Security Compliance Assessment for Postgres

Defend against data breaches by identifying and remediating security exposures of your database servers.

Objective

A multi-dimensional security review will provide you with guidance on best practice solutions to secure your Postgres environment. After reviewing your system and documenting any vulnerabilities, we’ll give you remediation recommendations for each finding. 

Engagement Approach

 

Initiation

  • Conduct project kickoff to review service and share prerequisites
  • Provide a predefined task plan to share dates, duration, and deliverables for the service engagement
 

What EDB Will Do

Scan through Security Policy extracts that apply to the Postgres proposition:

  • Describe possible issues
  • Describe mitigations

Examine the following areas of potential security vulnerabilities:

  • Operating system security
  • Encryption strategy: client-server communication, data encryption, data-at-rest
  • Role usage and management
  • Database auditing implementation and best practices
  • Multi-tenant architecture (if applicable)
  • Row level security/virtual private database policies and recommendations
  • Protection against SQL injection attacks
 

Deliverables

  • Documented findings, recommended best practices, and remediation approaches
  • Recommended design solution