This work program provides the general steps of a database administration review audit. These steps focus on the areas of general security, access, database availability, backup and recovery, development and integrity, and database host operating system security.
General security steps review general database controls, controls within database tools, segregation of duties, operation efficiency, and patch management. Login steps review password controls. Access steps review security administration, privileges and violation monitoring, and sensitive roles. Database availability, backup, and recovery steps review backup process and procedures, readability and restorability.