Presence on the Web and Internet are critical components of just about any business, large or small. However, having a website presence can increase the security risks and threats to which an organization is subject.
What roles do security analysts play in preventing Web server, application, and database attacks?
How do these roles differ in different types of organizations?
the role of the security analyst while preventing web
server,appliaction and database attacks:
1)in perpestive of webserver and application: he
will monitor the logs and he may also use log monitoring tools
.here he will check what are the ip's accessing we pages. and also
check whether there are any intruders.
the main thing he will check about:
i)SQL injection
ii)brute drive protection
iii)malware
iv)cross website scripting
v)denial of service
vi)buffer overflow
in perpesctive of database :
here analyst will check in the follwoing areas
i)Excessive previlages
ii)database injections
iii)malware
iv)data loss
v)un managed sensitive data
these roles may differ in different organizations
=> some organizations may have as security analayst ,and some of the organization may categorize them according to their requirement .for example ,some organization may have security analyst for only webserver and applications, and database security analyst
=>if the organization in dealing big in databases related issues the he may categorize them according to this requriement . so this type of organization requires database security analyst
=>if an organization is dealing with apllication related issues and database too then they need them both..
Get Answers For Free
Most questions answered within 1 hours.