Jarosław Zdanowski
SAP Basis & Cybersecurity Expert
Partner at SNOK. SAP Basis and SAP Security expert with experience in projects for global organisations operating complex SAP environments. At SNOK, he is responsible for developing SAP security services, including SecurityBridge, bowbridge, SAP Security Patch Day and SAP penetration testing. Today, he also supports clients in designing secure Enterprise AI architecture and selecting optimal hardware and cloud solutions.
Expertise
Publications
12 articles
AI in SAP without Joule: how to safely bring artificial intelligence into an on-premise system
Joule requires BTP and a newer SAP release. Most Polish companies run ECC or an older on-premise S/4HANA. We show how to give AI safe access to SAP data without a conversion - with UiPath as a controlled execution layer.
SAP Security Patch Day - March 2026
The second Tuesday of March - time for another SAP Security Patch Day. This time SAP published 20 security notes. Fewer than in February? Indeed. But there are still two critical vulnerabilities with a CVSS score above 9.0 - a
Automation in SAP Security – moving from reactive compliance to continuous hardening
When did you last carry out a comprehensive security review of your SAP environment? If the answer is "at the last audit" – you have a problem. In a world where the number of critical SAP vulnerabilities rose in 2025
SAP Security Patch Day - February 2026
SAP published 29 new security notes as part of the February 2026 Patch Day (including updates and interim releases). This nearly matches the record from July 2025 and signals that 2026 is starting intensively for SAP se
How to Build Zero Trust for Identity in the SAP World
Just a few years ago, the enterprise security perimeter ran along firewalls and proxy servers. Anyone "inside" was treated as trustworthy. Anyone "outside" – as a potential
SAP as a critical attack vector in 2026 – from critical patches to mature security
2025 will go down in history as a turning point in how SAP system security is perceived. A zero-day vulnerability in the NetWeaver Visual Composer component (CVE-2025-31324), a global attack campaign run by
SAP Security Patch Day – January 2026
SAP published 17 new security notes as part of the January 2026 Patch Day. This is one of the most serious Patch Days to date - it includes 4 critical vulnerabilities (HotNews) with a maximum CVSS of 9.9. KEY THREATS: 1/ SQL Injectio