Testing

Metacoda SASGF 2018

Security compliance: moving beyond ‘set and forget’ at SASGF

We’re all aware of the many and varied regulations for your digital assets that exist across our different industries and countries. Addressing compliance generally also includes an analysis and assessment of data security. What do you have in place to ensure your data related assets remain secure and compliant?

As your business grows and your SAS environment evolves, how do you ensure continued regulatory compliance, business confidence, and alignment with a change in design specifications?

Can you afford to ‘set and forget’ your initial security implementation? Read more

Here’s what 72 SAS admins told us…

At Metacoda we like to know as much as possible about how SAS admins work, so that we can better plan our business and products to best meet your needs.

And what better way to find out than by simply asking?

So in October we ran a SAS® Administrator Survey on Metadata Security.

A huge THANKS to everyone who filled in the survey, giving us a really useful set of information and comments.

In total we had 72 responses, with an average completion rate of 92%, and a typical fill-in time of about 2 minutes and 20 seconds.

The survey was conducted using SurveyMonkey where they’ve analyzed the results and produced the following charts. <side note>Naturally, there was a temptation to do the analysis in SAS and to create a SAS Visual Analytics dashboard.</side note>

As promised, here’s a snapshot of the results (anonymous, of course). Read more

SAS UK Metacoda Webinar Presenters

SAS® Security Model Design Golden Rules, Validation, and Monitoring with Metacoda

Have you heard of the SAS® Security Model Design Eight Golden Rules? If not, we first recommend reading the SAS Global Enablement and Learning (GEL) Five papers on Recommended SAS 9.4 Security Model Design (part 1 & part 2) These papers, provided by David Stern, are an excellent resource for SAS customers and partners to use when designing security for their SAS platform implementations.

Summary of SAS Global Enablement and Learning 8 Golden Rules
Summary of SAS Global Enablement and Learning 8 Golden Rules
SAS UK Metacoda Webinar Presenters

On Monday 9th October, David Stern from the SAS GEL team presented with Paul Homes from Metacoda at a SAS UK Customer Loyalty webinar on SAS® Security Model Design Golden Rules, Validation, and Monitoring with Metacoda. The webinar recording is well worth watching to get an understanding of SAS security best practices and how Metacoda helps to ensure your SAS platform remains secure! The webinar recording, Q&A and slides are available at http://bit.ly/SASUKMetacodaWebinar

5258 We’d like to encourage you to consider using a third party tool to help you analyze, inspect and test the structure of the security model design in your SAS 9 deployment. The best known of these is the set of security plug-ins from Metacoda. David Stern, SAS Global Enablement and Learning team

Read more

SAS security best practices and secure the koalas’ future – Save The Koala Month!

Metacoda #STKM 2017

Metacoda celebrated its 10th birthday this month! It’s an exciting milestone and we’d like to extend a great big thanks to you for being part of our Metacoda community along the way.

We started off the year talking about journeys and, in particular, how we can help with your SAS security journey. We were wondering how it’s going?

In a recent blog post we highlighted how SAS Communities are aWEsome. We’d love to hear your experiences – please post a comment in the blog or chat to us in person at an upcoming SAS event.

Hope to see you in person or online soon!

SUGA - SAS User Group for Administrators

Webinar: SAS® Security Design and Best Practices

Did you catch the SUGA: SAS security design and best practices webinar on Tuesday 12th September?
If not, you can go to SUGA to get the webinar recording, Q&A and slides. Angie Hedberg (SAS Technical Consulting Manager) and Michelle Homes (Metacoda) covered key design best practices for securing SAS 9.4 metadata and the file system, and how Metacoda can help to secure your SAS environment.


Love is in the air - #STKM

Save The Koala Month

It’s Save the Koala Month (#STKM) and the theme is “Love is in the Air”. So as supporters of the Australian Koala Foundation, we want to do our bit to spread the Koala love far and wide! Join in the #STKM2017 celebration and find out how you can help save the koala.
Read more

GDPR Privacy/Security by design and default – Metacoda can help!

Manoj Patel’s GDPR word image
Manoj Patel’s GDPR word image
Those of you who work with the personal data of European citizens will be familiar with about GDPR (General Data Protection Regulation).
If not, take a look at Manoj Patel’s word image and GDPR quick fact posts for an overview.

If your organization has links to Europe, while there are some exemptions, you have until the date of enforcement – 25th May 2018 – to investigate your compliance. See ZDNet’s article, “How Europe’s GDPR will affect Australian organisations” for more information about how it might affect your business.

Key requirements include security measures; in short, data needs to be secured with the GDPR privacy/security by design and default obligation. Other requirements revolve around how you protect personal data through prevention, assessment, and monitoring.

So, how DO you ensure data flows securely through your SAS platform?

