• 
  • Solutions Overview
  • Database Activity Monitoring
  • • Privileged User Monitoring
  • • Monitoring Applications for Fraud
  • • Preventing SQL Injection Attacks
  • Auditing & Compliance
  • • Compliance Workflow Automation
  • • SOX
  • • PCI
  • • Data Privacy
  • Change Control
  • Vulnerability Management
  • Database Leak Prevention
  • Mainframe Visibility
• 
  • Product Overview
  • Architecture
  • • Core Technology
  • • Enterprise Scalability
  • • Enterprise Integration
  • • Secure Platform
  • Audit & Report
  • Monitor & Enforce
  • Assess & Harden
  • Discover & Classify
  • Supported Platforms
• 
  • Partner Overview
  • Reseller Partners
  • System Integrators
  • Trusted Advisors
  • Technology Partners
  • Partner Certification
  • Channel Portal
• 
• 
  • Support Overview
  • Technical Services
  • Professional Services
  • Training
  • Customer Login
• 
• 
  • Guardium Overview
  • Why Guardium
  • • Industry Recognition
  • Leadership
  • Careers
  • Contact Us

Home > 8 Steps to Holistic Database Security

8 Steps to Holistic Database Security

.

Thank you for your interest in this information from Guardium.

SQL injection attacks, insider threats and regulations are driving organizations to find new ways to secure sensitive data stored in databases such as Oracle, SQL Server, DB2, Sybase and MySQL. 

Most of the world’s sensitive data is stored in commercial database systems such as Oracle, Microsoft SQL Server, IBM DB2 and Sybase – making databases an increasingly favorite target for criminals. This may explain why SQL injection attacks jumped 134 percent in 2008, increasing from an average of a few thousand per day to several hundred thousand per day according to a recently-published report by IBM.

To make matters worse, Forrester reports that 60 percent of enterprises are behind in applying database security patches, while 74 percent of all Web application vulnerabilities – which are predominantly SQL Injection vulnerabilities – disclosed in 2008 did not even have an available patch by the end of 2008, according to IBM.

Whereas most attention has previously been focused on securing network perimeters and client systems (firewalls, IDS/IPS, anti-virus, etc.), we are now entering a new phase where information security professionals are now being tasked with ensuring that corporate databases are secure from breaches and unauthorized changes.

Authored by Ron Ben Natan, Ph.D., author of “HOWTO Secure and Audit Oracle 10g and 11g” (CRC Press, 2009), this white paper describes 8 best practices that provide a holistic approach to safeguarding databases and achieving compliance, including:

• Discovering sensitive data in your environment
• Hack-proofing DBMS environments with vulnerability & configuration assessment
• The role of database activity monitoring (DAM) & change auditing
• Compliance requirements for SOX, PCI-DSS, GLBA and data protection laws.

 

Please complete the registration below.
Required fields are indicated by an asterisk ( * ).

* First Name:
* Last Name:
* Job Title:
* Industry:	-- Select -- Aerospace/Defense Agriculture Apparel Automotive Biotech/Pharma Chemicals Communications Conglomerate Construction Consulting Education Electronics Energy Engineering Entertainment Environmental Financial Services Food & Beverage Gaming Government Healthcare Insurance Law Manufacturing Marketing Media Not For Profit Other Real Estate Recreation Retail Services Technology Telecommunications Transportation/Shipping Travel/Hospitality Utilities
* Company:
* Bus. Email:
* Address:
* City:
* Country:	United States Canada Afghanistan - Islamic State of Albania Algeria American Samoa Andorra - Principality of Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaidjan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bosnia-Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia - Kingdom of Cameroon Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos (Keeling) Islands Colombia Comoros Congo Congo - The Democratic Republic of the Cook Islands Costa Rica Croatia Cuba Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands Faroe Islands Fiji Finland France French Guyana French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe (French) Guam (USA) Guatemala Guinea Guinea Bissau Guyana Haiti Heard and McDonald Islands Holy See (Vatican City State) Honduras Hong Kong Hungary Iceland India Indonesia Iran Iraq Ireland Israel Italy Ivory Coast (Cote D'Ivoire) Jamaica Japan Jordan Kazakhstan Kenya Kiribati Kuwait Kyrgyz Republic (Kyrgyzstan) Laos Latvia Lebanon Lesotho Liberia Libya Liechtenstein Lithuania Luxembourg Macau Macedonia Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique (French) Mauritania Mauritius Mayotte Mexico Micronesia Moldavia Monaco Mongolia Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands Netherlands Antilles New Caledonia (French) New Zealand Nicaragua Niger Nigeria Niue Norfolk Island North Korea Northern Mariana Islands Norway Oman Pakistan Palau Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Island Poland Polynesia (French) Portugal Puerto Rico Qatar Reunion (French) Romania Russian Federation Rwanda S. Georgia & S. Sandwich Isls. Saint Helena Saint Kitts & Nevis Anguilla Saint Lucia Saint Pierre and Miquelon Saint Tome (Sao Tome) and Principe Saint Vincent & Grenadines Samoa San Marino Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Korea Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Islands Swaziland Sweden Switzerland Syria Tadjikistan Taiwan Tanzania Thailand Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates United Kingdom Uruguay USA Minor Outlying Islands Uzbekistan Vanuatu Venezuela Vietnam Virgin Islands (British) Virgin Islands (USA) Wallis and Futuna Islands Western Sahara Yemen Zambia Zimbabwe
* State:	-- Select -- Armed Forces Americas Armed Forces Africa Armed Forces Canada Armed Forces Europe Armed Forces Middle East Alaska Alabama Armed Forces Pacific Arkansas Arizona California Colorado Connecticut District Of Columbia Delaware Florida Georgia Hawaii Iowa Idaho Illinois Indiana Kansas Kentucky Louisiana Massachusetts Maryland Maine Michigan Minnesota Missouri Mississippi Montana North Carolina North Dakota Nebraska New Hampshire New Jersey New Mexico Nevada New York Ohio Oklahoma Oregon Pennsylvania Rhode Island South Carolina South Dakota Tennessee Texas Utah Virginia Vermont Washington Wisconsin West Virginia Wyoming -- Select -- Alberta British Columbia Manitoba New Brunswick Newfoundland Nova Scotia Northwest Territories Nunavut Ontario Prince Edward Island Quebec Saskatchewan Yukon Territory
* Zip Code:
* Phone:	--
Extension:
How did you hear about us?
-- Select -- Advertisement Analyst Article Banner Ads Colleague Customer Direct Mail Email Events Online Program Other Partner/Reseller Podcast Public Relations Referral Program Search Engine Seminar / Conference / Forum Telemarketing Trade Show Webcast Website
Do you currently have any database monitoring initiatives?
-- Select -- Yes No
How many database vendors does your company have?
-- Select -- 1 2 3 or More
What is your timeframe for implementing a database monitoring solution?
-- Select -- Immediate Next 6 months Long-term Don't know
How many employees does your company have in total?
-- Select -- 1 to 499 500 to 999 1,000 to 4,999 5,000 to 9,999 10,000+

©2010 Guardium, Inc. All Rights Reserved

Privacy Policy | Terms of Use | Site Map | Contact Us