Designing Practical Audit Trails for Oracle Training Course [ 1 Day ]
Course Description
This course is a one day class run on your site or at a public venue or can be arranged on-line that teaches the delegates about the issues related to designing, enabling and configuring practical and simple audit trails in your databases.
The focus is on free and practical. The class is structured to take the delegate from first principals, what is available with the database and what is easy and simple to implement and manage and report on BUT most importantly what can be done with the free solutions available with the database. Most people are not utilising the free facilities to gain a better understanding of how their databases may be abused both by staff and also potential attackers.
The course also includes a demonstration at the end of a simple practical audit design that works. We include the free tools and scripts written in PL/SQL and SQL so that you can go away and implement something useful in your own database.
Course Goals
The aim of the course is for the students to get an appreciation of how to use the core audit features to best effect in their own database using simple but structured ideas.
Course Duration
The class is One Day 9am to 5pm and is class room based and instructor lead with demonstrations.
Course Location
The course can be held at your site or students can attend a public class. See the main Oracle Security training page for any public classes that are scheduled at present. Details of on-site requirements and other facilities are provided during the booking process.
Course Pre-Requisites
The delegates must have a good working knowledge of PL/SQL and SQL ideally as a Developer or DBA to appreciate the content.
The class is intended for DBAs and developers who can write PL/SQL and is of an intermediate level but students can benefit from the overall message of the class and use the free scripts even if they are not experts themselves.
Course Material
The student will receive a URL to download a zip file that includes:
- The course notes as PDF files
- Free PL/SQL tools and scripts
- All of the examples used as SQL and PL/SQL scripts
Course Outline
The course outline is as follows
- Introduction
- What do we want to achieve, audit goals
- Reactive audit, proactive audit
- Design process
- Based on "I want to know"
- Regulatory reasons to include audit data
- Local audit, remote storage
- Technical solutions, Core audit, triggers, functions and Correlation
- Layered audit, Alerts and escalation
- Sizing, performance and storage
- What to audit
- DBA activities and Third party activities, Breakglass, End users
- Schema and application maintenance
- Escalation of privilege and audit of data access
- Audit security
- Protect the audit trails
- Local, database, file based, remote, syslog
- Centralising logging and audit
- Auditing audit
- Protect the audit trails
- Verify audit and check summing
- Reporting
- Develop reporting plan and create simple reports with SQL
- Management
- Purge and archive and manage size and users
- Simple firewalls
- Implement a simple firewall using triggers and other functions
- Intrusion detection
- Intrusion prevention
- DAM and activity monitoring
- Implementation
- Sample implementation
- Conclusions
- Focus on fast and simple and free
Course Instructor
The course is delivered by Pete Finnigan, a principal consultant with years of real world experience in auditing and securing and hardening customers Oracle databases. Pete is also well known for writing and presenting extensively in the area of Oracle security including the SANS Step-by-Step guidebook. The course includes the slides and delegate notes and is delivered on customers sites.
Course Price Structure
This course is offered at a fixed base price with an additional small fee per student. Ask us for more details by emailing info@petefinnigan.com.
Download a PDF Flyer
Download a 2 page pdf flyer that describes the course details. 2 Page flyer - Designing Practical Audit Trails for Oracle Course Flyer