Stable and Easy to implement for tracking of database with IBM Guardium
January 13, 2020

Stable and Easy to implement for tracking of database with IBM Guardium

Zinnur Dikici, Msc | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with IBM Security Guardium

We use it as the main solution for monitoring database activity in a bank. I have used IBM Guardium in companies that I worked with before. We use IBM Guardium for tracking database activities and also detection vulnerabilities such as SQLi at a database. The main requirements for use are to detect unusual activities in our company and meet industry regulations. We like the architecture of IBM Guardium.

Pros

  • Very stable product.
  • The architectural structure of the product provides very stable usage.

Cons

  • The product is not very user friendly.
  • Sometimes building queries and reports can be very complicated.
  • We have passed audits without penalties.
  • We have detected access and configuration vulnerabilities on database without abuse. We did not [experience a] financial loss due to these determinations.
The architecture of IBM Guardium give us flexibility to access activities, create policies and management. Easy deployment and stabilization of product can be other reason for preference. Can be easy manage and track activities' backup node of databases in a disaster recovery center. At the same time [we can] provide a strong backup mechanism with this structure. It can be also provide a vulnerability scan with the same product.
In the last few years there has been slow and unsolved in support from IBM. Not only for IBM Guardium but also for other IBM products.

Do you think IBM Guardium delivers good value for the price?

Yes

Are you happy with IBM Guardium's feature set?

No

Did IBM Guardium live up to sales and marketing promises?

Yes

Did implementation of IBM Guardium go as expected?

Yes

Would you buy IBM Guardium again?

Yes

The product integration is very bad on the SIEM platform. We also use IBM Qradar (the same product). While alerts can be sent successfully with Syslog, admin activities cannot be sent successfully. According to us, alert/query flexibility is very successful. Also, data masking is better at alerts, queries or reports. Due to its architecture, the management of all components is very efficient. Database vulnerability scanning with the same agent is also excellent.

Comments

More Reviews of IBM Guardium