1 of 1

Automating IQ

​

Effort 1(left): Reduced Data Integration Team manual efforts by automating validation of Oracle grants process

​

Effort 2(right): Deployed Host-based Intrusion Detection System on Windows via Ansible and sending real-time info to Slack

QRCode

Group Members:

Jason Cheng

​

Scan here to contact us!

(Any essential images. If you don’t have any, you can leave the space blank, or include a photo of the group working.)

​

Problem

Effort 1: Oracle non-prod grants get ‘lost’ when data refreshes do not complete successfully. This causes issues with access to BusObj and MReports which can only be resolved and restored by manual intervention from the Data Integration team.

Effort 2: Due to software limitations, IQ’s original monitoring tool does not support Windows Server

Methods

Results

With the automation tools:

• Saved IQ team‘s work of manually checking thousands of grants after non-prod database refresh failures

​

• Enabled the location of lost access before others reach out to the Data Integration team for regrant

​

• DevOps staff can view window server’s info directly from the slack channel in real-time

​

Effort 1:

• Implemented saving ’Golden Grants’ in git as source of truth to minimize deployment errors
• Using Python and Bash script to query current oracle grants, locate lost/increased grants, and email results with a regrant SQL query ready for execution
• Automated with RMJ, a scheduling tool

Effort 2:

• Deployed an open-source tool, Wazuh, with Ansible to monitor the system. Wazuh supports Windows Server with an improved ruleset and more advanced integration ability.
• Log events from the Windows Server will be filtered, and send to Slack as alerts.

​

​