InfoSphere Guardium Activity Monitor

Monitor access to databases and automate compliance controls

IBM® InfoSphere® Guardium® Activity Monitor oversees all transactions including authorized and unauthorized data access. It protects data centers of all sizes, requires no changes to databases or applications and does not impact performance. InfoSphere Guardium Activity Monitor is the monitoring and audit solution for big data environments.

InfoSphere Guardium Activity Monitor offers:

Complete visibility into all data activity—for all platforms and protocols.
Monitoring and policy enforcement—for all data access, change control and user activities.
Centralized aggregation of audit data—for enterprise compliance, reporting and forensics.
Broad heterogeneous support—for all leading platforms and operating systems, including big data environments.

Complete visibility into all data activity

Gives you complete visibility into all transactions for all platforms and protocols by users including database administrators, developers and outsourced personnel and applications.
Identifies application users who make unauthorized changes from a common service account such as Oracle E-Business Suite or PeopleSoft Enterprise.
Provides user and application access monitoring independent of native database logging and audit functions.
Improves data security by detecting unusual database read and update activity from the application layer.
Automates sensitive data discovery and classification.

Monitoring and policy enforcement

Monitors and enforces policies for sensitive data access, privileged user actions, change control, application user activities and security exceptions.
Uses access policies to identify anomalous behavior by comparing data activity to a normal behavior baseline.
Supports exception policies based on definable thresholds such as SQL errors.
Uses extrusion policies to examine data leaving the database for specific value patterns such as credit card numbers.
Supports policy-based actions such as near real time security alerts, software blocking and user quarantines.

Centralized aggregation of audit data

Aggregates data throughout your enterprise for compliance auditing and reporting, correlation and forensics without enabling native database audit functions.
Provides a tamper-proof audit trail that supports the separation of duties required by auditors.
Delivers customizable compliance workflow automation to generate compliance reports and distribute them to oversight teams for electronic sign-offs and escalation.

Broad heterogeneous support

Monitors and audits Hadoop-based systems such as IBM InfoSphere BigInsights™ and Cloudera.
Supports enterprise databases and operating systems including IBM DB2®, Teradata, IBM Netezza®, Sybase, Microsoft SQL Server, UNIX and Linux.
Supports key enterprise resource planning and customer relationship management applications as well as custom and packaged applications.
Provides capabilities to track file-sharing activities on major platforms including Microsoft SharePoint.
Discovers and classifies sensitive enterprise data for all platforms and protocols.