1. Purpose
This is a comprehensive Procedure document for SyWay SAP systems Patch Maintenance, covering both On-Premise and SaaS/Cloud (Public and Private) deployments. This procedure defines the standardized process for planning, assessing, applying, testing, validating and documenting SAP patches (Support Packages, Security Notes, Kernel patches, Hotfixes etc.) across the landscape. The goal is to minimize security risks, ensure system stability and compliance, reduce downtime, and maintain business continuity while adhering to the shared responsibility model in cloud environments.
1.1 Key Objectives
- Apply security patches regularly on monthly basis (especially SAP Security Notes released on Patch Day).
- Manage functional corrections, support packages, Hotfix Collections (HFC), Kernel updates and other Infrastructure patches.
- Coordinate maintenance across SAP Rise PCE, BTP and SaaS solutions.
2. Scope
Include the scope details in this section. Rise, BTP, SaaS, Azure/AWS
3. Guiding Principles
- Prioritize security notes and aim to complete installation across the landscape within the same month
- Avoid patching before Major release
- Always test in non-production environments first
- Use SAP Cloud ALM for unified visibility across hybrid landscape
- Maintain uniform patch levels across landscape where possible
- Maintain detailed documentation of all changes for future reference (i.e., SOX and GDPR compliance)
- Define clear rollback plans in production (backups + transport rollback)
- Schedule regular Patch Day reviews with relevant stakeholders
- For SaaS, subscribe to product community pages and cloud service status for schedule
4. Roles and Responsibilities
Include RACI here
5. Patch types and Frequency
Include Security Notes, SPS, Hotfixes, Kernel, Infrastructure OS/DB and component specific (ST-PI, ST-A/PI etc.)