Auditing your sensitive data with IBM Guardium
IBM® Guardium® safeguards your sensitive information by auditing what is happening in your sensitive-data environments, such as your databases, data warehouses, file systems, or Big Data environments.
Before you begin
About this task
Personally identifiable information or PII (also called personal data or sensitive personal information) is any information that can be used to identify a living person, such as a full name, an address, an identification number, and so-on. There are numerous regulations that determine how you must handle PII, including the General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act (HIPAA), and the Family Educational Right and Privacy Act (FERPA).
One way that you can protect PII is by ensuring that you have security measures in place to prevent unauthorized access to your data. But in the event of a data security breach, it's also important to ensure that you have an audit trail so that you know who accessed the data, when they accessed it, where they accessed it, and what data they accessed.
You can use the data governance features in IBM Cloud Pak for Data to identify sensitive data, including data that resides on Hadoop systems.
When you integrate IBM Guardium and Cloud Pak for Data, users with Manage catalog permissions can specify which assets are audited by IBM Guardium.
The following graphic illustrates the high-level process that you must follow to integrate the two applications. It also shows the different users who are typically involved in the process.
To integrate the applications, complete the following tasks: