JD Edwards: How to Protect Your Data

Thursday, November 1, 2018 – 2:00pm – 3:00pm ET

security top picred register button 200

Your company is your data. Without data, you have no company. When organizations think about protecting their data, they think about backups. What most businesses don’t realize is that taking a backup isn’t enough to guarantee your business will survive a disaster.

Consider this scenario: For some unknown reason, a subset of critical data got deleted and your business grinds to a halt. You pick up the phone to call your DBA, but they’re on vacation. The person who answered the phone does desktop support and they have no idea where the disaster recovery plan is nor could they execute it if it did exist. Your next call is to the database vendor’s support line and they determine the data loss was due to an unpatched vulnerability.

You soon learn that someone hacked your database from inside your firewall and removed one of the physical data files directly from the hard drives. Unfortunately you didn’t have data encryption enabled, so the hacker will be able to read the raw data using operating system tools. There’s little you can do to change the past, so you start working on the solution: Patching.

You ask the support line why you didn’t know about the patch, it came out a year ago! They tell you that your database version is too old. It’s not supported and patching isn’t being done for it any more. That’s why you never got a notice about the vulnerability. Oh and by the way, since your database isn’t supported any more they only way to fix this problem is to do a full upgrade. Since you’re so far out of support, your licenses don’t convert and you have to buy it all from scratch.

That may have sounded like an unrealistic scenario, but I assure you that it’s based on an actual event. Even if all of those things didn’t happen to you at the same time, just having one of those coming down on you is going to be bad enough. Are you protected against each of these scenarios?