Converge Enterprise Cloud for IBM Guardium Insights
Gain extra value with managed services
Overview
Data security that’s powerful, flexible, and simple
IBM Security® Guardium® Insights is a modern data security solution built to adapt to changing environments, connect to critical IT and security tools, streamline compliance and audit processes, and intelligently respond to data threats. Modernize your data security with Guardium Insights and get more out of your data security investments.
Features
Centralized monitoring for hybrid multiclouds
Monitor data activity across disparate cloud and on-premises data sources (link resides outside ibm.com) — and easily build connectors to additional data sources with the Guardium Universal Connector Framework (link resides outside ibm.com).
Modern architecture for flexible deployment
Built on the Red Hat® OpenShift® container platform, Guardium Insights is compatible with major cloud data sources, including AWS Kinesis and Microsoft Azure Event Hubs. Deploy and scale with flexibility as business and cloud priorities change.
Advanced analytics to analyze and score risks
Guardium Insights uses advanced analytics to identify abnormal or suspicious user behavior and generate contextual, actionable insights. It then scores risks according to potential impact, to help prioritize remediation and stop potential breaches.
Integration with mission-critical tools
Guardium Insights integrates with SIEM, SOC, ticketing platforms and more using REST APIs or, in the case of IBM Cloud Pak® for Security, shared architecture. This enables contextualized risk insights to be shared across teams.
Automated compliance and streamlined workflows
Customize data monitoring policies and define the audit lifecycle. Automate compliance policy enforcement to reduce time spent meeting requirements.
Fast reporting to keep security teams informed
Generate reports in seconds, and create new custom reports as needed. Correlate and visualize data source activity over time, identify historical trends and share reports with key data security and data governance stakeholders across the enterprise.
Long-term data retention
Use Guardium Insights as a data security hub to centralize and store data activity monitoring (DAM) data. Retain monitoring data such as user activity and critical audit data for years to enrich investigations and meet compliance goals.
Advanced discovery and classification
Integration with IBM Security Discover and Classify enables you to quickly understand where sensitive data lives, its business context, how the data moves, and activity around it. Prioritize response to risks by understanding how sensitive the data is in a given data source and how critical it is to the business.
Fully customizable UI
A simple point-and-click connections experience to add new data sources (such as Cosmos, MongoDB, HDFS, and more) in seconds. A home screen can be tailored to show the analytics and reports most valuable to you, for greater visibility and simplified setup. Login and immediately surface the data you need most.
Features in action
Combat tool sprawl
Demo: REST API Integration in Guardium Insights (02:37)
Combat tool sprawl
It can be a challenge to get multiple, disparate IT and security systems to work together efficiently. See how to build a more cohesive data security strategy.
SIEM integration
Demo: Integrating Splunk with Guardium Insights (01:22)
Integrate with the SIEM
Data security tools must communicate with other mission-critical security platforms — especially the SIEM — to enable fast and easy data sharing. See how they can be fully integrated with the IBM Security™ and other tools.
Remove siloes
Demo: Case management in Guardium Insights (03:29)
Break down security siloes
Data security is everyone’s business. As data sprawl continues, it’s necessary to share data security insights across siloed teams. See how your teams can share tickets with the security operations center (SOC) for a collaborative threat response.
Reports out-of-the-box
Demo: Running out-of-the-box reports in Guardium Insights (00:55)
Build reports out-of-the-box
When it comes to an audit or a data breach, there is no time to spare. Often, putting together data security reports for these events can take hours. See how to generate out-of-the-box reports in seconds.
Custom reports
Demo: Creating custom reports in Guardium Insights (08:11)
Generate custom reports
To meet data security goals, sometimes customization is necessary. But building custom reports often takes too much effort to be practical. See how to quickly set ranges, parameters and filters specific to your organization's needs — in minutes.
Frequently asked questions
Does Guardium Insights have any prerequisites?
To deploy Guardium Insights, customers must first deploy Red Hat® OpenShift® Container Platform.
For database as a service (DBaaS), can I stream my data security and compliance data directly into Guardium Insights?
Yes, you can stream data directly from DBaaS sources right to the Guardium Insights hub.
What DBaaS sources does Guardium Insights support?
Guardium Insights supports a variety of private and public cloud DBaaS sources, including AWS and Microsoft Azure. To learn more, please contact your IBM representative, your IBM Business Partner, or contact IBM directly.
What is the recommended environment needed to run Guardium Insights?
Specific requirements will vary based on your environment. To learn more, please contact your IBM representative or contact IBM directly.
Why is it called IBM Security Guardium Insights for IBM Cloud Pak for Security?
Guardium Insights, while able to be deployed alone, provides a data security element to IBM Cloud Pak® for Security. In fact, the full product name is IBM Security Guardium Insights for IBM Cloud Pak for Security. To learn more, please contact your IBM representative or contact IBM directly.