Presented at INSYNC 21

Session ID: 100510

Learn how to set up and configure and utilize the Oracle Database Security Assessment Tool.  The tool can help with data and database security best practices and options.  The tool can also help you uncover the sensitivity in your databases so that you and implement ways to better protect your data.

Presented at INSYNC 21

Session ID: 101090

Security breaches are becoming more and more common. From both external and internal threats/bad actors. And while organizations spend considerable effort on perimeter security, the database is often overlooked or considered too fragile to touch.

But more effort needs to be directed towards Oracle database security. Both inside the database and out (i.e. operational practices). And regardless of whether on-premises or in the cloud.

This presentation covers common weaknesses and vulnerable areas of the Oracle database due to configuration and management issues that are easy to correct or remediate right away. Going well beyond the obvious like password rotations and having security policies.

Presented at INSYNC 21

Session ID: 101560

Oracle Database 21c has been released and is the latest innovation release of the Oracle Database.  A number of new security features are included with this release and should be adopted when creating new databases or upgrading existing databases. Learn about the new security features and changes in security for this database release. Key new security features are blockchain table, gradual database password rollover, mandatory case-sensitive passwords, and Unified Auditing enhancements.

Presented at INSYNC 21

Session ID: 101850

Oracle Data Safe is an exciting new service offering security capabilities for identifying and reducing risk in Oracle Databases. First introduced at Oracle Open World San Francisco in 2019, Data Safe has been continuously enhanced and is now available for all Oracle Databases, on-premises and in the cloud. Join us to learn how you can simplify managing the security of your databases. We will go through a real life use case to assess configuration risks, evaluate database users, manage audit settings, report on database activity, discover sensitive data, and remove sensitive data from non-production copies of the database. And the best part – no special expertise is needed to leverage the capabilities of Data Safe.

Presented at INSYNC 21

Session ID: 100910

This talk is for database and information security professionals.

The database holds the crown jewels of the organization; however, the infosec security teams have little understanding of working of the database and database developers, designers, and DBAs have little understanding of security concepts. I get it, we get pressure from the top and the users to deliver a system with little time or budget to apply to database security. In this talk, we are going to take the 10,000 meter view of the database and look at the attack surface, attack vectors, and how to mitigate those attacks. At the end of the presentation, developers, designers, and DBAs will have action items they can take back to their shop and start improving security.

Presented at Quest Experience Week (QXW) – Database & Technology Day

In this era, data privacy and security is a major concern. It is a challenge to be compliant with the standards as far as data security is concerned. Oracle Advanced Security options provide us easy ways to protect our databases and be compliant at the same time. This session will give an overview and use cases of several impactful Oracle Advanced Security features we have been using for our SaaS applications in real life production systems. In addition to that, there are several other in-house best practice we have developed over the years which might be beneficial for others.

Presented at Quest Experience Week (QXW) - PeopleSoft Day

See how Sentinel replaces time-consuming reports and makes PeopleSoft support easier for you. (COMPARE) Instantly identify differences between environments and user security. (AUDIT) A real-time view of users with Correction Access, Sensitive Data, and Segregation of Duty conflicts. (SECURITY) Take the guesswork out of security administration. See the exact menus and pages assigned to Users, Roles, and Permission Lists.

Presented at Quest Experience Week (QXW) - PeopleSoft Day

2020 introduced a myriad of risks to PeopleSoft data, largely from remote and mobile access requirements stemming from COVID-19. With 2021 approaching, organizations must shift their focus from short-term risk mitigation to long-term risk management. After all, phishing, configuration exploits, and a host of other attack vectors are only becoming more sophisticated with each passing day. Join the PeopleSoft security experts at Appsian as they walk through the top risks to your data in 2021, and how to efficiently implement a long-term risk management strategy that is designed to scale alongside the needs of your business – and alongside the sophistication of various attack vectors!