Coming October 25: PeerSpot Awards will be announced! Learn more
2019-06-04T07:43:00Z
Julia Frohwein - PeerSpot reviewer
Senior Director of Delivery at PeerSpot (formerly IT Central Station)
  • 0
  • 97

What needs improvement with IBM Guardium Data Protection?

Please share with the community what you think needs improvement with IBM Guardium Data Protection.

What are its weaknesses? What would you like to see changed in a future version?

20
PeerSpot user
20 Answers
Farkhund Abbas - PeerSpot reviewer
Internet Security Specialist at National Bank of Pakistan
Real User
Top 20
2022-08-11T11:33:54Z
11 August 22

Right now, we're in the development phase for IBM Guardium Data Protection, so I don't have any recommendations about additional features and room for improvement in the solution. We're very excited to work on IBM Guardium Data Protection because we are new to the solution, and we're still exploring product features. We're very excited about integrations and use case creation, and it's only after six to eight months that I'll be able to share my recommendations in terms of additional features the solution should have. We did find some difficulty in deploying IBM Guardium Data Protection here in Pakistan because of the lack of resources.

AF
CyberSecurity Leader Specialist at KLNCIT
Real User
Top 20
2022-06-16T12:13:00Z
16 June 22

The documentation could be better.

CR
Head, Cybersecurity at a tech services company with 11-50 employees
Real User
Top 5Leaderboard
2022-05-08T05:51:30Z
08 May 22

An improvement would be to make the pricing relative in terms of regions. In the next release, IBM should incorporate more AI capabilities to better detect vulnerabilities.

AsifIqbal - PeerSpot reviewer
Chief Information Security Officer at MIB
Real User
Top 5Leaderboard
2022-05-06T10:32:49Z
06 May 22

I've found that the backup and recovery is very resource-hungry and requires a huge amount of available storage capacity along with other components, such as processing the RAM. We have a need for 200 GB of data to restore. Reporting needs to be improved as does integration capability with the other DBs. From a technical perspective, reporting is good but not from the management perspective. Due to the legacy application, there is sometimes another version of the DB that is not supported and requires a restart which is a very technical aspect of running applications.

DevidharsanJ - PeerSpot reviewer
Information Security Engineering Consultant at Optum
Consultant
Top 20
2022-04-11T18:30:00Z
11 April 22

IBM should add more database security features to Guardium. They could add user profiling, anomaly detection, and machine learning. IBM has user profiling, but they need to strengthen it. It should make sense for the users. It should remove most of the false positives. Anomaly detection would help. Let's say you had a thousand anomalies and 990 are false positives. Who will take care of this? People will simply ignore all 1,000. They need to improve a lot in this area. They're coming out with a new product called Guardium Insights. It will be able to store more data, and its algorithm will be stronger. That will probably fix all my concerns. They have yet to release the beta version.

Peter Arabomen - PeerSpot reviewer
Security Engineering, Team Lead at Fidelity Bank Plc
Real User
Top 5Leaderboard
2022-03-23T00:41:12Z
23 March 22

An area for improvement in IBM Guardium Data Protection is automation. I would want it to be more automated, as it runs too much on manual processes. More processes should be automated on the application. For example: I want a learning environment where IBM Guardium Data Protection can learn the behavior of an environment, e.g. it should be more intelligent, because there is no intelligence yet on the application. It should be able to learn, e.g. you cannot try to block IBM Guardium Data Protection, in general. This is what I want to see: I want to be able to block it, in general. I want the application to be able to learn, and learn from the environment. IBM should try to bring in more of e-learning to the application. That's another thing that's missing. What I'd like to see in the next release of IBM Guardium Data Protection is for them to make resources available for the end users to be able to do a self-study, to understand more deeply how the environment works. Having user guides so people can learn more on what the application can do, about its operations, etc. I would like them to occasionally give users tips, e.g. how to do something, how to make your work easy, etc. This is how they can add value, in particular give more value for money, as they give valuable tips, just like how Microsoft does it, for example: "You can use IBM Guardium Data Protection to do this", then they should explain how to do it.

Learn what your peers think about IBM Security Guardium Data Protection. Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
633,952 professionals have used our research since 2012.
ND
Technical Manager at a computer software company with 51-200 employees
Real User
Top 5Leaderboard
2022-01-04T21:03:08Z
04 January 22

If IBM Guardium Data Protection could find a way to not have a lot of coding and development required to get the solution up and running it would be an advantage. The information of the agent could improve, which is necessary for us to monitor the databases would be a great benefit.

VG
Security Engineer at a tech services company with 501-1,000 employees
Real User
Top 20
2021-12-15T17:35:00Z
15 December 21

An area for improvement would be the user interface - currently, it takes around two to three months to become comfortable using it. In the next release, I would like to see more integration with other vault vendors.

