Can Separation of Duties Deter Cybercrime? YES!
Posted
by roxana.bradescu
on Oracle Blogs
See other posts from Oracle Blogs
or by roxana.bradescu
Published on Wed, 31 Mar 2010 21:29:04 -0800
Indexed on
2010/04/01
6:33 UTC
Read the original article
Hit count: 337
According to the CERT 2010 CyberSecurity Watch Survey:
The public may not be aware of the number of incidents because almost three-quarters (72%), on average, of the insider incidents are handled internally without legal action or the involvement of law enforcement. However, cybercrimes committed by insiders are often more costly and damaging than attacks from outside.
When asked what security policies and procedures supported or played a role in the deterrence of a potential cybercriminal, 36% said technically-enforced segregation of duties. In fact, many data protection regulations call for separation of duties and enforcement of least privilege. Oracle Database Security solutions can help you meet these requirements and prevent insider threats by preventing privileged IT staff from accessing the data they are charged with managing, ensuring developers and testers don't have access to production data, making sure that all database activity is monitored and audited to prevent abuse, and more. All without changes to your existing applications or costly infrastructure investments.
To learn more, watch our Oracle Database Management Separation of Duties for Security and Regulatory Compliance webcast.
© Oracle Blogs or respective owner