Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Closing Compliance Gap

993 views

Published on

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Closing Compliance Gap

  1. 1. Closing the Compliance Gap in File Exchange • Are you vulnerable? • Are you compliant? • Do you know what, when, to whom and by who sensitive SAP data is sent outside the company?- 1 - © SEEBURGER AG 2011
  2. 2. Webcast Logistics Got Flash? http://get.adobe.com/flashplayer to download.
  3. 3. The Increasing Importance of MFTKen VollmerPrincipal AnalystForrester Research3 © 2011 Forrester Research, Inc. Reproduction Prohibited 2009
  4. 4. Interest in MFT is skyrocketing! • The number of client inquiries on MFT has soared since 2009 – An increase of over 300% comparing 2009 to 2011 • Typical questions: – Who are the leading MFT providers? – What features should we look for in an MFT solution? • What is driving this increased level of interest?4 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  5. 5. Increasing number of compliance regulations • Increasing number of legal requirements to protect data • US examples – HIPAA • Designed to protect the privacy of patient data – Sarbanes/Oxley • Designed to insure the authentication of financial reports • European examples – Basel II • Specific rules covering managed file transfers – European Union Data Protection Directive • Protection of personal information5 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  6. 6. High Visibility Security Failures • Examples – Frequent reports of compromised customer account information – Recent WikiLeaks exposures of sensitive government documents • These lapses have significantly increased the awareness of related risks on the part of CEO’s and auditors6 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  7. 7. Polling Question #1 • Which of the following objectives is most relevant for your organization? – Adherence to data security policies/mandates for governance or compliance – Reduction of disparate FTP processes – Compliance with new trading partner security requirements (i.e. banking) – Controlling the amount of data taxing e-mail servers7 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  8. 8. Business Issues Driving Need For Improvement “ How important are the following business issues in driving your need for improved ability for interacting with your trading partners?”Source: Q4 2009 Global EDI/B2B SurveyBase: 300 Senior IT Managers from North America, EMEA and Asia Pacific regions8 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  9. 9. Focus of planned B2B improvements “Which issues will be your highest priority for planned improvements.”Source: Q4 2009 Global EDI/B2B SurveyBase: 232 Senior IT Managers from North America, EMEA and Asia Pacific regions within enterprises planning on upgrading itscapability to exchange information more effectively with external business partners9 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  10. 10. MFT Reference Architecture ModelQuality of Visibility Admin & Governance Service Technical Business Alert Monitoring Monitoring CapabilityOperational Security Security Administration Reporting Logging Data SecurityEase of Use Core Features Auditability Protocol Support Scheduling Provisioning User Workflow Reliability Profile SLA Mgmt Mobility Management Scalability Policy Architecture ManagementPerformance Deployment Platform Operational Certificate Models Independence Flexibility Management
  11. 11. Annual MFT Revenue Projections11 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  12. 12. Closing the Compliance Gap in File Exchange With SEEBURGER Managed File Transfer12 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  13. 13. SEEBURGER at a Glance Leading: Ranked as Global leader for Business Integration by Independent analyst (i.e. Gartner and Forrester) Globally Successful: 19 worldwide offices & 8,500 customers from various industries Independent, profitable and growing since 1986 Focused on vertical industries and standards SAP®: SEEBURGER’s Partner for SAP PI Adapters 600 Joint Customers Worldwide- 13 - © SEEBURGER AG 2011
  14. 14. What are best run companies doing globally? What is the problem and why?- 14 - © SEEBURGER AG 2011
  15. 15. Best Run Companies are focused on: Cost Reduction via Consolidation Drive Core Revenue (Innovation) via Modernization Reducing Risk by ensuring Data Security and Compliance Regardless of Vertical Industry – every CIO is focused on the above business drivers- 15 - © SEEBURGER AG 2011
  16. 16. But Legacy problems with B2B/FTP landscapes exist… Disparate, fragmented, siloed systems Cost Reduction via Consolidation Legacy applications with patch via Modernization Drive Core Revenue (Innovation)upgrades Reducing Risk by via Data& visibility Compliance Inconsistent governance Security and- 16 - © SEEBURGER AG 2011
