With InfoSphere Guardium you can monitor data activity and protect sensitive data by:
- Automatically locating, discovering and classifying sensitive data
- Providing 100-percent visibility and granularity into all database, file share, data warehouse and Hadoop transactions across all platforms and protocols—with a secure, tamper-proof audit trail that supports separation of duties
- Monitoring and enforcing wide range of policies for sensitive data access, privileged user actions, change control, application user activities, and security exceptions. IBM’s InfoSphere Guardium allows you to easily create real-time policies across the entire data infrastructure. Responses to policy violations are fully customizable, with options ranging from real-time transaction blocking to real-time alerts or user quarantine.
- Preventing outsider attacks such as SQL injections by creating and enforcing real-time, proactive policies such as:
- Access policies that identify anomalous behavior by continuously comparing all data activity to a baseline of normal behavior. For example, an SQL injection attack will typically exhibit patterns of database access that are uncharacteristic of standard line-of-business applications.
- Exception policies based on definable thresholds, such as an excessive number of failed logins or SQL errors.
- Extrusion policies that examine data leaving the data repository for specific data value patterns such as credit card numbers
- Monitoring privileged user actions by identifying, recording and blocking inappropriate actions by superusers
- Monitoring all data transactions to create a continuous, fine-grained audit trail that indentifies the “who, what, when, where, and how” of each transaction.
- Continuously analyzing audit data in real-time to identify unauthorized or suspicious activities, and executing responsive actions ranging from blocking the transaction in real-time, to generating an alert.
- Automatically aggregating user entitlement information across the entire data infrastructure; providing standard reports identifying what users have particular special privileges, what new rights have been granted by whom and what entitlements particular users have.
- Tracking application user activities that access data indirectly through enterprise applications including Oracle EBS, SAP, PeopleSoft, Cognos, Siebel and Business Objects. Application user IDs are also provided for custom and packaged applications built upon standard application server platforms (IBM WebSphere, BEA WebLogic, Oracle Application Server and JBoss Enterprise Application Platform.)
- Creating a single, secure centralized audit repository for large numbers of heterogeneous systems and databases
- Automating the entire compliance auditing process and streamline compliance validation activities across a wide variety of mandates by creating and distributing reports related to change control as well as capturing comments, signatures and escalations.
What we offer
eBooks
- Unifying Data Security and Integrity: Reduce Risk, Lower Costs
- Secure enterprise data and ensure compliance: A holistic approach to data protection
