Advisory Note: Database Governance - 70102

Report Details

Database Governance is the set of policies, procedures, practices and organizational structures ensuring the execution of database related activities in an organization according to defined strategies and controls. Database Governance is required to enforce Information Security for structured data held in databases.

Within Enterprise GRC, Database Governance is an element of IT GRC. Enterprise GRC starts with Corporate Governance, e.g. the general, enterprise-wide policies and the focus on strategic risks. Business GRC with its focus on operational risks is the second element (or layer). However, automated controls for many of the operational and even strategic risks require IT – that’s where Database Governance comes into play as one of the major elements of IT GRC.

KuppingerCole strongly recommends defining a Database Governance approach in the context of enterprise-wide GRC initiatives, based on the same approaches as for policies, controls, processes, and organization. If Database Governance is undertaken without first putting an enterprise-wide GRC approach in place we suggest at least investing some work in defining the basic elements, for instance what a book of rules should look like.

Database Governance is first and foremost an organizational approach and not a technical topic. Technology can assist in implementing and executing controls, but it needs to follow the organizational concept. In other words: Without a book of rules, defined controls and processes, and without suitable organizational structures technology is a back-burner issue. Only when proper controls are in place is it time to worry about technical solutions.

You can get access to this document for free, if you register for KuppingerCole Select access now.

Date Title Price
Mar 15, 2011

Advisory Note: Database Governance - 70102

Database Governance is the set of policies, procedures, practices and organizational structures ensuring the execution of database related activities in an organization according to defined strategies and controls. Database Governance is required to enforce Information Security for…

€95.00
excl. VAT
Get Access
Mastercard Visa PayPal INVOICE

Discover KuppingerCole

KuppingerCole Select

Register now for KuppingerCole Select and get your free 30-day access to a great selection of KuppingerCole research materials and to live trainings.

Blog

Blog

Future-Proofing Your Cybersecurity Strategy

It’s May 25 today, and the world hasn’t ended. Looking back at the last several weeks before the GDPR deadline, I have an oddly familiar feeling. It seems that many companies have treated it as another “Year 2000 disaster” - a largely imaginary but highly publicized issue [...]

Latest Insights

Hot Topics

Spotlight

Compliance, Risk & Security Learn more

Compliance, Risk & Security

Whether public, private or hybrid clouds, whether SaaS, IaaS or PaaS: All these cloud computing approaches are differing in particular with respect to the question, whether the processing sites/parties can be determined or not, and whether the user has influence on the geographical, qualitative and infrastructural conditions of the services provided. Therefore, it is difficult to meet all compliance requirements, particularly within the fields of data protection and data security. The decisive factors are transparency, controllability and influenceability of the service provider and his [...]

Become a Client

Learn more about becoming a Client

Contact Us

Call Us

+49 211 2370770
Mo - Fr 8:00 - 17:00