Key Features of Guardium Analyzer

Connect to cloud and on-premises databases

Helps clients connect to their cloud and on-premises databases to discover data and uncover vulnerabilities related to regulated information. Clients can connect to multiple databases simultaneously, and nothing needs to be installed on database servers. As part of the connection and scanning process, encryption techniques are applied to protect the data, and no personal data is uploaded to the cloud.

Discover regulated data across on-prem and cloud databases

Guardium Analyzer helps organizations discover and classify personal and sensitive personal data. It utilizes a next-generation classification engine, which also powers IBM Watson offerings, to help you efficiently discover, identify and classify various types of regulated data.

Leverage next-generation data classification capabilities

Guardium Analyzer’s data classification engine scans and analyzes the actual text in on-premises and cloud databases. Users can leverage IBM’s pre-built regulation-oriented data patterns, user-provided patterns, or a combination of both to discover personal and sensitive personal data. Personal information includes data such as name, address, email address, etc. Sensitive personal information includes data such as gender, sexual orientation, religion, race or ethnicity, and many others etc.

Scan for data source vulnerabilities

Open vulnerabilities in your databases can increase your level of exposure and your risk. This offering applies mature vulnerability scanning and assessment capabilities and can efficiently scan for a multitude of database vulnerabilities. It then can identify the pressing vulnerability issues, such as CVEs, that might be exploited and need attention.

Identify the level of risk for each database

Based on the information from the data classification and vulnerability scans, specialized risk scoring techniques are applied to deliver prioritized risk information. The offering helps identify the level of risk associated with each database, provides specific details for what is at risk in the database and why, and helps organizations understand what type of regulated data is in their databases and what the level of risk is to the business.

Get prioritized remediation recommendations

The risk scoring information is used to present you with a prioritized list of risks, and provides you with the information you need to understand what steps can be taken to address the vulnerability risks and help secure regulated data. These actions can help organizations prioritize their focus and mitigate privacy-related data risks.

See progress over time

Based on repeated scans of the cloud and the on-premises database environment, as well as the risk scores and prioritized remediation recommendations, this dashboard shows how risk levels are trending, as well as the progress that’s been made to address those risks over time.

Supports a wide variety of cloud and on-premises databases

Guardium Analyzer currently supports the following data sources both on-premises and on cloud: IBM Db2, IBM Db2 for I, IBM Db2 for zLinux, Informix, Microsoft SQL Server, MySQL & MySQL Community Edition, Oracle, AWS RDS for Oracle, and IBM Integrated Analytics System (IIAS).

Integrate insights into other applications

Guardium Analyzer’s open APIs allow other applications to get database, vulnerability, and classification results, and its classification results can be imported into IBM Security Guardium Data Protection, IBM Security Data Risk Manager, and other applications, via a CSV file.

Get reports for auditors

After gaining risk insights, users can create an audit-appropriate PDF report that captures Guardium Analyzer’s findings and the supporting details for a specified set of data sources, as well as descriptive information that will be needed for an auditor to understand the report.

How customers use it

  • Efficiently Connect to Cloud and On-Premises Databases


    Cumbersome, time-consuming roll outs associated with on-prem solutions.


    As a software-as-a-service offering, IBM Security Guardium Analyzer enables users to efficiently connect to and scan cloud and on-premises databases via the IBM Security Guardium Data Connector, with setup time in as little as 15 minutes.

  • Discover and Classify Regulated Data Risks

    Discover and Classify Regulated Data Risks


    Discovering what regulated data you have, where it is, and what its exposures are.


    Guardium Analyzer scans and classifies regulated data so users can the data’s location and type, and whether it’s potentially exposed due to vulnerabilities. Results are combined in an intuitive dashboard so users can view insights at a glance.

  • Prioritize Actions and Share Results

    Prioritize Actions and Share Results


    Knowing where to start when it comes to addressing compliance and privacy requirements.


    Guardium Analyzer provides a prioritized list of potentially at-risk databases containing regulated data, with details on actions to take to help remediate risk. The list can be filtered by various factors, and shared with relevant admins.

You may also be interested in

IBM Guardium Data Protection for Databases

Provides data activity monitoring and cognitive analytics

Learn more

IBM Guardium Vulnerability Assessment

Scans your data to detect vulnerabilities and suggest remedial actions

Learn more

IBM Guardium Data Protection for Files

Monitor unstructured data access and protect sensitive data

Learn more

IBM Guardium Multi-Cloud Data Protection

IBM Guardium Multi-Cloud Data Protection

Learn more

IBM Guardium Data Protection for Big Data

Provides continuous monitoring and real-time security policies

Learn more

IBM Guardium for File and Database Encryption

Know your sensitive data and intelligently safeguard it

Learn more

IBM Security Key Lifecycle Manager

Centralize, simplify and automate encryption key management

Learn more

IBM Guardium Data Encryption for Db2 and IMS Databases

Offers sensitive and private data protection for Db2 and IMS systems

Learn more

IBM Guardium for Teradata Encryption

Protects data in Teradata and big data environments from misuse.

Learn more

IBM Guardium for Application Encryption

Apply application-level encryption in new and existing apps.

Learn more

IBM Guardium for Tokenization

Protects sensitive fields in databases and files with tokenization.

Learn more

See how it works