mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-06-13 22:54:53 +03:00
mukul975
efca3ec611
Mapped every skill to NIST CSF 2.0 subcategory IDs (GV/ID/PR/DE/RS/RC functions) based on subdomain and content analysis. Restores 11 skills corrupted during prior rebase, re-enriching with ATLAS, D3FEND, NIST AI RMF, and CSF 2.0 fields. All 754 skills now carry structured mappings for all 5 security frameworks: - MITRE ATT&CK (in tags) - MITRE ATLAS v5.5 (atlas_techniques) - MITRE D3FEND v1.3 (d3fend_techniques) - NIST AI RMF 1.0 (nist_ai_rmf) - NIST CSF 2.0 (nist_csf)
66 lines
2.3 KiB
Markdown
66 lines
2.3 KiB
Markdown
---
|
|
name: implementing-pam-for-database-access
|
|
description: Deploy privileged access management for database systems including Oracle, SQL Server, PostgreSQL, and MySQL.
|
|
Covers session proxy configuration, credential vaulting, query auditing, dynamic credentia
|
|
domain: cybersecurity
|
|
subdomain: identity-access-management
|
|
tags:
|
|
- iam
|
|
- identity
|
|
- access-control
|
|
- privileged-access
|
|
- pam
|
|
- database
|
|
- dba
|
|
version: '1.0'
|
|
author: mahipal
|
|
license: Apache-2.0
|
|
nist_csf:
|
|
- PR.AA-01
|
|
- PR.AA-02
|
|
- PR.AA-05
|
|
- PR.AA-06
|
|
---
|
|
# Implementing PAM for Database Access
|
|
|
|
## Overview
|
|
Deploy privileged access management for database systems including Oracle, SQL Server, PostgreSQL, and MySQL. Covers session proxy configuration, credential vaulting, query auditing, dynamic credential generation, and least-privilege database roles.
|
|
|
|
|
|
## When to Use
|
|
|
|
- When deploying or configuring implementing pam for database access capabilities in your environment
|
|
- When establishing security controls aligned to compliance requirements
|
|
- When building or improving security architecture for this domain
|
|
- When conducting security assessments that require this implementation
|
|
|
|
## Prerequisites
|
|
|
|
- Familiarity with identity access management concepts and tools
|
|
- Access to a test or lab environment for safe execution
|
|
- Python 3.8+ with required dependencies installed
|
|
- Appropriate authorization for any testing activities
|
|
|
|
## Objectives
|
|
- Implement comprehensive implementing pam for database access capability
|
|
- Establish automated discovery and monitoring processes
|
|
- Integrate with enterprise IAM and security tools
|
|
- Generate compliance-ready documentation and reports
|
|
- Align with NIST 800-53 access control requirements
|
|
|
|
## Security Controls
|
|
| Control | NIST 800-53 | Description |
|
|
|---------|-------------|-------------|
|
|
| Account Management | AC-2 | Lifecycle management |
|
|
| Access Enforcement | AC-3 | Policy-based access control |
|
|
| Least Privilege | AC-6 | Minimum necessary permissions |
|
|
| Audit Logging | AU-3 | Authentication and access events |
|
|
| Identification | IA-2 | User and service identification |
|
|
|
|
## Verification
|
|
- [ ] Implementation tested in non-production environment
|
|
- [ ] Security policies configured and enforced
|
|
- [ ] Audit logging enabled and forwarding to SIEM
|
|
- [ ] Documentation and runbooks complete
|
|
- [ ] Compliance evidence generated
|