Effective protection of the network perimeter and the fortification against external attacks has traditionally been in the center of organizations’ attention. However, the ever-growing complexity of organizational and regulatory compliance requirements with regards to controlling the internal and external resources’ data handling rights, presents organizational information security teams with an additional challenge.
As data integrity and privacy is becoming more vital for business operations, the comprehensive auditing (monitoring), protection and assessment of databases, has become an integral part of the challenges organizations face today.
To this end, Odyssey offers tailor-made Database Auditing (Monitoring), Protection and Assessment solutions, which ensure the continuous monitoring of access and modification activities over sensitive data, across all organizational databases. Additionally, these solutions are instrumental when it comes to addressing regulatory compliance requirements.
Our Database Auditing (Monitoring), Protection and Assessment solutions entail effective auditing (monitoring), access protection, and assessment of in-scope organizational sensitive databases through a single control point, therefore, considerably simplifying the process and reducing the overhead required. At the same time, they ensure visibility to database transactions carried out by both privileged and non-privileged users.
Our implementation approach begins by assessing your organization’s infrastructure and needs. This phase includes the following:
-
Discovery of sensitive data residing on production, testing, and development database servers
-
Assessing database configuration and
-
Risk evaluation of data by determining WHO and HOW has access to the data, WHAT is being accessed and WHEN.
We then proceed with a vulnerability and configuration assessment of the in-scope database servers, in order to identify vulnerabilities and configuration flaws that might exist, which could affect the integrity, availability and confidentiality of the data residing on these database servers.
Based on the outcome of these assessments we will design and implement auditing (monitoring) and protection policies and controls for addressing not only our findings, but also your information security policy requirements.
Finally, we will enforce and monitor these policies to ensure separation of duties and end-user accountability, while providing security at all layers. Then we will proceed with the configuration of the management system so that it generates and sends real-time security alerts to the assigned personnel.
The final step of our database security life cycle is the effectiveness measurement, where we will provide you with built-in as well as custom reports and security event analysis based on your organizational needs and in a manner, which ensures appropriate compliance workflow.
|
|
"As data integrity and privacy is becoming more vital for business operations, the comprehensive auditing, protection and assessment of databases, has become an integral part of the challenges organizations face today". |
Our Database Auditing and Protection solutions are largely characterized by the following key features and benefits:
|
Key Features
|
Benefits
|
|
Continuous, real-time monitoring and auditing of database critical operations |
Allows the organization to obtain detailed visibility into database activity, user changes, schemas, stored procedures and critical operational data through real-time continuous monitoring and auditing
|
|
Detailed and summary reports on audited events |
Addresses regulatory requirements with the use of both detailed as well as summary reports created from data on audited events
|
|
Automatic scheduled reports and audit details and alerts sent to SIM/SIEM and/or ticketing systems and other 3rd party solutions
|
Streamlines business processes by sending audit details and alerts to assigned users and integrated systems |
|
Complete set of predefined and customizable audit and security policies
|
Quick implementation for monitoring and protecting supported database environments |
|
Flexible deployment options and local access monitoring agent |
Can be deployed in very complicated and mission critical environments without impairing the business processes
Database servers are monitored and protected even when locally accessed
|
|
Real-time alert generation and enforcement by comparing monitored activity with profiled observed user behavior
|
Immediately identifies fraudulent activities, attacks and privilege abuse attempts |
|
A central management console allows for the easy and timely management of the system via the effective management of security policies
|
Centralized administration, reduces overhead and management costs |
|
Discovery, Classification and Assessment of Database Servers |
Enables you to quickly identify “rogue” database servers in your organization
Allows for the quick design of audit and protection polices enabling you to focus on the protection on your organization’s critical data
Allows you to identify and mitigate the risk exposure to data loss
|
We very well understand that to remain effective, a security deployment requires constant monitoring, fine-tuning, updating and maintenance. These requirements may prove a burden your organization may not be poised to undertake. We have, therefore, structured our post-deployment services so that you may have the level of support you need, in order to achieve maximum return on your investment, with the least of worries.
Our suite of post-deployment services range from simple Maintenance and Support, to full-fledged Managed Security & Outsourcing Services.
This solution comprises part of the “Design & Implement” phase of our Information Security Continuum (D&I).