Chapter 6 Databases and Data Warehouse{0}
The article that I found takes a look at how some companies are not taking the correct precautions in protecting valuable and high risk data. Chapter 6.1 takes a thorough approach on Databases and Data Warehouses. A small section in the book emphasizes how important it is to have increased information security or data could be compromised unless appropriate action is taken. Both the book and article identify the internet and people who are within the company abuse their power. The article talks about proper planning which a more in depth approach has three main fields which would include authentication, authorization, and access controls. The article states “A database security plan comprises of what measures to take, how to protect the databases, best practices, approach to migrate, upgrade and load data in a secure manner, how frequently to patch systems, what databases should be encrypted, how to protect backups and non-production environments”(Prince 2009). The article does a great job explaining how companies aren’t taking the right methods in protecting databases from malicious people trying to steal data. Leaving readers with something to think about when indicating that a company survey brought results that people have a false sense of security. The survey shows that 84 percent felt that they were adequately protected. During that same year 56 percent of the people who were surveyed reported that they had a breach (Prince 2009).
This relates to the book because the book had mentioned with advancing technology and internet access making it easy for people to have easier accessible data. It is crucial to have a safeguard to prevent these actions from happening in the first place. The article also said “Part of addressing all this is knowing what data is in the various databases inside the enterprise, which means focusing on discovery and classification” (Prince 2009). The book describes information is an organizational asset, like any asset it can be easily jeopardized. Both the book and the article make “awareness” a key component to take into account.
What I liked about this article is that with such a vast amount of information inside databases it really is important to make sure all data is properly secure. Without having data secure, it can be a costly mistake to companies. The article definitely points out what most people probably do think and believe that some or all databases are protected but in reality they are not.
Sources:
Prince, Brian. (2009, October 06) Database Security Takes Proper Planning. Eweek .
Link:
http://www.eweek.com/c/a/Security/Database-Security-Takes-Proper-Planning-310590/