2ndQuadrant is now part of EDB

Bringing together some of the world's top PostgreSQL experts.

2ndQuadrant | PostgreSQL
Mission Critical Databases
  • Contact us
  • EN
    • FR
    • IT
    • ES
    • DE
    • PT
  • Support & Services
  • Products
  • Downloads
    • Installers
      • Postgres Installer
      • 2UDA – Unified Data Analytics
    • Whitepapers
      • Business Case for PostgreSQL Support
      • Security Best Practices for PostgreSQL
    • Case Studies
      • Performance Tuning
        • BenchPrep
        • tastyworks
      • Distributed Clusters
        • ClickUp
        • European Space Agency (ESA)
        • Telefónica del Sur
        • Animal Logic
      • Database Administration
        • Agilis Systems
      • Professional Training
        • Met Office
        • London & Partners
      • Database Upgrades
        • Alfred Wegener Institute (AWI)
      • Database Migration
        • International Game Technology (IGT)
        • Healthcare Software Solutions (HSS)
        • Navionics
  • Postgres Learning Center
    • Webinars
      • Upcoming Webinars
      • Webinar Library
    • Whitepapers
      • Business Case for PostgreSQL Support
      • Security Best Practices for PostgreSQL
    • Blog
    • Training
      • Course Catalogue
    • Case Studies
      • Performance Tuning
        • BenchPrep
        • tastyworks
      • Distributed Clusters
        • ClickUp
        • European Space Agency (ESA)
        • Telefónica del Sur
        • Animal Logic
      • Database Administration
        • Agilis Systems
      • Professional Training
        • Met Office
        • London & Partners
      • Database Upgrades
        • Alfred Wegener Institute (AWI)
      • Database Migration
        • International Game Technology (IGT)
        • Healthcare Software Solutions (HSS)
        • Navionics
    • Books
      • PostgreSQL 11 Administration Cookbook
      • PostgreSQL 10 Administration Cookbook
      • PostgreSQL High Availability Cookbook – 2nd Edition
      • PostgreSQL 9 Administration Cookbook – 3rd Edition
      • PostgreSQL Server Programming Cookbook – 2nd Edition
      • PostgreSQL 9 Cookbook – Chinese Edition
    • Videos
    • Events
    • PostgreSQL
      • PostgreSQL – History
      • Who uses PostgreSQL?
      • PostgreSQL FAQ
      • PostgreSQL vs MySQL
      • The Business Case for PostgreSQL
      • Security Information
      • Documentation
  • About Us
    • About 2ndQuadrant
    • 2ndQuadrant’s Passion for PostgreSQL
    • News
    • Careers
    • Team Profile
  • Blog
  • Menu Menu
You are here: Home1 / Blog2 / 2ndQuadrant3 / Don’t be hard-headed… Harden your PostgreSQL database to ensure...
Britt Cole

Don’t be hard-headed… Harden your PostgreSQL database to ensure security

March 28, 2018/0 Comments/in 2ndQuadrant, Britt's Marketing /by Britt Cole

When it comes to database security, the risk is definitely not worth the reward. Being hard-headed about database security procedures can not only disrupt your business and cost you millions, but it can make irreparable damage to your customer relationship and public identity. How important is the security of your data to your organization

Nearly 90% of respondents in the 2017 Nexia International Global Cybersecurity Report  stated that cybersecurity is a top or moderate concern for their organization, yet only 53% reported having a formal cybersecurity plan in place. Even more alarming is that 20% of respondents that are required by law to have a formal Cybersecurity Plan do not actually have such a program in place [1].

It’s obvious that the need for cybersecurity plans and procedures is acknowledged by most businesses, yet only few actually allot budget to action such plans. Apart from the legal ramifications of an insufficient security strategy, the negative impact that a breach can have on a business can be extremely costly.  According to Microsoft, a data breach will cost the average company about $3.8 million [2], not to mention the negative impact it can have on the business in the years following if such a breach becomes public knowledge.

