× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. April 2008

Re: PCI "Read Access"

I think auditing on program access would show the program being used with
files other than your production data. This could point a finger at
unauthorized transactions that don't show up in your audited data.

And don't expect the auditor to be concerned with practical things like
performance. That would just become a cost of doing business.


Steve

Steven Morrison
Fidelity Express





Steven Martinson <smart-consultant@xxxxxxxxxxxxx>
Sent by: midrange-l-bounces@xxxxxxxxxxxx
04/16/2008 02:54 PM
Please respond to
Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>


To
Midrange List <midrange-l@xxxxxxxxxxxx>
cc

Subject
PCI "Read Access"






Can anyone in this audience surmise how having *ALL OBJAUD on *PGM objects
would buy an organization anything with regard to PCI critical object
access monitoring? I say that if you have *ALL on the critical *FILE
objects, the audit journal is already going to record Job Name, Job User,
Job Number, Program Name, User Profile, Entry Type, etc., etc., and all
that.

I would think (without testing it, so far) that have *ALL on heavily used
programs in a fairly large organization would pound the audit journal
unnecessarily.

Any and all input appreciated!

Best regards,



Steven W. Martinson, CISA, CISM, CISSP
Security Consultant
Cypress, Texas



Smart-Consultant@xxxxxxxxxxxxx
Mobile: 713.277.5845
Fax: 281.758.2429

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.