As the digital attack surface continues to evolve, it’s crucial to stay ahead of the curve in terms of cybersecurity. That’s why we are excited to share with you the advancements we’ve made to our platform to better protect our customers from cyber threats. In this blog series, we will continuously highlight the newest features and updates that make the smarterSec Security Platform even more powerful for safeguarding your digital assets. From enhanced threat detection to improved user experience, our improvements will help our customers to stay one step ahead of potential security breaches. Whether you’re a current user or just interested in learning more about smarterSec, this blog series is for you. Your feedback is more than welcome. So, join us as we take a closer look at the latest innovations for the smarterSec Security Platform.
If you want to dive deeper into the functionalities of the smarterSec Security Platform, you can find more information here: smarterSec Security Platform
New features & improvements
Main features
New Smarter Access Control Framework for SoD’s and authorization checks
With the Smarter Access Control Framework, we provide a flexible, fully integrated SoD and authorization framework that serves as a replacement for tools such as SUIM and SAP GRC. It is seamlessly embedded in the smarterSec Security platform, where the rest of your SAP security monitoring is also managed.
It comes with predefined content, which we will be continuously extending in the following weeks and months. BUT! You can also create your own SoD and authorization checks within this framework with EASE.
Checks you have created can be submitted for inclusion in the standard. If accepted, they will be continuously maintained and validated by our smarterSec experts.
For now, send us a message via mail @ Magnus.Ertel@smartersec.com or use our Contact us formular if there are any requests or any other questions.
For more details on our Smarter Access Control Framework — including the challenges it solves, who it's for, and its capabilities — see our dedicated introduction post.
Jira Integration for smarterSec Security Platform
With version 4.10, we introduced a Jira integration via REST API. A ticket is automatically created for every new Testcase finding, as well as for any worsening of an existing finding. For example, when the number of findings increases or a Testcase status changes from secure to insecure.
Please get in contact with us, if you are interested in using the Jira integration.
Improvements & Fixes
- Improved maintenance mode behavior
– The maintenance status is no longer shown in dynamic content areas. Users are now automatically redirected to the maintenance page instead. - Automatic service recovery detection on maintenance page
– The maintenance page now automatically checks whether the service is back up and displays a reload button once it is. - Sticky headers in result table
– The result table now features headers that remain visible while scrolling down. - Fix – Direct export of Testcase results with 1000+ findings
– A rare issue causing direct exports of Testcase results with 1,000 or more findings to be aborted has been fixed. - Fix – Value list update error with slash-containing entries
– An error occurring when updating value lists with entries that contain slashes has been resolved.
Content
As always, we have updated all Testcases to check for the latest releases of components, kernels, and security patches for all available target types.
SAP SuccessFactors
For this target type, we implemented 5 new Testcases. Those Testcases were in the category: Authorizations and Privileges. (TC-516, TC-517, TC-518, TC-519, TC-520)
We will update you on our new platform features regularly here in this blog – stay tuned and give us a follow on LinkedIn to not miss any further updates!
Related topics: Managed Security Service for the smarterSec Security Platform // smarterSec Security Platform