This course is intended for computer auditors and security specialists who need to understand the mechanisms available to secure a SQL Server installation, and how to successfully audit user access and activity following best practices and guidelines. The coverage of SQL Server security is quite in-depth, and the remaining topics focus on the major tools and techniques utilised for auditing.
Course content and delivery is based on SQL Server 2012, however the material covered can be applied to previous releases if required.
Besides excellent coverage of the theory and concepts, time is also devoted to hands on activities to put into practice the topics introduced in each module.
Upon successful completion of this course, students will be able to:
- Understand the fundamental structure and architecture of SQL Server
- Work confidently in SQL Server Management Studio (SSMS)
- Understand the purpose of the system databases
- Understand SQL Server database architecture and objects
- Configure SQL Server security and audit related features
- Manage access to a SQL Server
- Understand and work with server principals and securables
- Understand and work with database principals and securables
- Implement permissions on securables
- Understand encryption options in SQL Server
- Secure code modules with signatures
- Implement Transparent Data Encryption (TDE)
- Understand SQL Server Agent Security
- Utilise DML Triggers for Auditing
- Utilise SQL Server Profiler for Auditing
- Use dedicated SQL Server auditing tools
- Implement Policy Based Management
- Retrieve security and audit related metadata
- Implement best practices for auditing and compliance