White Papers for Sarbanes-Oxley (SOX)

Privileged User Monitoring for SOX Compliance

Tizor

Sarbanes-Oxley (SOX) IT controls address the integrity of databases that store sensitive financial and business information. In particular, new SOX requirements have shifted the focus from merely understanding who has access to information to continuous monitoring of database activity. These requirements target high risk database activities—privileged user behavior, direct access to sensitive data stores, user privilege escalation, failed login and failed database operations, and so on. Finally, while database applications like DB2, Oracle, SQL Server, and Sybase rightly attract most of the attention, the problem invariably extends to other sensitive data stores—file server-resident financial, legal, strategic, and spreadsheet documents being the foremost examples.

Many enterprises are facing the SOX compliance challenge of monitoring all of the data activity of their most privileged users. This paper highlights several of these challenges and how they can be addressed by a comprehensive database activity auditing solution.

View the White Paper

Share or bookmarklet this web page at: