Already a member?
Sign in
Welcome! Wikis are websites that everyone can build together. It's easy!
Data Privacy & Access Control
The internal risk of unauthorised access to corporate data is increasingly a concern amongst senior management both from IT and business organisational structures.
Secure data access controls are critical to ensure that vital company data is kept safe and confidential, even from the administrators that manage the data. 80% of data access violations come from within the organisation and it only takes one wayward employee with insider knowledge to create a major security problem.
The number of high profile public examples of organisations that have had important and confidential data stolen can confirm this. These high profile stories in the press serve only to shake customer confidence in products and online services and damage brand equity.
This is particularly important in financial services organisations where senior IT security and risk professionals must work to minimise the risk and impact of any potential security breach. Failure to do so can ultimately impact revenue streams and shareholder value.
This security situation is coupled with pressure to demonstrate good corporate governance in the face of increasing legislative burden. Good governance extends to the ability of organisations to manage and implement internal access controls to applications and all-important data.
With the ever evolving number of regulatory compliance requirements that organisations must adhere to - many of which require the demonstration of good data access controls – it’s a business imperative that the appropriate technology solutions are in place to support this security risk/regulatory situation that organisations find themselves in.
In summary a solution must:
Protect data from Inside Threats Ensure users, especially database administrators and other privileged users have access only to the data that they need to do their job. For example a database administrator with privileged access permissions should not be able to read corporate financial data or confidential personnel records.
Enforce Compliance With Ease
The deployment of automated compliance controls ensures separation of duties that will keep the internal/external auditors happy as well as external legislative bodies. Being able to demonstrate quickly, clearly and accurately that only the right people have access to the right data is fundamental for any regulatory initiative. This also helps to reduce the cost of regulatory initiatives.
Oracle has innovative technology solutions that will solve all of these problems.
Secure data access controls are critical to ensure that vital company data is kept safe and confidential, even from the administrators that manage the data. 80% of data access violations come from within the organisation and it only takes one wayward employee with insider knowledge to create a major security problem.
The number of high profile public examples of organisations that have had important and confidential data stolen can confirm this. These high profile stories in the press serve only to shake customer confidence in products and online services and damage brand equity.
This is particularly important in financial services organisations where senior IT security and risk professionals must work to minimise the risk and impact of any potential security breach. Failure to do so can ultimately impact revenue streams and shareholder value.
This security situation is coupled with pressure to demonstrate good corporate governance in the face of increasing legislative burden. Good governance extends to the ability of organisations to manage and implement internal access controls to applications and all-important data.
With the ever evolving number of regulatory compliance requirements that organisations must adhere to - many of which require the demonstration of good data access controls – it’s a business imperative that the appropriate technology solutions are in place to support this security risk/regulatory situation that organisations find themselves in.
In summary a solution must:
Protect data from Inside Threats Ensure users, especially database administrators and other privileged users have access only to the data that they need to do their job. For example a database administrator with privileged access permissions should not be able to read corporate financial data or confidential personnel records.
Enforce Compliance With Ease
The deployment of automated compliance controls ensures separation of duties that will keep the internal/external auditors happy as well as external legislative bodies. Being able to demonstrate quickly, clearly and accurately that only the right people have access to the right data is fundamental for any regulatory initiative. This also helps to reduce the cost of regulatory initiatives.
Oracle has innovative technology solutions that will solve all of these problems.
Key Solution Benefits
Protect Against Internal Threats; Meet Compliance Requirements- Enforce strong internal controls over “who” has access to “what” data.
- Report on “who” has access to “what” data.
- Keep privileged users (even database administrator) in check by restricting access to sensitive information. For example HR or finance data.
- Enforces separation of duties required by regulatory compliance.
- Help to reduce the ‘Insider’ threat to sensitive data.
- Mitigate data leakage issues.
Latest page update: made by emocat
, Nov 27 2007, 12:45 PM EST
(about this update
About This Update
Moved from: The Official Oracle Wiki
- emocat
No content added or deleted.
- complete history)
Moved from: The Official Oracle Wiki
- emocat
No content added or deleted.
- complete history)
Keyword tags:
data security leakage grc
More Info: links to this page