Analyzing third parties

After you connect IBM Guardium DSPM to your cloud account or SaaS application, Guardium DSPM analyzes all the third-party vendors that have access to your connected cloud accounts.

DSPM This content is available through the Guardium DSPM module.

You can click Intelligence>Third parties in the main menu to see the Third parties page. The Third parties page gives you an overview of:

  • A list of the third-party organizations or vendors that have access to sensitive data
  • The certifications to which the third-party organizations or vendors conform.
  • The number of cloud accounts to which the third-party organizations or vendors have access.

You can expand each third party that is listed in the Third parties page and get the following information:

  • The list of cloud accounts that a third party can potentially access. You can further click a listed cloud account to know:
    • The roles that have access to the sensitive data
    • The list of accessible data stores
    • The type of the accessible data stores
    • The region of the accessible data stores
    • The different types of sensitivities in the data store
    • A link that opens the data inventory side panel to provide more information about the data store
  • The various types of sensitivities and the number of sensitivities of each type that are exposed in a cloud account that is accessed by the third party

You can click the Sensitive button, in the upper right of the table to filter the list in the Third parties page to list only the third parties that have access to sensitive data.