Cloud 101CircleEventsBlog
The CCSK v5 and Security Guidance v5 are now available!

Working Group

Enterprise Resource Planning

The Enterprise Resource Planning (ERP) working group seeks to develop best practices to enable organizations that run their business on large ERP implementations, such as SAP or Oracle applications, to securely migrate to and operate in cloud environments.
View Current Projects
Critical Controls Implementation for Oracle E-Business Suite
Critical Controls Implementation for Oracle E-Business Suite

Download

Enterprise Resource Planning
Working Group Overview

The Enterprise Resource Planning (ERP) working group seeks to develop best practices to enable organizations that run their business on large ERP implementations, such as SAP or Oracle applications, to securely migrate to and operate in cloud environments.


What do we discuss? 

During our meetings we typically discuss changes in the industry and collaborate on projects the group is currently working on. We welcome anyone who would like to join, even if you would like to just listen-in on your first call.


Drafts & Important Docs


Working Group Leadership

Juan Perez-Etchegoyen
Juan Perez-Etchegoyen

Juan Perez-Etchegoyen

As CTO and co-founder of Onapsis, JP leads the innovation and research teams that keeps Onapsis on the cutting edge of the Business-Critical Application Security market, addressing some of the most complex problems that organizations are currently facing while managing and securing their ERP landscapes. JP helps manage the development of new products as well as support the ERP cybersecurity research efforts that have garnered critical a...

Read more

Working Group Co-Chairs

Mariano Nunez
Mariano Nunez

Mariano Nunez

As CEO, Mariano drives the strategic direction of the company. Under his leadership, Onapsis has become the market leader in protecting business applications and one of the fastest-growing technology and cybersecurity companies in the world.
Mariano has 20+ years of experience in the cybersecurity industry, both as an executive and as a cyber security expert. He was the first to publicly present on cybersecurity risks affecting ERP platf...

Read more

Publications in ReviewOpen Until
Guidelines for Auditing AIJul 31, 2024
Data Privacy Engineering Working Group Charter 2024Aug 08, 2024
Using Asymmetric Cryptography to Help Achieve Zero Trust ObjectivesAug 12, 2024
View all
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Virtual Meetings

Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.

No scheduled meetings for this working group in the next 60 days.

See Full Calendar for this Working Group

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

Guidelines for Auditing AI

Open Until: 07/31/2024

Guidelines for Auditing AI presents a comprehensive framework for auditing AI systems, emphasizing the need for tr...

Data Privacy Engineering Working Group Charter 2024

Open Until: 08/08/2024

The Data Privacy Engineering Working Group (DPE WG) is chartered with the mission to integrate privacy-centric methodologie...

Using Asymmetric Cryptography to Help Achieve Zero Trust Objectives

Open Until: 08/12/2024

This paper investigates the convergence of asymmetric cryptography and Zero Trust architecture, exploring the utilization o...