SQL compliance manager
Capture, audit and alert on SQL Server activity
|Powerful auditing of virtually all SQL Server activity|
|Flexible collection filters to gather only the data you need|
|Compliance “dashboard” highlights key events, alerts, or activity|
|Customisable alerts notify you of suspect activity|
|Tamper-proof repository guarantees integrity of audit data|
|Comprehensive compliance reporting keeps managers and auditors happy|
|Instant auditing... be up and running in 30 minutes or less|
|Very low overhead data collection|
SQL compliance manager is a comprehensive auditing solution that tells you who did what, when and how on your SQL Servers. SQL compliance manager helps you ensure compliance with regulatory and data security requirements such as Sarbanes-Oxley, GLBA, HIPAA, PCI DSS, and Basel II by providing customizable, low-impact auditing, alerting and reporting on virtually all activity across multiple SQL servers.
SQL compliance manager goes beyond traditional auditing approaches by providing real-time monitoring and auditing of all data access, updates, data structure modifications and changes to security permissions. SQL compliance manager also includes powerful self-auditing features to ensure that you are alerted to any changes to data collection settings or attempts to tamper with the audit data repository.
Why SQL compliance manager?
As mission-critical data is stored in SQL Server databases throughout the enterprise, DBAs are regularly tasked with answering the question “Who accessed my databases, what did they do, and when?" In addition they are required to provide an accurate, immutable audit trail of all access and update actions, schema changes and security permissions changes. Unfortunately, providing this audit information can often mean weeks or months of research and development, or in some cases the deployment of full-time DBA staff to provide regular reports to auditors. SQL compliance manager eliminates this overhead by providing real-time monitoring and auditing of SELECT statements, data updates, schema changes, security permissions and logins; providing quick, easy, accurate and trusted answers whether you have tens, hundreds or thousands of SQL Servers in your organisation.
Continuous, Flexible Auditing - SQL compliance manager goes beyond traditional auditing approaches by providing real-time monitoring and auditing of all data access, updates, data structure modifications and changes to security permissions. The type and detail of audit data collected is highly configurable and may be defined at the server, database and object level. No changes to applications or production databases are required.
Immediate notification of suspect activity - SQL compliance manager can be configured to alert DBAs of suspect server activity, either via e-mail or the event log. The alerting engine includes powerful features such as flexible alert definition, alert templates, custom messaging, and alert reporting and alerts can be applied across the board, or to specific servers, databases or tables, for more fine-grained control.
Tamper-proof audit data repository - SQL compliance manager has been engineered to provide a trusted, immutable source of audit data. Audit data captured is stored in a central repository for reporting, querying and forensic analysis. Its powerful self-auditing features ensure that you are alerted to any changes to data collection settings or attempts to tamper with the audit data repository.
Minimal performance impact - SQL compliance manager employs a very efficient, low-overhead data collection mechanism to minimize impact on audited servers. A lightweight agent monitors the SQL Server trace data stream in real time, collects the audit data and sends it back to the repository. SQL compliance manager does not use high-overhead approaches that can impact server performance such as triggers, profiling, ‘heavy’ tracing options or log scraping.
Powerful reporting and analytics - SQL compliance manager provides ‘out of the box’ reports to address a broad range of auditing and security reporting needs. These reports were developed in conjunction with industry experts in security, compliance and auditing policies, such as Ernst and Young and InformationShield Inc. All reports may be easily customized, plus the user-friendly schema of the audit data repository enables rapid development of ad-hoc queries and reports for forensic analysis.
Data auditing - SQL compliance manager enables auditing of data changes on any table so you can compare before and after data values resulting from inserts, updates and deletions. Data auditing is done using a unique, low overhead, non-intrusive method to ensure virtually no impact on SQL Server performance.