Person details

Prof. Dr. Sachar Paulus Scientific Advisor

Heidelberg / Germany

17 years in IT industry
At KuppingerCole since 2007

Roles & Responsibilities:

Prof. Dr. Sachar Paulus is a Scientific Advisor at KuppingerCole and Professor for Security Management at Brandenburg University of Applied Sciences. Sachar´s field of expertise at KuppingerCole is focused on Information Security and GRC for Cloud, Mobile & Social Enterprises.

Background & Education:

Prof. Dr. Sachar Paulus studied Computer Science and Cryptography at Saarland University, followed by a Ph.D. in Number Theory at University of Essen, Germany. He is married and lives with his wife and his three children close to Heidelberg.


Areas of coverage:

  • Information Security Program Maturity Assessments
  • GRC for BYOD, Mobile, Cloud
  • IAM/IAG Guidelines, Processes, Organization
  • Cloud Provider Selection and Assurance
  • Privacy, Data Protection
  • Big Data
  • Cyber Security
  •  SAP Security

Professional experience:

Prof. Dr. Sachar Paulus is/was a member of a number of advisory boards, among others, of RISEPTIS, the Advisory Board for Research and Innovation on Security, Privacy and Trust in the Information Society. He was 8 years with SAP in leading security positions, responsible for Secure Software Development, Security Product Management, and Security of the Corporation (Chief Security Officer).

Recent blog posts


Data retention directive in Europe considered illegal by EU court

Have you seen this WSJ article ? This is great news for privacy, human rights and a profound public security based on individual freedom: nations can no longer require IT and telecom companies to store communication data about all customers and communication partners – at least there…


Security Leadership in the Connected Enterprise

The Connected Enterprise is opening new opportunities for business, for innovation and for growth - it is a fundamentally important imperative for today’s business world. But it does not come for free: there are a number of caveats to circumvent, risks to address and changes to…


News from the Analyst Summit in London

Every Summer, Eskenzi PR organizes the IT security analyst and CISO forum. It basically consists of one-on-one meetings between vendors and analysts and round table discussions between vendors, analysts and end-users, typically CISOs. And the event this year was excellent! The quality…


RSA SecurID breach: it had to happen...

As you, dear reader, can imagine, the information about the SecurID breach was really shaking the minds of us analysts here - for a long time, we were telling the story that SecurID was the right compromise between security, convenience and manageability - until SMS became so cheap, that…


Opening the Door to Cloud Security

„Security“ and „Cloud“ are often seen as mutually exclusive. Many CIOs live in fear losing control over their data despite the claims by cloud providers that sensitive information is in fact in safe hands with them. But once data gets replicated, it gets harder and harder to keep them under…


Cloud Security - the market is evolving

Winter holiday season is almost over, and business claims its attention back - it was a nice time with family, good food, and so on. But the world didn't stop, so we had to spend some time to look at a number of products. I would like to mention two here, especially because they help us…

Recent videos