The front-end application and the back-end database are inextricably bound in our current model. One of the biggest weaknesses in this model is when the pathways to data aren’t properly controlled. DBAs have the power to take the driver’s seat in this interaction by not giving carte blanche to the developers. The rule of least privilege shouldn’t be instituted for only end users, says Chris Eng, vice president of research for Veracode. Eng: “Developers definitely need to shoulder their share of the responsibility, too””]
Source: https://www.darkreading.com/database-security/app-and-database-security-two-halves-of-a-whole