On May 2, 2017, I’ll be giving two talks at the SSWUG 2017 Virtual Conference. Here are the talks:
Building a Home Grown Auditing Infrastructure for SQL Server
Not everyone has the budget for 3rd party tools to provide audit / security information on their SQL Server environment. If you are in this situation, what do you need to build? What information should you be capturing in order to know what’s going on for each of your SQL Servers? How do you gather that information and store it? How do you report on it? In this presentation we’ll answer each of those questions, presenting options you can build yourself. We’ll look for the most efficient solutions because if you don’t have budget, you likely don’t have allocated time except for what you can carve out amidst your other responsibilities. Knowledge of T-SQL and Powershell is expected.
Performing a Risk Assessment for Your SQL Server Environment
You have SQL Servers you need to secure. But where do you start? In this presentation, we’ll look at how to do a security risk assessment on SQL Server. First we’ll start off with how to present your findings to management. What information do you need to give them? What will sway them to your side? We’ll then switch to the technical side and cover what to look at first: the issues that could lead to a server breach, data loss, and/or a system becoming unavailable due to mismanagement. Finally, we’ll discuss how to assess other problems you may find and how to rank and prioritize them.
You can register at the above link.
