Item: IBM Security Guardium
Rating: 10
Author: FURKAN GÖKCAN

Use Cases and Deployment Scope

We provide consultancy services to provide customers with the most efficiency in every aspect of this product. In Turkey, we have a customer portfolio that includes 90% of the companies that are regulated in terms of database security. In customer environment, we personally deal with GUI and cli management of Guardium, which provides solutions to issues such as database logging and alarming.

Pros and Cons

Collecting Logs
Syslog and Mail alerts
Guardium ISO installation
Agent installation and uninstallation

We had big troubles with GIM certificate update
IBM Support Engineers
Guardium Self-Audit

Return on Investment

Guardium is saving companies from regulatory sanctions.
It enables efficient use of time with fast reporting.
With VA, Sensitive Data Discovery and Masking features, Guardium does what many other products can do on its own.

Usability

Guardium is an easier product to use than competing products, but still, most product managers on the customer and bank side have not yet fully mastered the product. Maybe it can be made simpler and more user friendly. For example, it might be nice to be able to quickly open a detailed report of an alarm seen in the Policy violation section with a single click.

Security

Of course, it is a useful product in many ways. Thanks to this product, many findings were found and database users who made erroneous transactions and DBAs who engaged in critical activities could be detected. We also encountered situations where database teams detected tools or services that were working unnecessarily and producing failed logins through Guardium logs.

Alternatives Considered

Imperva Data Security

You can not learn Imperva within 1 year. The interface is complicated and difficult to understand. Additionally, Impervan's product scope is not as broad as Guardium's. Guardium is ahead in this regard with its other modules. At Imperva, product admin and access manager are not separate. Root user can be used in Imperva.

Key Insights

Do you think IBM Security Guardium delivers good value for the price?

Yes

Are you happy with IBM Security Guardium's feature set?

Yes

Did IBM Security Guardium live up to sales and marketing promises?

Yes

Did implementation of IBM Security Guardium go as expected?

Yes

Would you buy IBM Security Guardium again?

Yes

Other Software Used

IBM Security QRadar SIEM, Forcepoint Data Loss Prevention, Tripwire File Integrity Monitoring

Likelihood to Recommend

It is an adequate product for many purposes. It has a very stable structure in terms of installation, policy and report layout, and database logging. It has a very smooth and simple process for patch upgrading. We can use correlation alarms very effectively. Inactive STAP and Inactive Managed Unit alerts are life saver in some cases. Also, buff usage monitor is a beautiful interface and the buffer of agents is crucial not to lose logs. But, Guardium is not logging tool activities. Also, not logging ".sql" scripts.

IBM Security Guardium Data Protection Review

Modules Used

Overall Satisfaction with IBM Security Guardium