Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

Knowing who can access SQL Server databases is critical to securing business data!

  • 02 April, 2008 09:00

<p>SQL Server DBAs now have an enhanced tool to quickly identify and analyse database security risks across their SQL Server environment. The release of Idera’s SQLsecure 2.0, an advanced SQL Server security auditing solution, extends its comprehensive set of analyses to include Windows operating system components and adds built-in policies to measure compliance against data security regulations such as Sarbanes-Oxley, PCI DSS, GLBA, BASEL II and Privacy Legislation.</p>
<p>As many companies are discovering, their biggest data security threat is not external hackers, but internal users. According to the 2007 CSI Computer Crime and Security Survey, 65% of companies who experienced a security incident reported losses due to insider activity.</p>
<p>With the complex interaction of security settings and user access controls within SQL Server databases, the Windows operating system, file systems, and more - properly configuring and managing SQL Server security can be a daunting task. SQLsecure automates this process by quickly and accurately analysing security settings across these components to provide a comprehensive view of the state of SQL Server security, enterprise wide. SQLsecure also provides recommendations for addressing security risks and fixing flaws in security access control settings, saving hundreds of hours of time, dramatically reducing exposure and ensuring compliance with internal and external audit requirements.</p>
<p>We have had some interesting SQLsecure user feedback from Australian users”, said Tony Finnemore, APAC Manager, SQL Tools, “including a DBA in a major financial institution who discovered a large number of consultants from an outsourcer had access to critical data via an AD group. He discovered this while running an evaluation trial of SQLsecure!”</p>
<p>“Working in a heavily regulated industry, I am frequently asked by auditors to report on who has what specific permissions on a SQL Server object”, said Bobby Fishbein, Database Administrator, Mitsui Sumitomo Marine Management. “Getting this information and keeping it up-to-date is a time-consuming, labour-intensive activity. SQLsecure enables me to accomplish in mere seconds what would have previously taken considerable time and resources.”</p>
<p>“SQLsecure is an essential tool in preparing for an audit”, said John Dunleavy, DBA, Capmark. “The ability to link in to Active Directory and see all the effective permissions for any given group is indispensable. Also, alerts from SQLsecure keep me on top of things at all times. With SQLsecure, we are more confident that our databases are secure and that we can meet audit requirements.”</p>
<p>New features in SQLsecure 2.0 include:</p>
<p># Policy-based Security Analysis – checks database security against more than 60 security standards including built-in policies from NSA, DISA, CIS, and others.</p>
<p># Alerts – Introduces alerting capabilities which can be customized to notify the DBA if any security parameters fail to meet the policy standard.</p>
<p># Database Roles Permission Explorer– enables analysis of assigned and effective permissions by database role, including sub-roles and role members.</p>
<p># Operating System Security Analysis – assesses the operating system, SQL Server files, directories, and registry settings to identify issues that could compromise SQL Server security.</p>
<p>Pricing and Availability</p>
<p>SQLsecure version 2.0 is now available for download and is priced at AU$1,490 per SQL Server instance. For more information or to download a free 14-day evaluation copy of SQLsecure version 2.0, please visit: www.sqltools.com.au/secure</p>
<p>--END--</p>
<p>About SQL Tools:</p>
<p>SQL Tools is Idera’s master distributor in the Asia Pacific (APAC) region. Based in Sydney Australia, SQL Tools works with Idera users, resellers and channel partners to provide sales and technical support for Idera products in the APAC region. Further information can be found at www.sqltools.com.au</p>
<p>Media, Product or Reseller inquiries:
Tony Finnemore SQL Tools
+61 (0)2 9878 8090
idera@sqltools.com.au</p>
<p>About Idera</p>
<p>Idera delivers a new generation of tools for proactively managing, administering, and securing the world’s fastest growing database management system – Microsoft SQL Server. Battle-proven and engineered for distributed enterprises, Idera’s solutions help companies ensure database availability while also reducing tedious administrative tasks and expense. Idera’s solutions include: Security and Compliance Management, Performance and Availability Management, Backup and Recovery, and Change and Configuration Management. Headquartered in Houston, Texas, Idera’s products are sold and supported directly and via authorized resellers and distributors around the globe. To learn more, please contact SQL Tools Idera’s master distributor for the APAC region.</p>
<p>Idera – a division of BBS Technologies, Inc. SQLsecure, SQLsecure, Idera and the Idera logo are trademarks or registered trademarks of BBS Technologies, Inc. or its subsidiaries in the United States and other jurisdictions. All other company and product names may be trademarks or registered trademarks of their respective companies.</p>

Most Popular