mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-18 05:29:40 +03:00
Initial commit - 611 cybersecurity skills across all subdomains
This commit is contained in:
@@ -0,0 +1,37 @@
|
||||
---
|
||||
name: None
|
||||
description: Deploy privileged access management for database systems including Oracle, SQL Server, PostgreSQL, and MySQL. Covers session proxy configuration, credential vaulting, query auditing, dynamic credentia
|
||||
domain: cybersecurity
|
||||
subdomain: identity-access-management
|
||||
tags: [iam, identity, access-control, privileged-access, pam, database, dba]
|
||||
version: "1.0"
|
||||
author: mahipal
|
||||
license: MIT
|
||||
---
|
||||
# Implementing PAM for Database Access
|
||||
|
||||
## Overview
|
||||
Deploy privileged access management for database systems including Oracle, SQL Server, PostgreSQL, and MySQL. Covers session proxy configuration, credential vaulting, query auditing, dynamic credential generation, and least-privilege database roles.
|
||||
|
||||
## Objectives
|
||||
- Implement comprehensive implementing pam for database access capability
|
||||
- Establish automated discovery and monitoring processes
|
||||
- Integrate with enterprise IAM and security tools
|
||||
- Generate compliance-ready documentation and reports
|
||||
- Align with NIST 800-53 access control requirements
|
||||
|
||||
## Security Controls
|
||||
| Control | NIST 800-53 | Description |
|
||||
|---------|-------------|-------------|
|
||||
| Account Management | AC-2 | Lifecycle management |
|
||||
| Access Enforcement | AC-3 | Policy-based access control |
|
||||
| Least Privilege | AC-6 | Minimum necessary permissions |
|
||||
| Audit Logging | AU-3 | Authentication and access events |
|
||||
| Identification | IA-2 | User and service identification |
|
||||
|
||||
## Verification
|
||||
- [ ] Implementation tested in non-production environment
|
||||
- [ ] Security policies configured and enforced
|
||||
- [ ] Audit logging enabled and forwarding to SIEM
|
||||
- [ ] Documentation and runbooks complete
|
||||
- [ ] Compliance evidence generated
|
||||
Reference in New Issue
Block a user