It's been two months since this profile received a new review

The Onapsis Platform Reviews & Product Details

Onapsis is a specialized cybersecurity solution designed to help organizations secure their SAP environments while ensuring compliance with industry standards. As a leader in SAP cybersecurity, Onapsis provides a comprehensive platform that addresses the unique challenges faced by businesses utilizing SAP systems, particularly during digital transformation initiatives. Its capabilities are tailored to support organizations in managing vulnerabilities, automating compliance processes, and enhancing threat detection across various SAP applications, including RISE with SAP and S/4HANA Cloud. The target audience for Onapsis includes cybersecurity teams, SAP administrators, and compliance officers within large enterprises that rely on SAP systems for critical business operations. These professionals are tasked with protecting sensitive data and ensuring that their SAP environments are resilient against cyber threats. Onapsis serves these users by offering tools that streamline security processes, enabling them to focus on strategic initiatives rather than getting bogged down by manual compliance checks and vulnerability assessments. Key features of the Onapsis Platform include automated compliance management, which simplifies the process of adhering to regulatory requirements, and comprehensive vulnerability management that identifies and mitigates potential security risks in real-time. Additionally, the platform offers advanced threat detection capabilities powered by insights from the Onapsis Research Labs, which are staffed by leading experts in SAP cybersecurity. This combination of features empowers organizations to proactively defend their SAP landscapes and respond swiftly to emerging threats. Moreover, Onapsis stands out in its category by providing a user-friendly interface that integrates seamlessly with existing SAP workflows. This integration allows for efficient collaboration between cybersecurity and SAP teams, fostering a culture of security within the organization. The platform's ability to deliver rapid time to value means that organizations can quickly implement security measures and see immediate benefits, enhancing their overall security posture while supporting their digital transformation goals. By leveraging Onapsis, organizations can confidently navigate the complexities of SAP cybersecurity and compliance, ensuring that their digital transformations are secure and sustainable. The platform not only protects critical business processes but also helps organizations maintain trust with stakeholders by demonstrating a commitment to security and compliance.

Product Website

Seller

Onapsis

Discussions

The Onapsis Platform Community

Languages Supported

German, English, French, Spanish

Product Description

The Onapsis Platform automates testing, change, audit and security processes so cross-functional teams can focus on improving SAP availability and performance, accelerating cloud migrations and SAP S/4HANA implementations, streamlining audit processes and hardening security on-premises and in the cloud.

Overview by

Debi Dowling

Value at a Glance

Averages based on real user reviews.

Time to Implement

6 months

View More Pricing Information

The Onapsis Platform Integrations

(5)

Verified by The Onapsis Platform

The Onapsis Platform Media

The Onapsis Platform Demo - Onapsis Assess Dashboard

Onapsis Assess is the engine behind a successful SAP vulnerability management program. It provides the deep visibility and business context you need to discover vulnerabilities across your entire application landscape, prioritize them based on risk, and respond faster to the issues that pose the ...

The Onapsis Platform Demo - Onapsis Defend

Stop threats before they hit your critical SAP application layer, and augment your existing network security stack with vendor-agnostic, open-source rules for network-detectable SAP attacks based on threat intelligence from the Onapsis Research Labs.

Official Downloads

(2)

edit

Executive Threat Overview: Reported SAP Cyber Attack Severely Impacts Business Operations, Compromises Data at Global Manufacturer

Executive Threat Overview: Critical Zero-Day SAP Vulnerabilities Under Active Global Exploitation

G2 reviews are authentic and verified.

Here's how.

Suresh M.

Senior IT Consultant

Enterprise (> 1000 emp.)

9/9/2025

"ONAPSIS functionalities"

4.5/5

What do you like best about The Onapsis Platform?

Onapsis Assess is very useful for:

Authorization analysis (SoD, excessive roles).

Patch compliance (security notes, system hardening).

Clear remediation guidance.

