1. Describe a general company security policy for the database "layer" of security only (avoid getting into network security protocols or application level security for this exercise, and assume that there are security mechanisms in place that allow end-user connections to the database with the appropriate user credentials.)
2. Specify the SQL you will use to carry out your security policy for two of the business rules or areas of security concern. This may include creating a VIEW and/or ROLES and/or privilege GRANTs. Specify the rule, and BRIEFLY describe how your SQL carries this out. Please limit yourself to two areas of concern, but try to make sure you demonstrate you knowledge of how to efficiently and effectively organize your security controls.
3. Describe your general database backup plans for this system. More important than the plan itself is the rationale you provide for your decisions about the timing, backup types and backup media choices in your plan, which should be grounded in the facts provided in the business case.