  17. 17. Polling Slide #2  At your company, what is the most commonly used method for moving large files from one system or individual to another? − E-mail − Shared folders on an internal network − Managed File Transfer solution − Individual FTP processes − USB thumb drive device- 17 - © SEEBURGER AG 2011
  18. 18. Global US - Gramm- EU Directive 95/46/EC Leach-Bliley Act PCI/DSS US - HIPAA UK Coroners and Justice Bill German BDSG - regulation on personal California Security Breach Notification Act US – RoHS (Restriction of use of Massachusetts Encryption Mandate Hazardous material) US – WEEE (Waste Electrical & US-Sarbanes-Oxley Act, Section 404 Electronic Equipment) US-21 CFR Part 11 US Securities and Exchange (SEC) Act Rules 17a-3 4 (17 CFR 240,17a-3,4) US - Consumer Product Safety Improvement Act US Department of Defense (DOD) 5015.2- 18 - © SEEBURGER AG 2011
  19. 19. How is SEEBURGER helping best run companies to close the compliance gap in file exchange? SEEBURGER BUSINESS INTEGRATION SUITE19 Entire contents © 2009 Forrester Research, Inc. All rights reserved.
  20. 20. SEEBURGER Business Integration Suite SEEBURGER Business Integration Suite Integration Platform Your Company Customers B2B / MFT / EDI SAP Solution Extensions Document Automation Gateways Suppliers SEEBURGER Order-to-Cash Paper, TIF, PDF, … Business Integration Purchase-to- Application Integration Server (BIS) Pay Web, SOA Shipping/Logistics B2B/SCM Event Management Monitor Sensors, Barcode, … Cloud End-to-End Monitoring- 20 - © SEEBURGER AG 2011
  21. 21. SEEBURGER Business Integration Suite SEEBURGER Business Integration Suite Integration Platform Your Company Customers B2B / MFT / EDI SAP Solution Extensions Document Automation Gateways Suppliers SEEBURGER Order-to-Cash Paper, TIF, PDF, … Business Integration Purchase-to- Application Integration Server (BIS) Pay Web, SOA Shipping/Logistics B2B/SCM Event Management Monitor Sensors, Barcode, … Cloud End-to-End Monitoring- 21 - © SEEBURGER AG 2011
  22. 22. SEEBURGER Managed File Transfer Solution – Components Managed Integration Managed Collaboration SEE LINK SEE Adapter SEE FX End point client to connect Application and protocol Human to Human, Human any system in the network, specific interface to integrate to System and Ad Hoc large any file type, any operating applications via various file exchange. Integrated system and any file size standard protocols (FTP, SFTP, with popular Email system supported HTTP(s), ...) for ease of use Systems Application SEE SEE Application LINK LINK Adapter Base Functions Governance End-to-End-Visibility Event & Activity Management End Point Provisioning Policy Management Checkpoint & Restart Reporting & Administration Secure multiprotocol Multi-OS & A2A Content filtering Management & measurement communication support Process control & automation- 22 - © SEEBURGER AG 2011
  23. 23. SEEBURGER MFT Helps You Become Compliant Core compliance aspects met with SEEBURGER Managed File Transfer solutions: Dual Control and Role-Based Access Controls Secure Login (SSL) and Unique Session Token Password Strength and Expiry Enforcement Alerting and Event Notification Event Auditing and Log Aggregation (SYSLOG) Protected Data in Motion (AS2 and Secure FTP) Protected Data at Rest (PGP and File Encryption Adapter) Protected Application Metadata (Database and Files) SQL and JavaScript Injection Prevention Modular Design Fits Secure Network Model PII/PHI Secure File Transfer via Email ICAP Interface Compatible with Spam Blocker and DLP- 23 - © SEEBURGER AG 2011
  24. 24. Polling Question #3 Which of the following best describes your company policies regarding data security? − Policies are clearly defined and strictly enforced − General guidelines exist but are loosely enforced − Policies vary from department to department and application to application − I am unaware of policies regarding the transfer of unstructured files- 24 - © SEEBURGER AG 2011
  25. 25. SEEBURGER Solution Portfolio for specific industries B2B Packaged Solution Automotive, CPG/Retail and other industries – the standardized and pre-configured B2B Solution for your industry Solution Portfolio SAP Solution Extension B2B/SCM Monitor Automotive – SAP embedded and tightly integrated Best Practice B2B Solution for cross-company, cross-system end-to-end monitoring providing total visibility across the entire supply chain for SAP user SAP Solution Extension Order-to-Cash – SAP embedded and tightly integrated Best Practice B2B Solution for seamless automation of “order to cash” processes (from receipt of order through delivery to invoicing) Solution Portfolio Logistic Solution Professional CPG/Retail – Standardized Logistic Solution packaged for automotive industry. iMartOne – WebEDI portal designed for your CPG industry- central internet portal for the electronic exchange of business data between consumer goods manufacturers, suppliers and retailers- 25 - © SEEBURGER AG 2011
  26. 26. Questions??- 26 - © SEEBURGER AG 2011

×