This year has been a wake-up call for SAP security. Multiple zero-day vulnerabilities have been exploited in the wild, ransomware groups have weaponised SAP flaws, and July alone saw 27 new SAP security notes — seven of them critical. For CISOs and SOCs, the message is clear: patching is necessary, but it’s no longer enough.

In this panel, SAP’s Colleen Hebbert joins Paul Bisby, Commonwealth Bank Australia and Onno Coenen, SecurityBridge to unpack the lessons of 2025’s security events. Together they’ll explore why visibility is now the single most important factor in defending SAP landscapes, how real-time threat detection can close the dangerous gap between patch release and exploit, and what it takes to integrate SAP intelligence into enterprise-wide security operations.

Whether you’re a developer, compliance officer, or business leader, you’ll gain an inside look at how organisations are adapting — and why securing SAP has become everyone’s responsibility.

Key Takeaways
- Learn from this year’s SAP zero-day exploits and patch avalanche — and why “patch day” is too late.
- See how real organisations are tackling the visibility gap between IT, security, and business owners.
- Understand how to embed SAP threat intelligence into SOCs to protect business-critical processes from finance to supply chain.