Secure Business Intelligence Development

In order to build a secure business intelligence system, business intelligence developers need to be more security conscious as they go about creating data models, cubes, and reports. eWeek has an article titled 5 Steps to Secure Development, which outlines how to make security an integral part of the enterprise software development process. These lessons are equally applicable to Business Intelligence projects.

1. Definition - Start thinking about security from the beginning of the project and build it into the project plan. Most BI vendors will have a security framework for preventing unintended access to data, but how well does it match up with existing business processes? Will the BI system will leverage the existing security infrastructure? Is there any custom coding required?
2. Education - According to the article, there is lack of security training across the IT industry. Be sure that the team knows how to roll out secure applications, and how to establish appropriate responses to security breaches. Shutting everything down is effective, but such drastic actions will quickly undermine the confidence of end users.
3. Equipment - An emphasis on security can risk slowing down a project, but having the right software tools can mitigate this risk. Look for analyzers and automated testing tools that have security testing features.
4. Test, test, test - Testing must be expanded beyond functionality, performance and data validation. Security testing means studying potential failures to see they can be exploited. How a component or the systems fails is as important as preventing it from failing in the first place.
5. Monitoring - As part of the roll-out, alerts and processes must be put in place to monitor for failures and suspicious activity. For example, being alerted to huge spikes in activity and abnormal amounts of data being downloaded by a single user or in a single location.

Most business intelligence vendors take security seriously, with published guidelines for implementing security and details about how their software handles various threats. Here are two examples from Cognos and Microsoft. However, despite these convincing assurances, the responsibility for a secure system ultimately lies with the project team.

Related Posts:

Agile Development

Free Database Roundup

Comments

Leave a Reply

Name

Email Address

Website

• Troubleshooting BI Software

  Download the latest white paper from Clearview Informatics: Seven steps for troubleshooting business intelligence software.

• Clearview Informatics

  Visit Clearview Informatics to learn about how we can help your organization make the most out of your data.

• Translate this page

  Translate This Page Arabic Chinese Simplified Chinese Traditional Dutch French German Greek Italian Japanese Korean Portuguese Russian Spanish

• Recent Posts

  • You have questions, BI can give you answers
  • My RSS Feed as an Image
  • Introducing Yellowfin Business Intelligence
  • links for 2008-06-28
  • Using SQL Server Express as the Cognos 8 Content Store

• Categories

  • Analytics (1)
  • BI (30)
  • Cognos (3)
  • CRM (1)
  • Databases (3)
  • DW (3)
  • ETL (1)
  • Google (6)
  • Links (1)
  • Microsoft (1)
  • Open Source (8)
  • Project Management (10)
  • Ruby (1)
  • Security (2)
  • SQL Server (1)
  • Uncategorized (2)
  • Virtualization (1)
  • Web 2.0 (8)
  • Windows (4)
  • Yellowfin (1)

• Archives

  • July 2008 (3)
  • June 2008 (8)
  • May 2008 (14)
  • April 2008 (14)
  • March 2008 (13)
  • February 2008 (4)

• Subscribe by email

  Subscribe to Infotech Reflections by Email
These icons link to social bookmarking sites where readers can share and discover new web pages.
• 
• 
• 
• 
• 
• 
• 
-->