Rule 1: Don’t Grant any DB2 Object for PUBLIC, you don’t know who will use this authority and get access to your DB2 subsystem.
Rule 2: Grant access to DB2 objects according to need to know concept, don’t give extra authority unless it is business need.
Rule 3: Take Database backup in at least two different utilities and media (for ex. IMGCOPY and UNLOAD or any other third party tool)
Rule 4: DBA must check on daily basis database Backup
Rule 5: DBA must ensure that any sensitive data is protected from unauthrized access.
Rule 6: Any Database activities (DBA) must be monitored and archived.
This entry was posted in DB2 for z/OS. Bookmark the permalink.