Oracle Magazine, July/August 2018
ORACLE MAGAZINE JULY AUGUST 2018 45 H igh profile breaches have propelled security to the top of the agenda at many organizations as the combination of faster more damaging attacks increasingly complex technology environments and demanding regulatory requirements continues to create new security challenges Todays attacks are wide and varied says Vipin Samar senior vice president of Oracle Database Security They range from targeting infrastructure and databases to targeting your applications and users This means that to protect vital information assets companies need controls at multiple levels across their entire environment both in the cloud and on premises The hackers only need to be successful once to break in Samar says but your business needs to be successful all of the time in order to avoid a data breach The only way to do this and keep our data safe is through defense in depth with multiple controls security on by default automation best practices and a secure infrastructure However ensuring that a full range of effective controls is in place can be challenging To address that challenge Oracle Autonomous Database Cloud and other autonomous Oracle PaaS solutions start with built in self securing features Oracle also offers database specific security features and identity management solutions to help achieve true defense in depth The Secure Database For organizations connecting their Oracle SaaS custom SaaS and PaaS solutions security starts with Oracle Database cloud services As Samar notes hackers often target databases because thats where the organizations most sensitive data resides The protection provided by Oracle Database cloud services including Oracle Autonomous Data Warehouse begins with encrypting data at all times We encrypt your data everywhere whether it is in SQL Net traffic data in tablespaces or in backups Samar says Encryption cannot be turned off and encryption keys are managed automatically But while encryption is an essential tool it prevents hackers from getting direct access to raw data it closes off only one part of the organizations attack surface Samar says If companies dont patch on premises systems with the latest security updates and other updates because of downtime restrictions patch testing
You must have JavaScript enabled to view digital editions.
