I’m been having some meetings lately with the security and auditing team here about setting up auditing on some of our more sensitive databases. They presented me with a SQL Server Audit Best Practices list they got from somewhere. The list was obviously not written by someone with any DBA experience as it contained the following statement:
The amount of work a DBA does on a production server is very limited.