Imperva Cyber Community

communities_1.jpg
 View Only
  • 1.  Discovery & Classification

    Posted 03-08-2022 08:22
    My DBAs tell me which databases they want monitored in SecureSphere so I haven't been doing Discovery Scans. Am I missing out on anything beneficial by not doing this? Are running scans primarily most beneficial when you are initially setting up the environment?
    #DatabaseActivityMonitoring

    ------------------------------
    Melinda
    ------------------------------


  • 2.  RE: Discovery & Classification

    Posted 03-08-2022 10:52
    Hi,

    You can run D&C anytime you want. Please remember is should be a cyclic process because your application and databases are changed.
    The most important in the D&C process is the classification of sensitive data stored on DB.
    As a result, you can create policies only for monitoring classified/sensitive data and not collect everything.
    This will allow fewer logs to be collected and help you create proper reports in the possibility of an inspection.

    ------------------------------
    Karol Gruszczynski
    IT SECURITY EXPERT
    Trafford IT
    Warsaw
    ------------------------------



  • 3.  RE: Discovery & Classification

    Posted 03-08-2022 10:58

    Thanks so much for the thorough explanation, Karol.