Seville, Spain
Seville, Spain
+(34) 624 816 969
SAP systems are the digital core of thousands of organizations: they manage finances, operations, logistics, customers, and critical data. However, digital transformation and the sophistication of cybercrime have turned these environments into a priority target. A recent report by SEIDOR, developed with Microsoft, reveals a worrying reality: 88% of large Spanish companies using SAP feel unprotected against emerging threats.

Table of contents [Show]
The evolution towards hybrid and cloud architectures, the opening to digital ecosystems, and the professionalization of cybercrime have expanded the attack surface. According to the report 'SAP Cybersecurity 2026', which surveyed executives from 50 organizations with revenues exceeding 100 million euros, SAP security can no longer be treated as a mere business management issue: it must be integrated into the global cybersecurity strategy.
Data protection, identity management, early threat detection, and incident response capabilities are key. However, although 90% of companies monitor their SAP environment permanently, only 12% claim to detect fraud or manipulation when it appears as legitimate activity. This highlights a gap between surveillance and effectiveness.

Offensive artificial intelligence worries 66% of companies, who consider it a relevant risk for their SAP due to its ability to make fraud, impersonation, or manipulation attempts more credible. In parallel, defensive AI is emerging as a key tool for detecting anomalies. This double-edged sword recalls the debate about AI models like Fable 5, which can revolutionize security if used correctly.
Organizations are increasingly aware that security must be integrated from the ERP design phase and accompany its entire lifecycle. The ability to monitor, identify anomalous behaviors, and respond quickly is a differentiating factor to reduce the impact of incidents. This proactive approach is similar to that applied in penetration testing and ethical hacking, where vulnerabilities are sought before attackers find them.

The SEIDOR report underscores that SAP cybersecurity is a strategic challenge requiring collaboration between departments. The alliance between the CEO and CIO, as explored in our analysis of the CEO-CIO tandem, is essential to prioritize security investments. Additionally, ERP modernization must be accompanied by robust cloud solutions, such as those offered by Microsoft Azure, to ensure operational resilience.
Regulatory pressure and the cost of incidents—which can reach hundreds of millions, as seen in the infrastructure outage that affected AI companies—make SAP cybersecurity unavoidable. Companies that do not act now could face devastating consequences.
Original source: ComputerWorld. Analysis and adaptation by ForgeNEX.