Key Features of Guardium Analyzer

Connectivity to cloud and on-premises databases

Helps clients connect to their cloud and on-premises databases to uncover data and vulnerabilities related to regulated information. Clients can connect to multiple databases simultaneously, and nothing needs to be installed on database servers. As part of the connection and scanning process, encryption techniques are applied to protect the data, and no personal data is uploaded to the cloud.

Next-generation classification

Provides a next-generation classification engine, which also powers IBM Watson offerings, and pre-built regulation-oriented data patterns to help you efficiently identify and classify various types of regulated data. The classification engine scans and analyzes the actual text in on-premises and cloud databases to discover and classify such data. Users can leverage IBM’s pre-built data patterns, user-provided patterns, or a combination of both.

Vulnerability scans

Open vulnerabilities in your databases can increase your level of exposure and your risk. This offering applies mature vulnerability scanning and assessment capabilities and can efficiently scan for a multitude of database vulnerabilities. It then can identify the pressing vulnerability issues, such as CVEs, that might be exploited and need attention.

Risk scores

Based on the information from the data classification and vulnerability scans, specialized risk scoring techniques are applied to deliver prioritized risk information. The offering helps identify the level of risk associated with each database, provides specific details for what is at risk in the database and why, and helps organizations understand what type of regulated data is in their databases and what the level of risk is to the business.

Prioritized remediation recommendations

The risk scoring information is used to present you with a prioritized list of risks, and provides you with the information you need to understand what steps can be taken to address the vulnerability risks and help secure regulated data. These actions can help organizations prioritize their focus and mitigate privacy-related data risks.

Progress dashboards

Based on repeated scans of the cloud and the on-premises database environment, as well as the risk scores and prioritized remediation recommendations, this dashboard shows how risk levels are trending, as well as the progress that’s been made to address those risks over time.

Supports a wide variety of cloud and on-premises databases

Guardium Analyzer currently supports the following data sources both on-premises and on cloud: IBM Db2, IBM Db2 for I, IBM Db2 for zLinux, Informix, Microsoft SQL Server, MySQL & MySQL Community Edition, Oracle, AWS RDS for Oracle, and IBM Integrated Analytics System (IIAS).

Integrate insights into other applications

Guardium Analyzer’s open APIs allow other applications to get database, vulnerability, and classification results, and its classification results can be imported into IBM Security Guardium Data Protection, IBM Security Data Risk Manager, and other applications, via a CSV file.

Get reports for auditors

After gaining risk insights, users can create an audit-appropriate PDF report that captures Guardium Analyzer’s findings and the supporting details for a specified set of data sources, as well as descriptive information that will be needed for an auditor to understand the report.

How customers use it

  • Efficiently Connect to Cloud and On-Premises Databases


    Cumbersome, time-consuming roll outs associated with on-prem solutions


    As a software-as-a-service offering, IBM Security Guardium Analyzer enables users to efficiently connect to and scan cloud and on-premises databases via the IBM Security Guardium Data Connector, with setup time in as little as 15 minutes.

  • Identify and Classify Regulated Data Risks

    Identify and Classify Regulated Data Risks


    Finding what regulated data you have, where it is, and what its exposures are


    Analyzer scans & classifies regulated data so users can see where it is located, what type of data it is & whether it’s potentially exposed due to vulnerabilities. Results are combined in an intuitive dashboard so users can view insights at a glance.

  • Prioritize Actions and Share Results

    Prioritize Actions and Share Results


    Knowing where to start when it comes to addressing compliance and privacy requirements


    Analyzer provides a prioritized list of potentially at-risk databases containing regulated data, with details on actions to take to help remediate risk. The list can be filtered by various factors, and shared with relevant admins.

You may also be interested in

IBM Guardium Data Protection for Databases

Provides data activity monitoring and cognitive analytics

Learn more

IBM Guardium Vulnerability Assessment

Scans your data to detect vulnerabilities and suggest remedial actions

Learn more

IBM Guardium Data Protection for Files

Monitor unstructured data access and protect sensitive data

Learn more

IBM Guardium Multi-Cloud Data Protection

IBM Guardium Multi-Cloud Data Protection

Learn more

IBM Guardium Data Protection for Big Data

Provides continuous monitoring and real-time security policies

Learn more

IBM Guardium for File and Database Encryption

Know your sensitive data and intelligently safeguard it

Learn more

IBM Security Key Lifecycle Manager

Centralize, simplify and automate encryption key management

Learn more

IBM Guardium Data Encryption for Db2 and IMS Databases

Offers sensitive and private data protection for Db2 and IMS systems

Learn more

IBM Guardium for Teradata Encryption

Protects data in Teradata and big data environments from misuse.

Learn more

IBM Guardium for Application Encryption

Apply application-level encryption in new and existing apps.

Learn more

IBM Guardium for Tokenization

Protects sensitive fields in databases and files with tokenization.

Learn more

See how it works