Oracle Database Security: Detective Controls

DesTech
Remote
Schedule

Partner
Remote
Schedule

Course DateStart TimeEnd TimeTime ZoneLocationDaysPrice
Sep 19, 202209:0005:00EDTToronto - In Class or by Video Conference5$5,000 USDPurchase
Dec 5, 202209:0005:00ESTToronto - In Class or by Video Conference5$5,000 USDPurchase


Oracle Database Security: Detective Controls Ed 1

Description: In the Oracle Database Security: Detective Controls course, students learn how they can use Oracle Database administration auditing features to meet the compliance requirements of their organization. The current regulatory environment requires better security at the database level. Students learn how to audit the access to their databases and how to use the auditing and compliance features to monitor data access and confidentiality. The course provides suggested Oracle solutions for common problems.

Learn To:

  • Enumerate Oracle auditing solutions to monitor database security requirements
  • Implement Oracle Audit Vault and Oracle Database Firewall
  • Configure Oracle Audit Vault and Oracle Database Firewall
  • Explain Oracle Compliance Framework
  • Configure basic Compliance Framework rules

Duration: 5 Days

Course Objectives:

  • Enumerate Oracle auditing solutions to monitor database security requirements
  • Implement Oracle Audit Vault and Database Firewall
  • Configure Oracle Audit Vault and Database Firewall
  • Explain Oracle Compliance Framework
  • Configure basic Compliance Framework rules

Audience:

  • Database Administrators
  • Security Administrators
  • Security Compliance Professionals
  • System Analysts

Prerequisites:

  • Good understanding of SQL
  • Create and manage database users, roles, and privilege
  • Create PL/SQL procedures
  • Good knowledge of Oracle Database Administration

Topics:

Introduction

  • Course Objectives and Schedule
  • Course Practices and Additional Information

Using Unified Audit

  • Auditing Overview
  • Unified Audit Management
  • Specific Audit Situations

Using Fine-Grained Audit

  • Comparison with Unified Auditing
  • Overview
  • FGA Implementation

Introduction to Oracle Audit Vault and Database Firewall (AVDF)

  • Oracle Audit Vault and Database Firewall Features
  • Oracle Audit Vault and Database Firewall Components
  • Oracle Audit Vault and Database Firewall Architecture
  • Supported Secured Targets
  • Integrating Oracle AVDF with Third-party Products
  • Oracle AVDF Administrator Tasks
  • Oracle AVDF Auditor Tasks

Planning the Oracle Audit Vault and Database Firewall Implementation

  • Evaluating Oracle AVDF Configuration Requirements
  • Configuring Oracle AVDF and Deploying the Audit Vault Agent
  • Configuring Oracle AVDF and Deploying the Database Firewall

Installing the Audit Vault Server

  • Requirements for Installation of Oracle AVDF
  • Network Interface Card Requirements
  • Installing an Audit Vault Server
  • Performing Audit Vault Server Post-Installation Tasks

Configuring the Audit Vault Server

  • Specifying the Server Date and Time
  • Setting or Changing the Audit Vault Server Network Settings
  • Configuring or Changing the Audit Vault Server Service
  • Configuring the Audit Vault Server Syslog Destinations
  • Defining Datafile Archiving Locations
  • Creating Archiving Policies
  • Configuring the Email Notification Service
  • Configuring Administrative Accounts for the Audit Vault Server

Configuring Oracle AVDF and Deploying the Audit Vault Agent

  • Understanding Network Requirements for AV Server and AV Agent
  • Registering Hosts in the Audit Vault Server
  • Deploying and Activating the Audit Vault Agent on Host Computers
  • Registering the Audit Vault Agent as a Windows Service
  • Creating User Accounts for Oracle AVDF
  • Registering Secured Targets
  • Configuring Audit Trails for Secured Targets
  • Configuring Stored Procedure Auditing

