WALTHAM, Mass. (May 4, 2010) - Guardium, an IBM Company and the database security leader, is announcing its annual database security seminar series, ”Best Practices for Database Protection, Information Governance & Compliance,” featuring Gartner’s Jeffrey Wheatman and IBM/Guardium CTO Ron Ben Natan, Ph.D.
The events will be held in five locations - New York, London, Toronto, Washington D.C., and Dallas – with the first seminar scheduled for May 11th from 8:15 a.m. to 12 p.m. at the Hilton Times Square in New York. The best practices series is being produced by the publishers of SearchSecurity.com, SearchOracle.com and Information Security magazine.
Cyberattacks, rogue insiders and ever-changing compliance regulations are compelling organizations in all industries to carefully review their information security and governance programs. At the same time, C-level executives are looking to simplify compliance and reduce costs by replacing manual, resource-intensive audit processes with automated controls for all their enterprise applications (ERP, CRM, HR, BI/data warehouse, financial/accounting), database platforms and compliance initiatives (SOX, PCI, HIPAA/HITECH, FISMA/NIST 800-53, ISO 27002 and state/local regulations).
Database Activity Monitoring (DAM) provides enterprises with specialized event collection and analysis capabilities for compliance reporting and security management, which are increasingly important because of auditors’ strong focus on the identification and protection of personally identifiable information, personal health information and other regulated data types.
In this seminar series, featured speaker Jeffrey Wheatman, research director within Gartner’s Information Security, Risk Management and Privacy research group, will give a keynote presentation explaining the ins and outs of DAM and how DAM technology addresses critical security and compliance challenges, including:
- Monitoring privileged users to detect malicious or unapproved activity by DBAs, developers and outsourced personnel.
- Identifying fraud with application-layer monitoring (ERP, CRM, HR, BI/data warehouse, financial/accounting).
- Addressing audit findings for database segregation of duties (SOD) and change management.
- Mitigating the high levels of risk resulting from database vulnerabilities.
- Leveraging advanced functions such as data leak prevention, proactive blocking, discovery of at-risk data, configuration auditing and database user rights attestation (entitlement reporting).
- Providing database audit capability without enabling native database logging and audit functions (which become resource-intensive as the level of auditing is increased).
Best Practices for Database Security, Monitoring and Compliance
Ron Ben Natan, Ph.D. and IBM/Guardium CTO, who’s spent more than 20 years developing enterprise applications and security technology for blue-chip companies, will share best practices for database security, monitoring and compliance. He’ll highlight the challenges of database security as compared to traditional network security and explain how DAM allows companies to enforce granular policies for sensitive data access and change control. Key discussion points include:
- Eight steps to holistic database security.
- Where traditional perimeter security (firewalls, IDS/IPS, etc.) falls short in addressing 21st-century threats.
- How to continuously audit all database activities in real-time – without impacting performance – even in complex, high-volume data centers.
- Best practices for identifying database vulnerabilities using standard metrics (CIS Benchmark, DISA STIG).
- How to reduce complexity with a consistent set of security policies for all your applications and DBMS platforms, including BI/data warehouses.
- Streamlining compliance by automating oversight processes (sign-offs, escalations, change reconciliation, etc.).
- How IBM/Guardium’s solution fits within IBM’s overall offering and integrates with your existing heterogeneous infrastructure (LDAP, IAM, SIEM, change ticketing systems, etc.).
Attendees will also hear real-world case studies about enterprises that have implemented IBM/Guardium’s scalable platform to secure sensitive data and reduce compliance costs, with a meaningful ROI and typical payback period of less than 6 months.
DATES AND LOCATIONS:
Tuesday, May 11th – New York
Thursday, May 27 – London
Thursday, June 3 – Toronto
Thursday, June 10 – Washington, D.C.
Tuesday, June 15 – Dallas
Register today to qualify for complimentary admission to “Best Practices for Database Protection, Information Governance & Compliance” and receive strategic insight from highly respected industry experts.
WHO SHOULD ATTEND: C-level executives and day-to-day practitioners involved with IT security and auditing, database administration, compliance, data privacy, risk management and enterprise architecture.
WHERE: Register at: http://events.techtarget.com/DatabaseSecurity/?Offer=SEguardNYC4
WHY: Learn to safeguard confidential information in your data center while simplifying compliance.
About Guardium
Guardium, an IBM Company, safeguards critical enterprise information by continuously monitoring access and changes to high-value databases. Guardium’s scalable platform simplifies governance with unified policies for heterogeneous infrastructures while reducing operational costs by automating compliance processes, enabling organizations to safely use trusted information to drive smarter business outcomes.
Guardium’s enterprise platform is now installed in more than 450 data centers worldwide, including 5 of the top 5 global banks; 4 of the top 6 insurers; top government agencies; 2 of the top 3 retailers; 20 of the world’s top telcos; 2 of the world’s favorite beverage brands; the most recognized name in PCs; a top 3 auto maker; a top 3 aerospace company; and a leading supplier of business intelligence software.
Guardium was the first company to address the core data security gap by delivering a scalable enterprise platform that both protects databases in real-time and automates the entire compliance auditing process.
###