Hi,
You can run D&C anytime you want. Please remember is should be a cyclic process because your application and databases are changed.
The most important in the D&C process is the classification of sensitive data stored on DB.
As a result, you can create policies only for monitoring classified/sensitive data and not collect everything.
This will allow fewer logs to be collected and help you create proper reports in the possibility of an inspection.
------------------------------
Karol Gruszczynski
IT SECURITY EXPERT
Trafford IT
Warsaw
------------------------------
Original Message:
Sent: 03-08-2022 07:53
From: Melinda Wohlfeil
Subject: Discovery & Classification
My DBAs tell me which databases they want monitored in SecureSphere so I haven't been doing Discovery Scans. Am I missing out on anything beneficial by not doing this? Are running scans primarily most beneficial when you are initially setting up the environment?
#DatabaseActivityMonitoring
------------------------------
Melinda
------------------------------