Data Security Governance

The data security section of the GDPR requires privacy/security by design and by default, to ensure data is secured from the inception of the application or system. Security and privacy need to be considered during the planning phases, as opposed to during development (or even later). Usually within a SAS 9 implementation, a security plan and model is designed following installation.

In light of GDPR we need to be asking ourselves: Read more

Are you inspired to experience your new possible?

For the past few years SAS Forum Nederland has been held in Nieuwegein, a town not far from Utrecht. In Utrecht there is a museum, Museum Speelklok that I’ve been longing to visit and with a free Saturday afternoon following SAS Forum Nederland, I gleefully did.

The Museum Speelklok website states “Museum Speelklok will take you through the wonderful world of self-playing musical instruments, surprising its visitors every day with the cheerful tunes sounding from all corners of the museum.” And it sure was wonderful. I was mesmerised by the musical tones and in awe of the history and amazing engineering these 16th century instruments possessed. From musical clocks, musical boxes, orchestrions and traditional Dutch organs it was a delight. The enchanting experience not only was a musical fulfilment, it was engineering adventure as I watched the pins, pulleys and drums move in perfect harmony.

Being inspired

I was spellbound with one instrument on display, A Magical Marble Machine. This instrument was created and donated to the museum after the creator, Martin Molin, member of the Swedish musicband Wintergatan become inspired while visiting the Museum Speelklok in 2014. After 14 months he created a magical music machine of packs of plywood, 3000 screws and no less than 2000 marbles. I urge you to watch the viral (almost 50 million views) YouTube video below of his creation that includes a virbraphone, kickdrum, snare-drum, cymbals and an electric bass. Read more

SAS security journey continues with more SAS forum adventures!

Thanks for being part of our Metacoda community. We hope your professional and personal 2017 journeys have been going well. We’d like to give you a quick update on ours and how we can help with your SAS® security journey.

Please feel free to reach out to say g’day, share your Metacoda koala antics, ask questions, provide feedback on our software, or simply keep us updated with your SAS security journey.

Hope to see you in person or online soon!

Metacoda: a SAS Global Forum 2017 sponsor

We enjoyed being a sponsor at SAS Global Forum (SASGF) last month and meeting so many SAS customers at the Metacoda stand. Please read our SASGF blog post about our conference experience (including the Metacoda koalas). If we missed seeing you and you’d like to have a web demonstration on keeping your SAS platform secure, please contact us – we’d love to hear from you!

Read more

Metacoda Plug-ins 5.0 BETA: Q&A

We’re delighted to announce the BETA version of Metacoda Plug-ins 5.0 is now available for those who are interested in testing it out and getting an early look; it includes our much anticipated Metacoda Identity Sync Plug-in. We demonstrated this new plug-in at SAS® Global Forum 2015 in April; and have incorporated much of the great feedback we received.

We’ve also had some questions from SAS customers, asking about V5, particularly how they can benefit from using the Metacoda Identity Sync Plug-in. Here are the answers to your most popular questions.

How can the Metacoda Identity Sync Plug-in help me with identity synchronization?

The Metacoda Identity Sync Plug-in provides an easy way for SAS platform administrators to keep a targeted subset of identities (users, groups and roles) for their SAS environment in-sync with enterprise directories such as Microsoft’s Active Directory (AD). The friendly, Read more

Confidence from Metadata Security Testing

In the past, with departmental data within the perimeters of an organization, security was sometimes a secondary concern. These days, with shared enterprise environments, external workers, cloud, and BYOD, security is often paramount. You may have seen security predictions for 2015 such as:

We’ve noticed security becoming a higher priority for organizations using SAS® Software too.

Last year we released Metacoda Security Plug-ins 4.0 including an optional Metadata Security Testing Framework for the automated testing of SAS metadata security implementations. The plug-ins integrate with the SAS platform and SAS solutions to help customers troubleshoot, document, and test their metadata security, giving them a high degree of confidence and helping them address compliance needs.

We have found that metadata security testing, when it is done, is almost always done manually. Manual testing takes significant effort and planning, has limited coverage, and it’s very easy to miss things. This often means testing is done infrequently and metadata security problems can stay undiscovered for a long time until it’s brought to the attention of an administrator. Whilst people will question why they have limited access, they rarely say when they have too much access.

Imagine the confidence you’ll get from frequently scheduled, high coverage metadata security testing that notifies you when non-compliant changes occur.

For further information on Metacoda Security Plug-ins 4.0 and the optional testing framework, we have a video presentation on our YouTube Channel (embedded below).

Metacoda Plug-ins 4.0 Testing YouTube

To find out more about our Metacoda Security Plug-ins software, visit our product page or contact us to discuss. You can also register to download our plug-ins and get a free one-month evaluation license to try out the Metadata Security Testing Framework and the rest of the plug-ins with your own SAS metadata.

Register Now ...