Set strong passwords for Administrator and any other operating system accounts that have any DIVArchive administrator or service roles assigned to them, including:
DIVA, Oracle User IDs (if being used)
Any disk array administrative accounts
Do not use local administrator operating system account but rather assign roles as needed to other user accounts.
Set strong password for Administrator and Operator for the Control gui. Change the password right away from the default installed password to a strong password. You can do this from the Configuration utility under Tools.
Set strong password for Oracle database login. Change the default oracle database users passwords from the installed defaults
Install firewall on every system and apply the default DIVArchive port rules. Restrict access to DIVArchive API (tcp 9000) to IP's that need access using firewall rules.
Install operating system and DIVArchive updates on a periodic basis since they include security updates.
Install Anti-virus and exclude the DIVArchive processes and storage for performance reasons.
It is best practice to segregate FC disks and FC tape drives either physically or through FC zoning so that disks and tape devices do not share the same HBA port. For Managed disk only DIVArchive actors should have access to disk and also the tape drives. This security practice helps prevent loss-of-data accidents due to accidental overwriting of tape or disk.
Set up an appropriate set of backup of the DIVArchive configuration and database. Backups are part of security and provide a way of restoring data lost either accidentally, or through some breach. Your backup should include some policy while being transported to an offsite location. Backups need to be protected to the same degree as DIVArchive tapes and disk.