To protection mission critical systems, most organizations have formal change control policies that govern how and when employees and contractors can make changes to production databases. However detecting violations is difficult, making the policies hard to enforce.
Detecting unauthorized database changes is also important from an external security perspective, as they can be an indicator that a database has been compromised, since hackers often make database changes in the process of extracting data or embedding malware.
With the InfoSphere Guardium solution, you can receive real-time security alerts whenever important changes are made. Our system:
- Tracks all changes to the database structure, data values, configuration files, security and access control objects.
- Can execute responsive actions ranging from real-time alerts to user quarantine or transaction blocking when policy violations are detected; for instance when a change is made by an unauthorized user, or by any user during production periods, or without a valid change control ID.
- Automates the time-consuming process of tracking all observed database changes and reconciling them with authorized work orders in your existing change ticketing system.
- Simplifies compliance validation processes, automating the generation and distribution or reports related to change control to oversight teams, as well as capturing electronic signatures, escalations and comments.
No comments:
Post a Comment