当前位置:首页 > 报告详情

1353年 - 南方公司:Guardium 管理和自动化.pdf

上传人: 竿*** 编号:982887 2025-11-29 19页 1.03MB

1、Guardium administration and automationSession 1353Who we areChuck KellumSouthern CompanyGuardium Security EngineerMatt McClendonSouthern CompanySecurity and Compliance SpecialistJosh KlahnIBMGuardium Tech SalesTrue or FalseGuardium Administration is a time-consuming,arduous,nerve-wracking,hair-pulli

2、ng,makes you want to quit often,has its own type of Post Traumatic Stress Disorder(PTSD)assignment.Once upon a time at Southern CompanyA story of Guardium automationInspirational InfluencesThe genesis of Steve at SouthernBeginnings with SteveBeginnings with SteveQuick password fetching-Uses keyring

3、for the secrets-Has some CLI commands-Adds an as an option-Copies to the clipboard-Simply paste with CTRL VGUI shortcuts labeled by appliance typeNote:Uses python webbrowser library&tkinter-Green for Central Managers-Blue for Aggregators-Orange for Kafka nodes-Red for common tabsCurrent pains were a

4、ddressing through automationDaily Health ChecksHealth trend analysis through writing results to MongoDBPython threading(multiple cores)to improve performance of code Adding more GuardAPI,CLI functionsTest Oracle service namesTNSPING to auto-build datasource definitionsTest group tuple accuracy to se

5、e if the DB server is still active(via nslookup)Patching-convenience button for turning on file server GUIWatcher scripts for long processesPurges,Archives checks for completion every 30 secondsDemo scenario:PCI compensating controls“We do no want Guardium to log card holder data.We want to ensure L

6、og Full Details is NOT used in our policy rules.”SELECT*FROM accounts_tableWHERE cc_numbers=1234 5678 1234 5678SELECT*FROM accounts_tableWHERE cc_numbers=*Rule action:Log Full DetailsRule action:Log Masked DetailsGuardium policy as codeDemo

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据报告的内容,全文主要内容概括如下: - **Guardium自动化**:文章讲述了在Southern Company使用Guardium进行自动化管理的经验,强调了自动化在提高效率、减少手动操作和降低错误率方面的作用。 - **自动化工具“Steve”**:介绍了一个名为“Steve”的自动化工具,它通过Python和tkinter实现,用于简化Guardium的管理任务,如密码获取、GUI快捷操作等。 - **自动化解决痛点**:列举了通过自动化解决的具体问题,包括日常健康检查、测试服务名称、数据源定义、补丁管理和长时间过程监控等。 - **PCI合规性示例**:展示了如何通过Guardium政策代码实现PCI合规性,例如避免记录持卡人数据。 - **Guardium政策代码**:介绍了Guardium政策代码的使用,通过代码管理策略变更,并通过CI/CD工具执行。 - **示例和资源**:提供了GitHub链接供参考,并讨论了使用Copilot和ModelContext Protocol进行交互的例子。 - **最终建议**:鼓励阅读“Must-Gathers”文档,并提及了异常检测和配置监控等研究方向。
"自动化Guardium,告别繁琐?" "Guardium政策代码化,效率提升?" "Guardium自动化,你的最佳助手?"
客服
商务合作
小程序
服务号
折叠