Onapsis Control for Code

Specializes in scanning custom ABAP code.

Identifies vulnerabilities such as:Hardcoded credentials,Missing input validation (e.g., risk of injection attacks) Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

Control for Code is not integrated with Assess:

Findings cannot be viewed in the same dashboard.

No consolidated reporting across system, patch, and code vulnerabilities.

Difficult to track remediation end-to-end (who owns the fix, when it’s closed).

Limited collaboration between security team (using Assess) and development team (using Control for Code).

Results visibility is fragmented, making it harder to measure overall SAP security posture. Review collected by and hosted on G2.com.

What problems is The Onapsis Platform solving and how is that benefiting you?

ONAPSIS Identifies excessive access, segregation of duties (SoD) conflicts, and critical authorization gaps and checks for missing SAP Security Notes, misconfigurations, and unpatched vulnerabilities.

it Highlights insecure default settings or risky parameters that could be exploited.

Benefiting : We can proactively close gaps before they are exploited. Review collected by and hosted on G2.com.

Verified User in Manufacturing

Enterprise (> 1000 emp.)

9/15/2025

"Strengthening SAP Security Posture with Onapsis: A CISO’s Perspective"

4/5

What do you like best about The Onapsis Platform?

What I like best about the Onapsis Platform is its ability to bridge the gap between InfoSec and SAP operations. It provides deep visibility into vulnerabilities and compliance blindspots, while enabling proactive incident detection and response. The platform’s governance capabilities have helped us standardize issue resolution across teams, which is critical in today’s complex regulatory environment. Onapsis doesn’t just monitor, it empowers us to act decisively and consistently. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

Integration with Sentinel for a more streamlined and meaningful incident response. We know new releases are coming in this space. Review collected by and hosted on G2.com.

What problems is The Onapsis Platform solving and how is that benefiting you?

Blindspot Coverage: Improved visibility into the attack surface and compliance status of your SAP landscape via Vulnerability Management and Code Review.

Targeted SAP Attack Protection: Enhanced Incident Detection and Response capabilities.

Governance & Standardization: Resolved misaligned and non-standard InfoSec & SAP practices through established governance, leading to consistent incident resolution.

Compliance Management: Better handling of increasingly complex compliance obligations. Review collected by and hosted on G2.com.

Yash A.

Senior Engineer - SAP and Cloud Security

Enterprise (> 1000 emp.)

8/4/2025

"Onapsis is a robust tool that bridges SAP security gaps with actionable intelligence and visibility."

4.5/5

What do you like best about The Onapsis Platform?

Onapsis is a powerful and reliable solution for securing business-critical SAP systems. One of its standout features is real-time threat detection based on customised alerts that a user/org can create based on their needs and use case. Onapsis also allows feature requests and can be integrated with existing CCM platforms. Furthermore, the team at Onapsis is very responsive to any concerns or challenges a user/customer may face. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

Implementing Onapsis in the SAP landscape can be a little challenging at times due to the level of integration that goes into it. Review collected by and hosted on G2.com.

Marius H.

IT-Security Consultant

Enterprise (> 1000 emp.)

8/5/2025

"Swiss Army Knife - Onapsis creates transparency and security"

4.5/5

What do you like best about The Onapsis Platform?

Onapsis provides visibility into unpatched vulnerabilities, highly privileged rights, and incorrect configurations. Vulnerabilities can be specifically and measurably addressed, thereby increasing security. The Defend module alerts about behaviors such as unusual RFC calls, IOCs, and zero-days.

The setup of the console and sensors is designed to be simple and requires little technical understanding. The support from Onapsis colleagues during installation simplifies this even further. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

Stability of the systems and quality of the updates can still be improved, although this probably also depends on where the systems are hosted (Cloud vs. ESX). Permissions will be designed even more granularly in the future. Review collected by and hosted on G2.com.

Verified User in Oil & Energy

Enterprise (> 1000 emp.)

