This commissioned Forrester Consulting case study describes how a F500 company:

Simplified database monitoring for SOX without performance impact or database changes.

Reduced DBA effort with automated reporting and an appliance-based solution (self-contained storage, preconfigured applications, SOX reports, embedded DBMS, etc.).

Captures all activities (DDL, DML, DCL, failed logins, bind values, local access, etc.).

Created a single set of audit policies and audit repository for all platforms (Oracle, SQL Server, IBM DB2) accessed via Siebel, SAP and 22 other financial systems.

Provides real-time security for unauthorized changes including data updates.

Delivered 239% ROI and 5.9 months payback compared to homegrown scripts using native logging/auditing.

(less)

Authored by database security expert, IBM Gold Consultant, and Guardium CTO Ron Ben-Natan, Ph.D., Implementing Database Security and Auditing (Elsevier Press, 2005) is the definitive guide for DBAs, IT security professionals, and auditors. CHAPTER 12, AUDITING CATEGORIES: Learn which audit trails to implement in order to address common compliance requirements, including audit trails for: Database logins and logouts, Client information, Usage outside normal hours, Database errors, Changes to privileges and other security attributes…and many others. (less)