for precisely these use cases: the SAP Business Data Cloud (BDC).

Learn more
Article
The SAP Integration Suite as the strategic successor to PI/PO

System integration is often the biggest bottleneck in digital transformation. The SAP Integration Suite is the answer to “integration chaos.” It enables smooth, secure, and future-proof data exchange.

Learn more
Article
What is SAP BTP? The foundation of your digital SAP strategy

The SAP Business Technology Platform (BTP) is the key buzzword when it comes to digital transformation in the SAP environment. But what exactly is behind this platform, and what added value does it offer your company?

Learn more
Article
SAP Business Data Cloud: Unlocking Smarter Business Decisions

SAP Business Data Cloud is a platform that combines several SAP technologies to make business data fully usable in the cloud.

Learn more
See all

Let's work together

United Kingdom
Arrow Down