Systems and databases audit

Regulation about internal control (Sarbanes-Oxley, HIPAA, BASEL II, C-198, PCI, 21-CFR …) hardens and makes penally responsible the managers and the administrators of the quoted in the Stock Exchange companies and the financial firms, if they do not implement the means to secure and to audit their information system. The responsibility of the IT management can also be involved by delegation.

Quick-EDD/JRN provides you the solutions to answer those obligations.

  SYSTEMS AUDIT
 
The System Audit module meets all your audit requirements in terms of security, connection attempts, configuring system values, libraries and objects:
 

Monitor sensitive profiles (remote maintenance, service providers)
  Audit actions carried out on confidential spool files, etc
 
Interventions on profiles, system values, network attributes, authorization on sensitive objects
 
Attempts to open a session or access unauthorized resources
  Monitor activity outside office hours
 
Integrity check on audit parameters
 
Monitor control transfers to production
  Monitor access to sensitive objects (files, menus options)
  DATABASE AUDIT
 
The Database Audit module provides in depth, clearly detailed reports regarding modifications made to any database file anywhere on your system:
  Changes to authorization files
 
Changes to confidential and name specific data
  Abnormal changes to credit limits
  Activity directed to dormant bank accounts
 
Interventions on sensitive fields (Bank account number, Credit cards, Account limits)
 
Operations made outside of an application: i.e., DFU, SQL, Client Access upload, access through possibly dangerous programs
  Activity outside office hours
 
Remote changes on applications

 

Quick-EDD/JRN allows you to reach the COBIT objectives about security controls,
data management and production environments monitoring.