Spring World 2018

Conference & Exhibit

Attend The #1 BC/DR Event!

Spring Journal

Volume 31, Issue 1

Full Contents Now Available!

Wednesday, 31 January 2018 15:43

Information Security and ERP Systems

Data and applications dealing directly with financial transactions, customer information or intellectual property tend to benefit from more security attention. Others, buried inside an enterprise, invisible to many yet vital to operations, may not get the same consideration, either from entities using them or vendors selling them. Enterprise resource planning (ERP) systems are an example. However, as vendors now seek to extend functionality adding in modules to facilitate supplier collaboration and CRM to tie customer demand closer to factory schedules, ERP may be among the most exposed systems with the highest impacts in case of failure.

What consequences could the breach of an ERP system breakdown have? Impacts range from production stoppages and sabotaged quality, to theft of customer and payment information. There are also the follow-on consequences for business partners if the ERP system is used as a stepping stone for other attacks to systems connected from the outside. Nonetheless, security continues to take a back seat in many ERP implementations. Vendors are too busy playing catch-up with new functionality. Enterprises using the ERP systems are often obsessed with increasing productivity and profitability, without thinking about safeguarding these items now or into the future.