Problem solve Get help with specific problems with your technologies, process and projects.

Criteria for determining access to data warehouse

I have to write a procedure for access to our data warehouse. After all management sign offs, I have to use certain criteria to determine whether the request should be fulfilled. I'm not sure what criteria to use to determine this. I know I can use something like whether it pertains to their job, but there has to be others I can use. Do you have any suggestions?

The request really should just make sense for your company. Is this information something the person needs to complete their job duties? Where will this information be stored? Who will receive this information? If the data needs to follow strict disclosure/confidentiality rules, you may want to consider having all requestees sign a document saying they know and understand these rules. Anyone found not following these rules could be subject to immediate job termination.

For more information on this topic, visit these other SearchSecurity resources:
Ask the Expert: Security content on SearchDatabase
Best Web Links: Database security
Best Web Links: Security policy and infrastructure

This was last published in July 2002

Dig Deeper on Information security policies, procedures and guidelines

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.