You have one or more SQL Servers and you want to assess the security of each. What's a priority? What puts your organization at the greatest risk? What should you attack first?

In this presentation, we'll look at how to do a security risk assessment of SQL Server. We'll cover at the common big ticket items, the ones that could lead to a server breach, data loss, or a system becoming unavailable due to mismanagement. Also, we'll discuss how to assess other items which you may find and how to rank and prioritize them. Armed with this information, you'll be better equipped to provide a to do list to your management with justifications and relative impact for each proposed change.

Speaker(s): K. Brian Kelley is a SQL Server author, columnist, and Microsoft MVP focusing primarily on SQL Server and Windows security. In addition to being a database administrator, he has served as an infrastructure and security architect encompassing solutions with Citrix, virtualization, and Active Directory. Brian is also a Certified Information Systems Auditor (CISA) and has been the head of a financial organization’s computer incident response team. Brian is active in the IT community having spoken at DevConnections, SQL Saturdays, code camps, and user groups. He is also the President of the Midlands PASS Chapter, a Professional Association for SQL Server Chapter located in Columbia, SC.

Topics:
Products: SQL Compliance Manager