1. Website Planet
  2. >
  3. Blog
  4. >
  5. Protect Your Online Business Critical Data With Onapsis

Protect Your Online Business Critical Data With Onapsis

Roberto Popolizio
We had the occasion to interview JP Perez-Etchegoyen, CTO of Onapsis, a company offering cybersecurity solutions for business-critical applications. We looked into Onapsis past, present and future, and got his expert tips for SaaS looking to improve their cybersecurity.

Please Present Onapsis To Our Audience

By offering cybersecurity solutions tailored to business-critical applications, Onapsis eliminates the blind spot created by the world’s most crucial and often unprotected enterprise applications that have been ignored for far too long. Onapsis assists in comprehending the risks and threats that exist within and across the business-critical apps in an organization, regardless of whether they are deployed on-premises, in the cloud, or in a hybrid environment.

Onapsis was the first to recognize and address a serious issue with a significant worldwide impact: the reality that business-critical applications can be susceptible to cyberattacks. 300 of the world’s leading brands and organizations, including many of the Global 2000, trust Onapsis solutions to secure their business-critical applications.

What’s Your Story? What Sparked The Idea, And How Has It Evolved So Far?

The idea of Onapsis was born in Argentina in 2009 by Victor Montero and our company’s CEO, Mariano Nunez, with myself joining soon after. At the time, we were cybersecurity researchers aimed to bring a fresh perspective to the unique security and compliance challenges that organizations continue to face. We realized what organizations were at risk by not securing their business-critical applications and wanted to enable them to decrease their risk.

13 years later, Onapsis is headquartered in Boston, Massachusetts and has established operations all around the world. Our solutions have become the standard in helping organizations protect their most valuable assets. Today, Onapsis is the only vulnerability management and application security product on the market that caters directly to business-critical applications running on SAP, Oracle and Salesforce.

What Services Do You Offer?

The Onapsis Platform includes five capabilities: assess, defend, comply, control for code and control for transports. These capabilities have the ability to manage vulnerabilities, detect and respond to threats, test application security and automate compliance. With the features that the Onapsis Platform provides, businesses leveraging critical applications are able to identify and mitigate threats and address vulnerabilities in little time and with little effort due to the seamless automation of these routine tasks.

​​What Is The Mission Of Onapsis?

Onapsis’ mission is to secure the most critical applications of companies around the world. For that, we focus on 2 areas:
  • Developing the Onapsis Platform, which automates security of business-critical applications
  • Securing Business-Critical Applications through the work of Onapsis Research Labs by continuously reporting security vulnerabilities to ERP Vendors.
Furthermore, Onapsis acknowledges the significance of contributing to the community and the meaningful impact it delivers to others. This is the driving force behind the establishment of Onapsis Cares in 2017. Onapsis actively engages in programs that align with its mission statement, aiming to enhance the quality of life for others through educational and philanthropic initiatives.

What Tools And Best Practices Would You Suggest To Keep A Business Website Safe From The Most Common Cyber Attacks?

It all starts with the intention to secure business applications. As long as organizations have that intention, and the security does not fall through the cracks, then how to solve it should be simple: Enabling your existing threat detection and vulnerability management programs to support Business-Critical Applications. Now when it comes to the how, we can think of robust analytics, reporting capabilities, and automation proficiency that are leveraged through a security platform which assist in mitigating threats, ultimately keeping valuable data protected. It is also important to remember that a comprehensive cybersecurity strategy is not complete without proper employee training to educate staff about the evolving threat landscape– it is essential to provide them with cybersecurity best practices.

In Your Opinion, What Trends Are Going To Shape The Future Of Your Industry?

Through witnessing the increase of attacks that incorporate business-critical applications as part of the target technology, we are unfortunately certain that threat actors are still able to target these systems, even in the presence of robust security mitigations. Looking to the future, in-depth incident response playbooks that define various cyberattack scenarios and provide extremely extensive remediation procedures will become increasingly important to organizations. Enterprises will have a clear idea of how to respond and their business processes will run more smoothly if they proactively outline a predetermined plan for various types of cyber disasters. Cybersecurity frameworks such as that from NIST, which can assist organizations, put structure on what actions are essential to adopt cybersecurity in an organization, can be used to bring cybersecurity down to earth with concrete methods.

Lastly, Any Exciting News Or Developments That You Would Like To Share About Onapsis?

In September of this year, Onapsis announced the release of the Onapsis Research Labs (ORL) Threat Intel Center, which alleviates the burden of inadequately staffed security teams by delivering a comprehensive transfer of knowledge, enabling security teams to efficiently protect their organization while building their expertise in SAP and Oracle security. Additionally, the Threat Intel Center collects and consolidates ORL research into a consumable collection of information, bringing awareness to new critical vulnerabilities, elevating the activity of older vulnerabilities as well as providing valuable context and insights into the evolving enterprise resource planning (ERP) threat landscape.
Following the announcement of the Threat Intel Center, we announced in early November that Onapsis has discovered over 1,000 critical vulnerabilities within SAP and Oracle applications. Onapsis Research Labs (ORL), a group of offensive security experts committed to tracking down vulnerabilities and observing how threat actors strike within ERP software, ran the charge of identifying and remediating these vulnerabilities.

In addition to these exciting developments, we have also been named a finalist in the ASTORS Homeland Security Awards for Best Vulnerability Management Solution.

Rate this Article
4.0 Voted by 2 users
You already voted! Undo
This field is required Maximal length of comment is equal 80000 chars Minimal length of comment is equal 10 chars
Any comments?
View %s replies
View %s reply
Related posts
Show more related posts
We check all user comments within 48 hours to make sure they are from real people like you. We're glad you found this article useful - we would appreciate it if you let more people know about it.
Popup final window
Share this blog post with friends and co-workers right now:

We check all comments within 48 hours to make sure they're from real users like you. In the meantime, you can share your comment with others to let more people know what you think.

Once a month you will receive interesting, insightful tips, tricks, and advice to improve your website performance and reach your digital marketing goals!

So happy you liked it!

Share it with your friends!

Or review us on