- Solutions Overview
- Database Activity Monitoring
- • Privileged User Monitoring
- • Monitoring Applications for Fraud
- • Preventing SQL Injection Attacks
- Auditing & Compliance
- • Compliance Workflow Automation
- • SOX
- • PCI
- • Data Privacy
- Change Control
- Vulnerability Management
- Database Leak Prevention
- Mainframe Visibility
-
-
-
-
Best Practices Seminar Registration
.
A recent data breach study by Verizon Business Services reveals that attacks targeting database servers accounted for 75% of all records compromised during 2008–compared to other IT assets such as laptops and backup tapes, which account for less than 0.05% of breached data–with payment card data representing 98% of all compromised records. Database threats, both external and internal, are clearly on the rise; according to IBM, SQL injection attacks continued to increase in 2009, growing 50 percent in Q1 and nearly doubling in Q2 compared to previous quarters.
Protecting against cyber attacks, breaches, fraud, and insider threats has heightened the need for banks, insurers, utilities, global manufacturers, other large enterprises, and service providers to carefully review their security and governance programs in order to protect the confidentiality and integrity of their most vital information assets.
Organizations are also seeking to reduce compliance costs and complexity by automating and centralizing controls for key regulations and industry standards such as PCI-DSS, SOX, Canadian Privacy Act (PIPEDA), IT Governance and SAS 70 auditing and reporting requirements.
Featured Speakers:
John Walp, Corporate Information Security Officer for M&T Bank Corporation, 2009 Information Security Executive of the Year, will discuss the people, process and technology challenges involved with implementing data-level security in a large financial services organization. He will also describe how M&T has implemented Guardium's scalable enterprise platform to secure its critical database infrastructure, while reducing costs and complexity by automating and centralizing controls across multiple DBMS platforms and data centers. John will look to share his thoughts on how regulatory compliance and timely incident reporting have triggered a greater need for alignment of the institution's IS strategy with its enterprise governance, compliance and risk framework.
Phil Neray, VP, Security Strategy at Guardium, will discuss key business drivers for database security and compliance; he will highlight major market trends, present an overview of the Guardium architecture and some real-world case studies.
Ron Ben Natan, Ph.D. and Guardium CTO, will discuss best practices for database security and compliance; differences between traditional network security and database security; how to leverage the latest technologies for database activity monitoring (DAM), privileged user monitoring, vulnerability assessment, sensitive data discovery and configuration change control; and reducing compliance complexity with automated controls and workflow processes.
Date/Time/Venue
Re-scheduled for 2010.
Stay tuned for new date.
Who Should Attend
Both C-level executives and day-to-day practitioners will benefit from this practical seminar, including anyone involved with IT security, risk management and compliance, governance and privacy, enterprise application architectures and database administration.
Agenda
| 8:00 am | Registration and breakfast served |
| 9:00 am | Welcome and introductions - Robert Herjavec |
| 9:15 am | THG "Security Overview" - Michael Brameld |
| 9:30 am | "Implementing Data-Level Security in a Large Financial Services Firm," John Walp, M&T Bank |
| 10:15 am | "Key Business Drivers for Database Security," Phil Neray, Guardium |
| 10:45 am | "Best Practices for Database Security and Compliance" with technology demo, Ron Ben Natan, Guardium |
| 11:30 am | Discussion and Q&A with the day's speakers/Seminar adjourns |
Click here to register today.
This is an invitation-only, complimentary seminar with limited seating. Please register no later than November 17th.