Database Activity Monitoring (DAM) is a vital part of your compliance and safety profile, but to be efficient at securing your database, you need to understand its basics.
What is Database Activity Monitoring (DAM)?
Database Activity Monitoring is a reasonably established technology, existing over a decade. DAM monitors all activity on the database and gives alerts and reports on that activity. Every time an admin logs into the database, every activity is registered. In fact, if the admin does not log-in, that too is recorded, so you can recognize people with permissions who aren’t using them. Depending on the product you use and the configuration, you’ll get different types of reports and alerts.
One of the essential elements of DAM is that the data about database use is saved outside the database it is monitoring, so the people who are being observed cannot interfere with the data. Another important element is the ability to send real-time signals so that as soon as a violation of policy is detected, it can be managed immediately.
DAM solutions also contain database vulnerability assessment and user account audit, coupled with firewall file access monitoring and web application monitoring.
- Monitors access to sensitive information.
- Covers the entire database by allowing only indirect access to the database.
- Fully scalable solution allows control of all features using one unified, simple management interface.
- Protects financial, identity and intellectual property in real time. Data theft requires being prevented, not just detected.
- Protects databases in the Cloud.
- Easy to install, use and manage.
DAM is an important part of your enterprise compliance profile and provides some elements of database security. However, Database Activity Monitoring does not offer a real-time security measure against threats such as SQL Injections, insider threats, and inadvertent tampering with data. To ensure your enterprise is enclosed, DAM needs to be merged with other solutions such as SQL Injection protection, database firewall, and data masking and encryption.