SOURCE: Idera

March 11, 2008 08:00 ET

Idera Announces SQLsecure Version 2.0

Industry-Leading SQL Server Security Auditing Solution Now Provides Built-In PCI DSS, NIST SRR, NSA, and CIS Compliance Measurement

ORLANDO, FL and HOUSTON, TX--(Marketwire - March 11, 2008) - InfoSec World Conference - Idera, a leading provider of management and administration solutions for Microsoft SQL Server databases, today announced version 2.0 of SQLsecure, an advanced SQL Server security auditing solution that identifies and analyzes database security risks. SQLsecure 2.0 extends its comprehensive set of analyses to include Windows operating system components and adds built-in policies to measure compliance against data security regulations such as Sarbanes-Oxley, PCI DSS, GLBA, HIPPA, BASEL II and The Patriot Act.

As many companies are discovering, their biggest data security threat is not external hackers, but internal users. According to the 2007 CSI Computer Crime and Security Survey, 65% of companies who experienced a security incident reported losses due to insider activity. With the complex interaction of security settings and user access controls within SQL Server databases, the Windows operating system, file systems, and more, properly configuring and managing SQL Server security can be a daunting task. SQLsecure automates this process by quickly and accurately analyzing security settings across these components to provide a comprehensive view of the state of SQL Server security, enterprise wide. SQLsecure also provides recommendations for addressing security risks and fixing flaws in security access control settings, saving hundreds of hours of time, dramatically reducing exposure and ensuring compliance with internal and external audit requirements.

"Working in a heavily regulated industry, I am frequently asked by auditors to report on who has what specific permissions on a SQL Server object," said Bobby Fishbein, Database Administrator, Mitsui Sumitomo Marine Management. "Getting this information and keeping it up-to-date is a time-consuming, labor-intensive activity. SQLsecure enables me to accomplish in mere seconds what would have previously taken considerable time and resources."

"SQLsecure is an essential tool in preparing for an audit," said John Dunleavy, DBA, Capmark. "The ability to link in to Active Directory and see all the effective permissions for any given group is indispensable. Also, alerts from SQLsecure keep me on top of things at all times. With SQLsecure, we are more confident that our databases are secure and that we can meet audit requirements."

New features in SQLsecure 2.0 include:

--  Policy-based Security Analysis - checks database security against more
    than 60 security standards including built-in policies from NSA, DISA, CIS,
    and others.
--  Alerts - Introduces alerting capabilities which can be customized to
    notify the DBA if any security parameters fail to meet the policy standard.
--  Database Roles Permission Explorer - enables analysis of assigned and
    effective permissions by database role, including sub-roles and role
    members.
--  Operating System Security Analysis - Assesses the operating system,
    SQL Server files, directories, and registry settings to identify issues
    that could compromise SQL Server security.
    

Pricing and Availability

SQLsecure version 2.0 will be available for download in late March 2008 and is priced at US $995 per SQL Server instance. For more information or to download a free 14-day evaluation copy of SQLsecure version 2.0, please visit: www.idera.com/products/sqlsecure.

SQLsecure version 2.0 will also be shown at the InfoSec World Conference & Expo in Orlando, Florida. Interested parties may visit Booth #158 to learn more and see a demo of SQLsecure version 2.0.

About Idera

Idera delivers a new generation of tools for proactively managing, administering, and securing the world's fastest growing database management system -- Microsoft SQL Server. Battle-proven and engineered for distributed enterprises, Idera's solutions help companies ensure database availability while also reducing tedious administrative tasks and expense. Idera's solutions include: Security and Compliance Management, Performance and Availability Management, Backup and Recovery, and Change and Configuration Management. Headquartered in Houston, Texas, Idera's products are sold and supported directly and via authorized resellers and distributors around the globe. To learn more, please contact Idera at +1-713.523.4433 or visit www.idera.com.

Idera -- a division of BBS Technologies, Inc. SQLsecure, Idera and the Idera logo are trademarks or registered trademarks of BBS Technologies, Inc. or its subsidiaries in the United States and other jurisdictions. All other company and product names may be trademarks or registered trademarks of their respective companies.

Contact Information