Most Helpful Review
Find out what your peers are saying about IBM Guardium Data Protection vs. Oracle Audit Vault and other solutions. Updated: November 2019.
378,397 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
It allows us to put in controls to make sure that only the right persons access the proper records in the database.
Audit Process Builder – Workflow generator to enhance audit tasks and compliance workflows.
Compliance Quick Start – Quick, GUI, step-by-step guide to automate compliance and give the customer a quick ROI.
The most valuable feature is using the capture operation mode “S-TAP/K-TAP agent”, because all activities in the database are captured, including direct access to the database server by privileged users. This is useful because, even if the database server logs were deleted, the Guardium Collector has already stored such data to enable traceability of access.
The possible number of databases and database servers which can be monitored by Guardium is high. For me, this is a differentiator of IBM.
Encryption is not straightforward, but Guardium made the setup easy for us.
Supports security initiatives and ensures compliance policies.
We now have the ability to begin to understand how people, applications, and service accounts are interacting with data to better protect it.
It has provided us with a unique opportunity to automate risk discovery.
Our clients can see all of their past actions or the wrong activity done on the network. We can load the diagnostics for the business.
A powerful, flexible solution for database traffic monitoring.
The solution is very stable and reliable.
This solution acts as a complete data warehouse for our audit data.
Our client was scheduled to take a year and a half to set up compliance, but by deploying this product they were able to do the compliance reports within three months.
It has reduced the stress of collecting database event logs in silos from each database.
Out-of-the-box policies ensure our compliance with standards like SOX, ISO 27001, and so on.
The biggest complaint that I hear from customers and users is that using this solution requires database skills, yet it is a security and monitoring tool.
Needs easier integration with custom applications.
I have already mentioned to IBM that a primary need is to improve the number of records in the reports above 65,535.
It needs an integration with Optum.
It will not go as fast as you want.
Initial setup is very complex. Once you start interacting with people's databases, they get very hesitant. Then, the amount of social tasks to socialize the solution ensuring people are comfortable with it became a much heavier lift.
Initially it did not have support external applications like, say, Tableau, ServiceNow, Remedy, and the like. They have started growing into it, but I would like to have more and more integration with outside applications.
I am struggling getting through to social.
We would like to see the ability to administer and manage the solution through Enterprise Manager 13c, and development of the dashboards that are generally missing.
Some of our customers were asking about latency when the application wants to get to the database.
The product monitors only the database and not the operating systems.
One feature that is missing is the ability to have a secret server that is always encrypted.
Customized reporting is something that we are struggling with, and it is quite tough for us.
This solution doesn't audit the network.
An easy, friendly user interface would be nice to have, since this would enable administrators to identify important events with a prompt response.
Pricing and Cost Advice
One of the deployments that I know of had three databases, and the yearly fees are approximately $50,000 USD.
The price of Guardium is higher than the main competitor, Imperva. In addition, it's complex as the calculation of the licensing is done by Processor Value Unit (PVU). However, before purchasing a DAP solution, it is important to analyze specific points to evaluate the cost-benefit of each tool. For example: Does the environment to be monitored have mainframes? If so, it's a point for Guardium. If not, a point for Imperva. Note: IBM is looking into a new licensing policy and reducing the price of Guardium.
The biggest challenge is the cost associated with the product, and the cost of maintaining. Everything is not translated directly to the benefits we see. There are benefits, yes, but if I were writing the check, would I buy Guardium? No.
Guardium won mostly because of our scope and scale. It was able to perform at the scale that we wanted to use it.
If you are researching this type of solution, work with IBM.
Guardium has not saved us time or money.
I would suggest to review the type of data, need for security, and if the organizational structure needs the options IBM Guardium provides.
For the bank, the license was $48,000 last time. That was the licensing for the bank on just one license.
Oracle can be an expensive solution depending on the options and user needs.
This solution is definitely not expensive, and it is a small fraction of the overall database licensing costs.
The licensing cost is about $360,000, annually.
out of 17 in Database Security
Average Words per Review
out of 17 in Database Security
Average Words per Review
Compared 45% of the time.
Compared 21% of the time.
Compared 7% of the time.
Compared 56% of the time.
Compared 28% of the time.
Compared 6% of the time.
Also Known As
|InfoSphere Guardium, Guardium, IBM Guardium||Audit Vault|
The IBM Security Guardium portfolio empowers organizations to grow their business and prove compliance with smarter data protection capabilities. It provides complete visibility, actionable insights, real time controls and automated compliance workflows throughout the entire data protection journey, to support your most critical data protection needs.
IBM Security Guardium delivers discovery & classification, vulnerability & risk assessments, real-time monitoring & alerting, encryption, advanced analytics and compliance reporting across structured, unstructured, and semi-structured data in on-prem (including mainframe), cloud, and across hybrid cloud environments.
|Oracle Audit Vault monitors Oracle and non-Oracle database traffic to detect and block threats, as well as improves compliance reporting by consolidating audit data from databases, operating systems, directories, and other sources.|
Learn more about IBM Guardium Data Protection
Learn more about Oracle Audit Vault
|Abu Dhabi Department of Finance, Kingdom of Saudi Arabia Ministry of Health, Educational Testing Service, Ryohin Keikaku Co. Ltd., SPC Brasil, REDISA, Qatar Olympic Committee, Seneca College, Hunan Social Insurance Management and Service Bureau,|
Financial Services Firm48%
Software R&D Company22%
Financial Services Firm13%
Comms Service Provider9%
Financial Services Firm38%
Comms Service Provider13%
Non Tech Company13%
Software R&D Company30%
Financial Services Firm22%
Comms Service Provider10%