Information is at the heart of businesses, and organizations today face many challenges trying to safeguard it. Data and information security is about enabling collaboration while managing risk with an approach that balances availability versus the confidentiality of data.
IBM data and information security solutions deliver comprehensive capabilities for data protection and access management that can be integrated to help address information lifecycle security across the enterprise with:
- Data discovery and classification to identity sensitive mission critical information
- Data encryption and key management
- Executable access protection policy management
- Messaging security and data loss prevention
- Secure storage and archiving for data retention
- Services to assess, protect, monitor and manage information
Products and services:
- IBM Tivoli Security Information and Event Manager
centralizes security event and compliance policy management providing visibility to the enterprise-wide security posture. It includes centralized log management, event correlation, a policy compliance dashboard and comprehensive reporting capabilities.
- IBM Tivoli Access Manager for e-business
serves as a hub for authentication and authorization for Web and other applications, centralizes access management and makes it easy and cost effective to deploy secure applications.
- IBM Tivoli Access Manager for Operating Systems
protects individual application and operating system resources by addressing system vulnerabilities surrounding UNIX/Linux super user or root accounts.
- IBM Tivoli® Key Lifecycle Manager
Helps IT organizations better manage the encryption key lifecycle by allowing them to simplify, centralize, automate and strengthen key management processes across the computing environment.
- IBM Security zSecure suite (formerly known as IBM Tivoli zSecure suite)
improves organizations’ ability to facilitate security compliance, monitor and audit incidents and automate routine administrative tasks for the mainframe.
- IBM FileNet Records Manager
streamlines records-based activities to help enforce compliance without user participation. Enterprises can use it to classify, apply retention policies and store electronic records according to fiscal, legal and regulatory requirements.
- IBM Data Security Services for activity compliance monitoring and reporting
helps you stay on top of your database security initiatives and improve visibility into activities of administrators and others who support critical applications. Powered by IBM Tivoli® Compliance Insight Manager software and Application Security’s DbProtect AppDetective, the solution leverages IBM’s security expertise and proven services methodology
- IBM Data Security Services for endpoint data protection
is designed to help you improve endpoint security. With rapid implementation, reliable managed security services and industry-leading software, IBM can help you protect sensitive data that is accessed, stored and transmitted on your endpoint devices.
- IBM Data Security Services for enterprise content protection
provides a comprehensive solution for your unique environment that uses market-leading data loss prevention technology to drive consistent coverage from endpoint to network. From policy creation and implementation to continued management and remediation, the solution leverages IBM's security expertise and proven services methodologies
- InfoSphere Optim Data Masking solutions
De-identify confidential information to protect privacy and support compliance initiatives
- InfoSphere Guardium Data Redaction
Protects sensitive unstructured data contained in documents & forms from unintentional disclosure, detecting & removing the data from the document version openly shared. It supports many of today’s documents formats, including scanned documents, PDF, TIFF and Microsoft® Word.
- InfoSphere Guardium Encryption Expert
Can protect sensitive information in both online and offline environments and has centralized policy and key management to simplify data security management.
- InfoSphere Guardium Data Encryption for DB2 and IMS
Leverages the System z Crypto Hardware to efficiently secure sensitive and private data at the DB2 row level and the IMS segment level with a front end that allows customers to create and customize encryption.
- InfoSphere Guardium Data-Level Access Control
Monitors all database connections, blocking unauthorized activities to sensitive data based on granular, real time policies.
- InfoSphere Guardium Database Activity Monitor
Prevents unauthorized activities by privileged insiders or hackers while monitoring end-users to identify fraud, without any changes to databases, applications or impacting performance.
- InfoSphere Guardium Vulnerability Assessment Solution
Enables organizations to eliminate the enormous risk created by insecure database configurations, missing patches, weak passwords and other vulnerabilities
- InfoSphere Optim Test Data Management Solutions
Creates “right-sized”, fictionalized test databases that accurately reflect end-to-end business processes. You eliminate costly cloning processes and correct defects early in the development process – where they are cheapest and easiest to fix. Integrated with InfoSphere Optim Data Masking solutions to protect sensitive data in test environments.
