Next steps
Request a demo
Contact me
Sales
+1 (781) 935-2867
OR +44 (0)2076 499959
Download Now
Regulatory Compliance
Sentrigo’s Hedgehog™ Makes Regulatory Compliance Easier and Faster
Hedgehog has quickly become the new standard for database security by defending against attacks from company insiders and hackers alike. Hedgehog also allows rapid deployment of best practices for database compliance with PCI DSS, Sarbanes-Oxley (SOX), HIPAA, GLBA and SAS 70, and other mandated regulations.
Hedgehog Enterprise™ database security solution promotes the due diligence required of enterprises to audit, disclose and report in accordance with today's comprehensive regulatory environments.
Standards and Regulations
Regulations are becoming more and more comprehensive and more specific when it comes to confidential information, financial accountability and data breaches. Organizations of every size need a way to ensure that IT functions are built to sustain and align with the organization’s strategies and objectives.
IT Governance
IT governance planning ensures internal controls are in place to meet the core guidelines of regulatory compliance. The level of sophistication you apply to IT governance might vary, and Hedgehog scales to fit your business requirements.
When it comes to applying security patches originated by the RDBMS vendor we know that while regular patching is part of meeting IT standards and internal policies, companies are leaving databases un-patched for months or even years. This leaves critical databases vulnerable to attacks, resulting in data theft, privacy breaches and non-compliance.
Virtual patching is the perfect way to protect the database against exploits without actually patching the DBMS kernel. This creates a security layer around the database that, unlike vendor patching, does not require downtime or application testing, ending patching headaches faced by so many DBAs. Deploying Hedgehog vPatch as a stop-gap until it is possible to install the vendor patches, allows organizations meet their internal IT standards, and successfully pass internal as well as external database IT audits.
Application End-User Accountability
Auditors want to know "who did what" on the database - a database audit - while corporate security policy often requires limiting access to data based on user identity. More often than not, however, users connect to the database via applications that use pooled connections, making it impossible to figure out which user performed which action on the database, let alone enforce security policy based on user identity.
Hedgehog IDentifier™ is installed on application servers to pass application user ID information through the database connection in n-tier environments where pooled connections are used. It supports .NET in addition to Java EE application servers.
Tools that speed up and simplify legal and regulatory compliance
Hedgehog can quickly be installed to provide comprehensive database activity monitoring, database auditing and breach protection. Customers using Hedgehog are able to manage policies and alerts seamlessly across Microsoft, Oracle and Sybase installations, using a unified user interface.
Hedgehog Enterprise comes with a comprehensive set of database compliance templates for various regulations. In conjunction with Hedgehog IDentifier, application end-user accountability can be delivered supporting a database audit. Hedgehog vPatch also allows IT departments to comply with internal standards regarding database patching. Click here to review the systems requirements.