Gartner predicts that there will be 21 billion connected devices in the world by 2020 [3] – which means increased surface area vulnerable to cyber attack. Not only is personally identifiable information at risk, but stricter regulations (GDPR, anyone?) are now requiring more stringent data security measures for compliance.

Determining breach points in your database is the first step towards improving the security of your infrastructure to avoid being impacted by vulnerabilities that can be prevented. An investment in the proper database security is the insurance you cannot afford (literally) not to have.

Evaluating the security of your database can ensure SLAs are met, classify vulnerabilities, validate the security of backups and backup channels, identify outdated software and libraries, and optimize logging & auditing to ensure logging/auditing configurations are capturing the necessary information to prevent a breach or identify where/when a breach happened if one did occur.

New types of malware are being developed every day; so it would be reckless not to have preventative measures in place for known vulnerabilities at minimum. The best defense is a good offense – don’t wait until your business is disrupted by an attack.

Take preventative measures to identify vulnerabilities and harden your database against attack. Something as simple as a Database Security Audit could help give you an idea of where to make improvements.

[1] http://nexia.com/assets/files/Global_Cybersecurity_Report_2017.pdf
[2] http://thebestvpn.com/cyber-security-statistics-2018
[3] http://www.gartner.com/doc/3299317

 

Tags: Database Security, PostgreSQL, security
Share this entry
  • Share on Facebook
  • Share on Twitter
  • Share on WhatsApp
  • Share on LinkedIn
0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Search

Get in touch with us!

Recent Posts

  • Random Data December 3, 2020
  • Webinar: COMMIT Without Fear – The Beauty of CAMO [Follow Up] November 13, 2020
  • Full-text search since PostgreSQL 8.3 November 5, 2020
  • Random numbers November 3, 2020
  • Webinar: Best Practices for Bulk Data Loading in PostgreSQL [Follow Up] November 2, 2020

Featured External Blogs

Tomas Vondra's Blog

Our Bloggers

  • Simon Riggs
  • Alvaro Herrera
  • Andrew Dunstan
  • Craig Ringer
  • Francesco Canovai
  • Gabriele Bartolini
  • Giulio Calacoci
  • Ian Barwick
  • Marco Nenciarini
  • Mark Wong
  • Pavan Deolasee
  • Petr Jelinek
  • Shaun Thomas
  • Tomas Vondra
  • Umair Shahid

PostgreSQL Cloud

2QLovesPG 2UDA 9.6 backup Barman BDR Business Continuity community conference database DBA development devops disaster recovery greenplum Hot Standby JSON JSONB logical replication monitoring OmniDB open source Orange performance PG12 pgbarman pglogical PG Phriday postgres Postgres-BDR postgres-xl PostgreSQL PostgreSQL 9.6 PostgreSQL10 PostgreSQL11 PostgreSQL 11 PostgreSQL 11 New Features postgresql repmgr Recovery replication security sql wal webinar webinars

Support & Services

24/7 Production Support

Developer Support

Remote DBA for PostgreSQL

PostgreSQL Database Monitoring

PostgreSQL Health Check

PostgreSQL Performance Tuning

Database Security Audit

Upgrade PostgreSQL

PostgreSQL Migration Assessment

Migrate from Oracle to PostgreSQL

Products

HA Postgres Clusters

Postgres-BDR®

2ndQPostgres

pglogical

repmgr

Barman

Postgres Cloud Manager

SQL Firewall

Postgres-XL

OmniDB

Postgres Installer

2UDA

Postgres Learning Center

Introducing Postgres

Blog

Webinars

Books

Videos

Training

Case Studies

Events

About Us

About 2ndQuadrant

What does 2ndQuadrant Mean?

News

Careers 

Team Profile

© 2ndQuadrant Ltd. All rights reserved. | Privacy Policy
  • Twitter
  • LinkedIn
  • Facebook
  • Youtube
  • Mail
Near-Zero Downtime Automated Upgrades of PostgreSQL Clusters in Cloud (Part... PGConf APAC 2018 – bigger & better each year
Scroll to top
×