Client :

One of the largest government-owned banks of India; listed in the Forbes 2000, with assets worth US$13.45 billion, and around 4,300 branches, worldwide, approached SamaraTech, looking to track database activity from their network. SamaraTech addressed their requirement, with Oracle Audit Vault and Database Firewall tool that eases compliance reporting and alerting. With Oracle Audit Vault and Database Firewall (DAM), auditing and monitoring controls were easily tailored to meet the bank’s security requirements.

Business needs :

As per the compliance requirement client was looking to track Database activity from the network and to meet the requirement it was decided to use Oracle Audit Vault and Database Firewall tool for easy compliance reporting and alerting. Oracle Audit Vault and Database Firewall (DAM) provides a first line of defense for databases and consolidates audit data from databases, operating systems, and directories. A highly accurate SQL grammar-based engine monitors and blocks unauthorized SQL traffic before it reaches the database. Database activity data from the network is combined with detailed audit data for easy compliance reporting and alerting. With Oracle Audit Vault and Database Firewall, auditing and monitoring controls can be easily tailored to meet enterprise security requirements. 

High-level layout of execution plan in chronological sequence : 

  • System Requirement- Study Document  
  • Checked Security and Network Architecture of Applications  
  • Checked Security Controls in Web/Application/DB document:  
  • Prepared Data Flow Diagram:   
  • Compliance of Hardening Baseline Document:  
  • Source Code Review Report:  
  • Application Availability (Disaster Recovery Planning):  
  • Project Roll Out Plan  
  • Installation of Audit Vault Server and Database Firewall (12.2.6) 
  • Configuration of AV Servers in HA mode 
  • Configuration of DF Servers in HA mode 
  • Configuration of Secured Targets and Audit Trail  
  • AV Reports Setup 
  • Backing up AV and DF Server 
  • Failover testing of AV and DF Server 
  • Adding AVDF components in OEM and configure rules for alert notifications 
  • VA/PT of the Application:  
  • Testing Report of UAT / QAT with used Test Cases:  
  • Approval Note of IT strategy  
  • Product Evaluation / ORMC Approval Note  
  • Third Party Vendor Risk Assessment  
  • Onsite Vendor Risk Assessment  
  • Compliance of RBI Advisories   
  • Compliance of IT Examination observed  
  • Updated Inventory ( UAT / Development / Production) 

Business value:

Implementation of Audit Vault and Database Firewall at  Union Bank of India  brought with itself its own set of valued and advantages. Few of the significant ones are listed below 

  • Client was able to achieve compliance quickly with packaged and customizable reports. 
  • Meet both security and compliance requirements with a single deployment.  
  • Lower cost of ownership with highly accurate SQL analysis, out-of-the-box reports, and proactive alerts. 
  • Customer was able to monitor database activities and blocking on the network and consolidates audit data from Oracle, MySQL, Microsoft SQL Server, SAP Sybase, and IBM DB2 databases. 
  • White list, blacklist, and exception list-based enforcement on the network. 
  • UBI was able to collect audit data from systems deployed on-premise and in the cloud.