Onapsis Reviews

2 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 9.0 out of 100

Do you work for this company? Learn how we help vendors

Overall Rating

Reviewer's Company Size

Last Updated

By Topic

Industry

Department

Experience

Job Type

Role

Reviews (1-2 of 2)

Companies can't remove reviews or game the system. Here's why.
April 06, 2021
Jineshwar Panchal | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Review Source
Onapsis helps reduce regulatory compliance issues via an automated continuous compliance process for the IT controls related to regulations such as Sarbanes-Oxley (SOX), GDPR, PCI-DSS and others.

Eliminating this manual process improves the accuracy of results and frees up valuable resources to focus on other projects. We specifically are implementing the Onapsis Security Suite to continuously monitor, and alert us on any issues on the SAP systems.

Implementing the Onapsis Security Suite also eliminates rework on the year-end and month-end audits and helps in making the process faster, efficient and accurate, and in case there are violations in the compliances, Onapsis notifies the team via email regarding it.
  • Implement continuous compliance
  • Gain efficiencies
  • Reduced risk of non-compliance
  • Define specific audit policies
  • More accurate audits
  • Multiple UIs
  • No proper customization of UI log-off
  • Tedious setup of Control component
  • No proper error messages received
Onapsis is divided into 4 major components,
  1. Assess
  2. Comply
  3. Defend
  4. Control
In assess, it does a whitebox and blackbox testing of the ERP systems that have been added to the Onapsis console. It highlights relevant application issues and automates the process, also provides the solutions to implement the fix.

In comply, it provides a governance on the various regulatory compliances which the firm has to follow, as well as provides a firm grip to the audit and ERP admin team.

In control, it enables a workflow of 15 pre-defined parameter values within the SAP system and helps monitor, and track the changes made to those parameters. The capabilities are to either block, or request for an approval for changes made to those parameters in addition to just monitoring them.

In defend, it goes through the SAP logs; and compares it with a pre-defined ruleset to alert the end-users via email or SIEM tool or both.
Read Jineshwar Panchal's full review
April 30, 2021
Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source
In Tenaris we have used Onapsis to automatically review from a security perspective our complex SAP landscape, which include different products, with both business and technical use cases. It had mainly two different internal clients, our BASIS team for SAP Notes control, and our security architecture team for landscape hardening and vulnerability record.
  • Its a great leverage for our technical teams to review in a standard way all our landscape
  • It shows in a unified and ease to read way different and complex topics
  • Allways match vulnerabilties with usefull context and possible solutions
  • It will be usefull if you could reclasify or reindex vulnerability score based on your specific landscape
  • Graphic connections of the issues map will lead to a better understanding of the real impact in case of a breach and/or exploit
  • Not really much to add here, overall I think that is a great product
It really make sense if you are short handed in security or basis team, that it is most likely to be the case, and have a complex landscape to control. Is not a cheap product, but it worth it if your SAP systems have multiple products and connections, for a single instance or low complexity scenarios, probably will result too much money for the proposed value
Read this authenticated review

Onapsis Scorecard Summary

What is Onapsis?

Onapsis, headquartered in Boston, offers application security software to enterprises in the form of the Onapsis Security Platform for SAP and the Onapsis Security Platform for Oracle E-Business Suite.
Categories:  Application Security

Onapsis Technical Details

Operating Systems: Unspecified
Mobile Application:No

Frequently Asked Questions

What is Onapsis?

Onapsis, headquartered in Boston, offers application security software to enterprises in the form of the Onapsis Security Platform for SAP and the Onapsis Security Platform for Oracle E-Business Suite.

Who uses Onapsis?

The most common users of Onapsis are from Enterprises and the Information Technology & Services industry.