Networking and Oracle AVDF

  • Overview of the OSI 7-level Network Model
  • Overview of IPv4 Addressing and Routing
  • Overview of MAC Addressing
  • Overview of Virtual LANs (VLANs)
  • Overview of Spanning Tree Protocol (STP)
  • Oracle AVDF Deployment Models (inline, out of band, and proxy)
  • Best Practices for Database Policy Enforcement (DPE) and Database Activity Monitoring (DAM) Modes

Installing a Database Firewall

  • Requirements for Installation of a Database Firewall
  • Network Interface Card (NIC) Requirements
  • Installing a Database Firewall
  • Performing Database Firewall Post-Installation Tasks

Configuring Oracle AVDF and Deploying Database Firewall

  • Configuring Basic Settings for Database Firewall
  • Configuring a Database Firewall on Your Network
  • Associating a Database Firewall with the Audit Vault Server
  • Registering Secured Targets
  • Configuring Enforcement Points
  • Configuring and Using Database Interrogation
  • Configuring and Using Database Response Monitoring

Using Host Monitoring

  • Overview of Host Monitoring
  • Installing and Enabling Host Monitoring
  • Checking the Status of the Host Monitor
  • Stopping the Host Monitor

Configuring High Availability

  • Overview of Oracle AVDF High Availability Architecture (resilient pairs)
  • Configuring a Resilient Pair of Audit Vault Servers
  • Configuring a Resilient Pair of Database Firewalls

Creating Custom Collection Plug-ins

  • Overview of Audit Collection Plug-ins
  • General Procedure for Writing Audit Collection Plug-ins
  • Setting Up Your Development Environment (downloading the SDK)
  • Creating Audit Collection Plug-ins
  • Packaging Audit Collection Plug-ins

Managing the Audit Vault Server

  • Starting an Archive Job
  • Restoring Audit Data
  • Monitoring Jobs

Managing the Database Firewalls

  • Viewing and Capturing Network Traffic in a Database Firewall
  • Viewing the Status and Diagnostics Report for a Database Firewall
  • Removing a Database Firewall from the Audit Vault Server

Overview of the Auditing and Reporting Features

  • Overview of Database Firewall Policies
  • Overview of Oracle Database Audit Policies
  • Overview of Reports and Report Schedules
  • Overview of Oracle Database Entitlement Auditing
  • Overview of Oracle Database Stored Procedure Auditing
  • Overview of Alerts and Email Notifications

Performing Administrative Tasks

  • Viewing a List of Audit Trails and Audit Trail Status
  • Viewing a List of Enforcement Points and Enforcement Point Status
  • Specifying a Data Retention Policy
  • Creating Secured Target Groups
  • Assigning a Secured Target to a Compliance Group
  • Managing User Accounts and Access
  • Creating Templates and Distribution Lists for Email Notifications
  • Monitoring Jobs

Creating Audit Policies for Oracle Databases

  • Overview of Audit Policies and Audit Data Collection
  • Overview of Oracle Database Auditing
  • Recommended Audit Settings
  • Creating Audit Polices for Oracle Database (overview)
  • Retrieving and Modifying Audit Settings from an Oracle Database
  • Creating Additional Audit Policy Settings for an Oracle Database

Creating Database Firewall Policies

  • Overview of Database Firewall Policies
  • Creating a Firewall Policy
  • Defining Firewall Policy Rules and Settings
  • Using Profiles to Customize a Firewall Policy
  • Publishing Firewall Policies
  • Deploying Firewall Policies to Secured Targets

Oracle AVDF Reports

  • Using the Built-in Reports
  • Managing Reports
  • Customizing Built-in Reports
  • Creating Custom Reports

Managing Entitlements

  • Overview of Entitlement Data (what is it?)
  • Retrieving Entitlement Data from an Oracle Database (creating a snapshot)
  • Creating Labels for Snapshots
  • Assigning Labels to Snapshots
  • Using Entitlement Reports
Right Menu IconMENU