RM
Senior Analyst at a energy/utilities company with 10,001+ employees
Real User
Top 5Leaderboard
2021-12-03T13:53:00Z
03 December 21

I would like to see improvements in scalability and easier installation.

AK
CTO at a tech services company with 11-50 employees
Real User
Top 20
2021-11-10T11:02:00Z
10 November 21

The analysis part of this product could be improved. It's a very comprehensive product, so the features it has complement customer requirements. But I would like to see more emphasis on analytics, and it would be great if they added machine learning. They already have analysis insights, but a comprehensive analytical feature that's already incorporated into the solution would be very helpful.

MS
Security Specialist at a tech services company with 51-200 employees
Real User
2021-10-01T05:57:00Z
01 October 21

Guardium's storage capabilities could use some improvement. I'd also like to have some better integration using digital technology or a connector.

mehrab hussain - PeerSpot reviewer
Junior Software Engineer at a computer software company with 201-500 employees
Real User
Top 5Leaderboard
2021-09-15T13:27:47Z
15 September 21

It would be helpful, and convenient to improve the Chat support.

MW
DBA at a pharma/biotech company with 10,001+ employees
Real User
Top 5Leaderboard
2021-07-30T21:38:16Z
30 July 21

In general, I find the solution a little complicated to use. Another problem is that we have encrypted traffic on Oracle and it requires a database outage. That's creates problems because you're monitoring critical systems and they don't like outages.

Md Saiful Hyder - PeerSpot reviewer
AGM, Enterprise Solutions at Omgea Exim Ltd
MSP
Top 5Leaderboard
2021-01-26T03:19:13Z
26 January 21

One thing I'm always thinking with regard to Guardium Data Protection is that, when compared to Oracle AVDF, Oracle's often got the upper hand when it comes to the standard features. So I believe that needs to be addressed by IBM. Guardium Data Protection is far better in terms of external integration. But in terms of firewall features, like when you're blocking activities, it's as if Oracle AVDF simply has superior features. This is just from third-party observations, but the users of Oracle AVDF are saying that when it comes to the firewall and protection functionality, they're much more inclined to AVDF. Considering the competitive benefits that AVDF is providing compared to Data Protection, I can see that some improvement is required in terms of the firewall-related features. Another observation I have is that industry resources are not available to handle this product, and I believe that deployment should be much easier than what we have right now. I'm thinking along the lines of some kind of wizard that makes it easier for users to get started right away. For example, to make it so they can do the deployment easier with drag and drop, etc. It has to be more user-friendly so that anybody can deploy it, anybody can adopt it, and anybody can do the configuration. It has to be built in such a way that even if you are not a product expert, whether from IBM or otherwise, or that if you know only Word, then you can still configure it. So they have to offer that flexibility in the product. They can hide the complexity by bringing in more GUI elements so that people can more easily get on board. And also they can introduce the knowledge base side by side so that whenever they are using the product, they can quickly check what exactly needs to be configured. You have Redbooks, and Redbooks can help but maybe they can include something extra. While users are installing maybe IBM can put in some guidance, "Okay, if you do this then you configure this and that." At the same time, the market has lots of Oracle expertise here. But for IBM, there are no local resources available, and we are highly reliant on external resources. So, I would highly recommend that IBM initiates something like a certification campaign for the end user, as well as for the partner. As a partner, we are trying to do our level best, but I believe it would really benefit users for IBM to come up with some pre-certification campaigns like AWS and Azure do, especially in terms of how they promote their products through learning. What I believe is that, in order to establish the product in the market, IBM has to invest in developing resources. IBM need to strategize in such a way that it's not just selling. IBM has to develop the resources within the industry, so that there's more word of mouth; people are now talking about AVDF, because they only know about AVDF.

VD
Socio Director at RAMDIA
Real User
Top 20
2020-12-20T08:09:07Z
20 December 20

The most important requirements for us are integration with new database solutions and the ability to manage things like Jailbreak or something like that. Its reduction feature can also be improved. It has a functionality called reduction, which is like masking data, but it is just a replacement of characters. Sometimes the customer needs more than this. It would be good if it was more advanced or complete. We also have a problem with this solution because the IBM aggregator isn't working very well. IBM has created big data intelligence for Guardium, and occasionally, customers need three or four months of data, but they can't run it from the collectors. It can have a better dashboard and more pre-defined use cases for those customers who don't have any idea about data protection or don't have expert personnel in this area. For example, they can include five use cases for banks and five use cases for retail.

AsifIqbal - PeerSpot reviewer
Chief Information Security Officer at MIB
Real User
Top 5Leaderboard
2020-07-28T06:50:18Z
28 July 20

The reporting on the solution is weak. It needs to be improved and enhanced. From a management point of view, it's really important to have reports. They should be offering easily extractable reports that we, as users, can benefit from. The technical support is very poor. Integrations are difficult to configure upon the initial setup. The solution needs to offer data encryption.

