THE NEWEST ADDITION TO iSECURITY
Government and industry regulations, including Sarbanes-Oxley (SOX), GDPR, PCI, and HIPAA, stipulate measures that companies must take to ensure proper data security and monitoring. Part of their requirement is that only specifically permitted programs can make updates to business-critical data in production environments.
Safe-Update guards against unauthorized updates by what is considered to be dangerous programs. – programs that are not compliant to the organization’s business rules since they were not designed for it. With Safe-Update, administrators can implant a security layer in the files themselves which will resist unauthorized updates even if such are performed by powerful users who have *ALLOBJ authority. The specification is made by allowing whitelists of programs or denying a provided (editable) blacklist of programs which includes known file editors, DFU and the Start SQL command.
When the organization needs to update data with tools that are normally not allowed, Safe-Update implements a workflow that consists of work orders created by management that specifying who can work with the data, the reason of the work, and the limited time during which the work order is valid. Based on the work order, the specified programmer can then open a ticket and perform the requested updates interactively or in batch. All work under the tickets is logged, even if the data files themselves are not journaled.
If an unauthorized update is attempted, a window appears requesting the entry of a ticket.
For more details email [email protected] or call +61-3-9572-5869