Security and Trust - SAP NS2

Products
Industry-tailored Security
for SAP Solutions

We guide you in the adoption of U.S.-based SAP cloud solutions with an enhanced deployment model that keeps your data secure and compliant with local regulations.

Learn More

Our Offerings

SAP Cloud Solutions

Professional Services

Support

Mission Solutions
About
We are SAP NS2

We deliver the power of SAP’s intelligent enterprise with cloud solutions built to maximize data sovereignty and security.

Learn More

Company

Who We Are

NS2 Mission

Security and Trust

Leadership

Our Team

Partners

Community Programs

Careers
Explore
Learn More

We are dedicated to fostering a collaborative environment where learning never stops. Whether you’re a technology company, a research or academic organization, or a government agency looking to innovate

Download our solution briefs to learn how SAP innovation can accelerate your progress.

Build With Us

Resources

Learning & Resources
Blog
Our Expertise

When you partner with us, you have access to highly credentialed experts who will help you master the security and compliance aspects of your cloud strategy.
Read our blog for commentary on the latest trends in cloud innovation.

Blog

Browse Topics

SAP NS2 Cloud Security

SAP NS2 Security Frameworks

Explore Authorizations, Attestations, and Environments

At SAP NS2, we place heightened importance on safeguarding your mission-critical data and operations. By complying with industry-specific security and regulatory requirements, your SAP cloud solutions are protected around the clock.

Compliance and Security Authorizations

Find below the compliance frameworks and security authorizations we adhere to. Our all-encompassing approach to security ensures regulated entities can adopt the innovation of SAP cloud solutions while remaining protected by the standards they demand.

Compliance Standards:

NIST SP 800-53 Security and Privacy Controls for Federal Information Systems and Organizations, April 2013
FedRAMP Moderate Security Control Baseline
DoD Cloud Computing Security Requirements Guide (SRG V.1, R.4)
Committee on National Security Systems Instruction (CNSSI) Number 1253, and Appendix F, Attachment 6 – Privacy Overlay, 25 April 2015
DFARS 252.204-7012 – Safeguarding Covered Defense Information and Cyber Incident Reporting, October 2016
FAR 52.204-21 – Basic Safeguarding of Covered Contractor Information Systems, June 2016
ISO 27001: 2013 Information Technology – Security Techniques – Information Security Management Systems – Requirements
View the Certificate
ISO 27017:2015 Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services.
View the Certificate
ISO 27018:2019 Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors.
View the Certificate

Authorizations and Certifications:

ISO/IEC 27001:2013, ISO 27017:2015, and ISO/IEC 27018:2019 Certified
FedRAMP Joint Authorization Board (JAB) P-ATO View on the FedRAMP Marketplace
DISA Provisional Authorization (PA) – FedRAMP+IL4 (SNSFS) View on the FedRAMP Marketplace
Health Insurance Portability and Accountability Act (HIPAA) Attestation
SOC I Type II and SOC II Type II Reports
Canadian Centre for Cyber Security approval for Protected B data
StateRAMP Authorization
View on the StateRAMP Authorized Product List

Also of Interest