Table of contents

Auditing Cloud Pak for Data

Auditing is the process of recording the activity that occurs on databases or applications. Auditing can help you detect and prioritize security threats and data breaches.

There are several mechanisms that you can use to audit IBM® Cloud Pak for Data:
What can I audit? Requirements Learn more
System access To use this mechanism, you must have security information and event management (SIEM) software, such as:
  • LogDNA (IBM Cloud)
  • Splunk (on premises)
  • QRadar (on premises)

For details, see Export IBM Cloud Pak for Data audit records to your security information and event management solution.

Sensitive data on remote databases To use this mechanism, you must have the following software:
  • An existing IBM Guardium® system
  • The Watson™ Knowledge Catalog service
For details, see Auditing your sensitive data with IBM Guardium.
Containerized databases on your cluster To use this mechanism, you must have the following software:
  • An existing IBM Guardium system
  • The Guardium External S-TAP® service
For details, see the Guardium External S-TAP service documentation.