Oct-2009 ~ Dynamic Management Views ~ Raghuram Dharmapuri

Posted by admin

 

Presenter: Raghuram (AJ) Dharmapuri – FM Global
Topic: SQL Server’s Panoramic Ensemble
          DMV’s (Dynamic Management Views)

 

We know that DMV’s have the answers, but do we know which DMV to look at and what to look for?

This session gives a brief overview of some of the frequently used Dynamic Management Views in SQL Server.

Biography:

AJ has over seven years of experience in the IT industry. He is currently a Sr. Development Database Administrator with FM Global.

Before joining FM Global, he worked for over 5 years for diverse range of organizations, including Oracle and SAP Labs in the CRM space with main focus on databases. In his current role he designs, develops, tunes & manages all versions of SQL Server databases along with working with developers on SSIS & SSRS tools.

Jul-2009 ~ SQL Injection Attack – Defense ~ Andrew Novick

Posted by admin

 

Presenter: Andrew Novick of Novick Software
Topic: Defending SQL Server from SQL Injection Attacks

 

SQL Injection attacks have emerged as the application security issue that creates the most data loss and web site defacement incidents passing cross-site scripting.

Defending SQL Server from SQL injectioncontinues to be a problem for many applications. This presentation will discuss the ways that SQL Server developers and DBA can harden their applications and servers.

The methods demonstrated include:

  • Protecting Dynamic SQL statements when they can’t be eliminated
  • Security configuration to minimize the vulnerable surface area
  • Using DML triggers to thwart many common attacks
  • Managing stored procedure privilege with the EXECUTE AS clause
  • Using DDL triggers to minimize vulnerabilities
  • Ineffectiveness of database and column encryption as defenses

The SQL Server is one of the most vulnerable components of an application and one of the most frequently attacked. Come hear about the techniques you can use to protect it from SQL injection attacks.

Biography:

Novick Software is the New England based consulting company of Andrew Novick. Over the last 24 years I’ve been managing projects, consulting, writing, teaching, and
programming to create software applications for both operations and analysis. The most important thing that I can do for my clients is to understand what drives their business. Only by understanding their problem
or what they’re trying to achieve can an effective solution be found.

Jun-2009 ~ Best Practices – Execution Plans ~ Grant Fritchey

Posted by admin

 

Presenter: Grant Fritchey of FM Global
Topic: Best Practices for working with Execution Plans

 

Get a preview of the PASS 2009 Summit with an early preview of this session on how to work with execution plans to solve common problems.

Learn how to deal with large execution plans and various methods for retrieving execution plans from SQL Server.

Biography:

Has twenty years experience in IT. That time was spent in technical support, development and database administration. For the last eight years I have been working at a major insurance company as a DBA.

I am a Microsoft MVP. I write articles for publication at SQL Server Central, Simple-Talk, PASS and SQL Server Standard. I have published two books, Dissecting SQL Server Execution Plans and SQL Server 2008 Query Performance Tuning Distilled. I am curently working on a third book called Beginning SQL Server 2008 Administration.

Nov-2008 ~ DBA job searching ~ Scott Abrams

Posted by admin


 

Presenter: Scott Abrams
Topic: DBA job searching in our current economy

 

This presentation will cover the following:

  • Types of jobs available out there?
  • Skills that employers are looking for?
  • Types of questions asked when interviewing?
  • Areas to focus on in order to land the job you want!
  • Common pitfalls to avoid!