State of Security Review for Oracle Databases
S.O.S. is a quick yet comprehensive risk and exposure assessment of your organization's database security setup, and can be extended to the security setup of your outsourcing vendors. It includes a gap analysis of current state vs. industry-specific best practices and compliance requirements, and tactical and strategic recommendations to achieve and sustain best practices.
S.O.S lets you know where you stand…
and where to go from here.
Inependent expertise
The evolving legal standard for information security creates a high-stakes environment where compliance, security, and Best Practices programs must be up-to-date and able to adapt to changes. MENTIS analysts are experts in databases, security, audit and compliance, and possess a deep knowledge of best practices that are specific to your industry. The S.O.S review assesses the strengths and weaknesses of the controls in place using the knowledge base we have accumulated in each of these areas; and from the valued position of expert objectivity.
The S.O.S library
Our comprehensive library contains a register of Best Practices, a catalog of privileged functions, and a directory of industry regulatory requirements and geographic compliance requirements. The library collects MENTIS’ expertise in database security and the cumulative experience gained through hands-on, in-depth exposure to a variety of organizations’ unique database setups. A key asset in an SOS Review is that the library is dynamic, maintained and updated to keep pace with the latest developments.
S.O.S. Engine
Speed. Our proprietary SOS Engine speeds the information gathering and technological component of an SOS Review by automating many of the manual review tasks. The output enables MENTIS to provide a highly qualified and accurate set of recommendations in a short time frame.
How do we use S.O.S
Scope and Duration: A typical S.O.S engagement (from initiation to final report and delivery) usually takes from 5 to 10 business days per database.
Choices. There are several ways to apply the S.O.S review. The breadth of the review could be corporate wide, site by site, or may focus on individual business units within your organization. The review can also be extended to your outsourcing service provider or software-as-a-solution vendor. Some customers focus on audit readiness by doing twice-yearly reviews, or ask MENTIS to cycle through all of their production databases over the course of a year. Whatever scope you select, the results will provide you with business oriented recommendations for meeting your organization’s security and compliance objectives.
Actionable Results. MENTIS’ S.O.S review provides expert insight and visibility into your organization’s security and compliance posture. A summary document will provide an at-a-glance outline of your current state of security. You will also receive detailed tactical reports, including a Gap Analysis of how your current setup compares. Your full S.O.S. report is a strategic roadmap for your security and compliance initiatives, and contains actionable recommendations unique to your operational environment and industry. As you prepare for a security audit, continue to enhance your compliance program, or protect your information resources, an SOS Review provides the opportunity to step back and identify shortcomings in your organization’s security, bring industry Best Practices into your program, and create an effective strategy for moving forward. |
