IBM Security Guardium can be improved in terms of several aspects. One is for the inspection engine. They define in the documentation that the inspection engines are auto-discover, but when we try to discover them, they are not discovered fully. They skip some of the databases. In this scenario, they need to work on this so that we can capture the complete database logs from any server. Policies are another area that needs improvement. We used some skip-logging policies for particular commands in IBM Security Guardium. We have applied the whitelisting in our environment. We have created one group and defined everything in that group, but when we check the logs, those logs are still present. We have worked multiple times with IBM on this issue. To capture the logs from Azure servers and cloud servers, we require a secondary tool. If they combined something and built functionality to capture cloud server logs within IBM Security Guardium, that would be beneficial. The license cost would be different, but we could capture the logs in the same environment. They could also provide more policies or compliances for users. IBM is working on an AI tool to replace the complete IBM Security Guardium product. According to documentation, IBM Security Guardium might be replaced by an AI-based solution in the next five to ten years.
IBM Security Guardium is a comprehensive data protection solution designed to safeguard sensitive information through efficient monitoring and management practices.Focused on addressing data security challenges, IBM Security Guardium delivers advanced capabilities for monitoring, reporting, and auditing. It supports real-time security compliance, risk management, and data activity monitoring, aimed at providing enterprises with peace of mind by reducing potential threats and vulnerabilities....
IBM Security Guardium can be improved in terms of several aspects. One is for the inspection engine. They define in the documentation that the inspection engines are auto-discover, but when we try to discover them, they are not discovered fully. They skip some of the databases. In this scenario, they need to work on this so that we can capture the complete database logs from any server. Policies are another area that needs improvement. We used some skip-logging policies for particular commands in IBM Security Guardium. We have applied the whitelisting in our environment. We have created one group and defined everything in that group, but when we check the logs, those logs are still present. We have worked multiple times with IBM on this issue. To capture the logs from Azure servers and cloud servers, we require a secondary tool. If they combined something and built functionality to capture cloud server logs within IBM Security Guardium, that would be beneficial. The license cost would be different, but we could capture the logs in the same environment. They could also provide more policies or compliances for users. IBM is working on an AI tool to replace the complete IBM Security Guardium product. According to documentation, IBM Security Guardium might be replaced by an AI-based solution in the next five to ten years.
Adding AI would really assist in improving IBM Security Guardium, but overall, it's a very mature tool, so there aren't many improvements needed.