9/22/2025

"Insider in the SAP systems"

4/5

What do you like best about The Onapsis Platform?

- Detects SAP vulnerabilities quickly and accurately.

- Monitors threats in real time to protect critical applications.

- Scans code for security issues, helping ensure compliance and secure development. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

- Limited SIEM log details: The logs forwarded to your SIEM system lack comprehensive information, which hinders deeper analysis.

- Rigid integration: Onapsis offers minimal flexibility in how it integrates with other systems.

- Timezone mismatch: The date and time in SIEM logs are shown in a different timezone and cannot be customized, reducing the usefulness of the logs for accurate incident tracking. Review collected by and hosted on G2.com.

What problems is The Onapsis Platform solving and how is that benefiting you?

Before Onapsis:

- You couldn’t monitor SAP vulnerabilities effectively.

- Threat detection across SAP systems was not possible.

- Code-level security issues were hard to identify and track.

With Onapsis:

- You now have automated vulnerability scanning across SAP environments.

- The platform monitors threats in real time, improving incident response.

- It detects code vulnerabilities, helping secure custom developments.

- Integration with SIEM systems enables centralized visibility, despite some limitations. Review collected by and hosted on G2.com.

Jean-Philippe P.

Engineer Manager

Enterprise (> 1000 emp.)

5/14/2025

"Great platform and great partnership"

5/5

What do you like best about The Onapsis Platform?

First, overall security awareness, knowledge, competences of Onapsis team. They are also very fast and pro active when new vulnerability is found.

Then, smart protection and explanation for findings. Systems are well protected and strong confidence in the tool. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

We have the Onapsis C4C package and central dashboard with view of all vulnerabilities is in a separated package. Based on license price (not cheap), it would have been better to have it included within. It forced us to build our own. Review collected by and hosted on G2.com.

Louis L.

Director at Turnkey Consulting

Mid-Market (51-1000 emp.)

6/17/2025

"Comprehensive Security Solution for SAP"

4/5

What do you like best about The Onapsis Platform?

Onapsis platform, TIC - Threat Intel provides up to date vulnerability and advisory to mitigate the risks Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

Real time update on Assets are not conclusive and require additional manual interventions Review collected by and hosted on G2.com.

What problems is The Onapsis Platform solving and how is that benefiting you?

Real time accessment on SAP systems on Abap/Java stack. It addresses major requirements for customers in the SAP landscape for cybersecurity threats from external as we well as internal threats.

In additions it also addresses the concern from customers on overall systems patching update to ensure their SAP systems are at the optimum level on SAP security patches and etc .

One of the features appreciated by customers was the ability to address concern on Code Vulnerability as well as on Audits requirements for Controls, e.g SOX, PCI and etc. Review collected by and hosted on G2.com.

Phillip B.

Manager of SAP Security

Enterprise (> 1000 emp.)

9/3/2025

"Onapsis Security Platform is amazing"

5/5

What do you like best about The Onapsis Platform?

The ability to build reporting and keep assets updated with SAP Notes,

Clear and precise metrics. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

I have been very happy and have nothing to add here. Review collected by and hosted on G2.com.

Mallikarjun B.

Mid-Market (51-1000 emp.)

9/10/2025

"excellen tool to manage SAP application security"

5/5

What do you like best about The Onapsis Platform?

Simple to manage, less maintenance and excellent support team. Knowledgable resource. provides end to end support.

No redudant issues reported. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

dashboard should be further improve for management reports. Review collected by and hosted on G2.com.

Verified User in Mining & Metals

Enterprise (> 1000 emp.)

9/2/2025

"Effective control on a critical asset"

4/5

What do you like best about The Onapsis Platform?

Broadth and depth of security controls available. Pre configured audits for main business standards and frameworks. Review collected by and hosted on G2.com.

What do you dislike about The Onapsis Platform?

Some rigidity in customization. UX could be improved. Review collected by and hosted on G2.com.