TA
Information Security Consultant at a tech services company with 51-200 employees
Reseller
2020-06-08T06:11:04Z
08 June 20

The price of this solution is quite high for smaller organizations, so they should release a version that is affordable for small and medium-sized businesses.

SK
VP - Enterprise Security & Cloud Business at a tech vendor with 1,001-5,000 employees
Real User
2020-06-03T06:54:50Z
03 June 20

With these solutions, flexibility is always an issue and that applies to Oracle and other similar products. Integreon, which is much smaller in size, is likely to be more flexible than IBM. There is a big concern here in India about deploying on cloud so the one thing I would like to see in the next release is a fast option from IBM that is hosted from their India cloud data center.

AV
Information Technology Consultant at a tech services company with 201-500 employees
Consultant
2020-05-10T08:06:04Z
10 May 20

Sometimes the connectors to the databases need to be manually updated and we have to configure them again, which is something that should be improved.

MN
Trusted Security Advisor at a tech services company with 501-1,000 employees
Real User
2019-06-04T07:43:00Z
04 June 19

The biggest complaint that I hear from customers and users is that using this solution requires database skills, yet it is a security and monitoring tool. Specifically, it is a tool that is used for monitoring the database administrator. The database expert will not want you to implement control on top of him, so you instead need to utilize a person from security. However, security people do not have a complete set of database skills. So, there is always a gap in the administration and the person who is going to manage this tool. As such, the person using this tool feels that it is complicated, doesn't know where to go and what to do. I have heard that the latest version has better support, with better access, and a better GUI that is easier to use than before. At the same time, this is still one of the main concerns that I always hear from the customers. The second most common complaint that I hear is in regards to the support from IBM. Some of the cases are open for a very long time because they do not have local engineers to come and look at the issues. In our region, my company is providing 24/7 support to help close these gaps. This has strengthened our presence in the market, but in other regions, this is still a complaint that customers have.

Related Questions
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Nov 01, 2021
How does IBM Guardium Data Protection compare with Imperva SecureSphere Database Security? Which is the better product?
See 1 answer
01 November 21
IBM Security Guardium Data Protection is a solution for database security from IBM that gives complete visibility, control, and analysis to secure sensitive data and comply with regulations. IBM Security Guardium is ideal for enterprise-level companies. One of our clients, a bank, uses it for monitoring their database activity. IBM Guardium can track the database activity and detect vulnerabilities such as SQL injections. It is very stable and ideal for safeguarding sensitive client information and data. It prevents leaks and data loss. One of the advantages of IBM Guardium is that it monitors the database without changing the configuration. The policy setup process enables you to define security policies down to the last detail. Guardium makes it easier to comply with regulations because it has pre-defined policies according to GDPR. The support is very good, and the reporting is very straightforward. The interface is not very user-friendly if you are not used to IBM products, though. Once you get over the learning curve, it does get easier. We found that the SIEM integration is pretty poor. Imperva Data Security is also an enterprise application for data security, but unlike IBM Guardium, it combines a database with file security management. Imperva is very reliable and sends alerts whenever it detects suspicious activity. It records all database transactions for analysis. Imperva works very well to monitor new access to the database and provide alerts about unauthorized users. Regarding compliance, Imperva offers multiple options for auditing; the data is presented in an audit-friendly format and is extremely resilient, even in Linux. The user interface can be confusing, though, with so many menu options. Someone not familiar with the product will have a difficult time trying to configure the agents. Additionally, it requires fine-tuning to get actionable insights from the alerts. A big inconvenience is that some common encryption keys are not compatible with Imperva. Conclusions All in all, if your use case requires tight auditing processes, then Imperva is a better solution. IBM would be more suitable for enterprises using other IBM products.
it_user812028 - PeerSpot reviewer
Database Expert
Feb 12, 2018
Which solution is better for database security? IBM Guardium or Imperva SecureSphere Database Security? If we look at the technical aspects which one should we choose?
2 out of 8 answers
it_user724434 - PeerSpot reviewer
Systems Engineer at IBM
05 February 18
I work for IBM so my response is going to be biased. Of course, Guardium is far superior to Imperva. Both products do a great job at providing database activity monitoring. The difference is in the details. There are architectural and administrative qualities that I believe set Guardium apart.
Victor López Medina - PeerSpot reviewer
Implementation Engineer at a comms service provider with 51-200 employees
05 February 18
Hi, both solutions have good things, but in operational environments, Imperva works better, I think IBM works better in infrastructure or another stuff, Imperva is the specialist in DBF and data protection, all imperva engineers work for it, Imperva solutions was born as firewall solution, is its main functionality. I'd worked with both, and support as well, and If I can recomended one of them, the answer is imperva without doubts.