Build Deck v3.07

Architectural Overview of the
IBM Security Systems Portfolio
Ver 3.07 Jun 2014

2014 IBM Corporation
Agenda
The IBM Security Framework and portfolio

Capabilities in the IBM Security Systems domains:
Intelligence and Analytics
Fraud Protection
People
Data
Applications
Infrastructure Distributed
Infrastructure z
IBM Security Framework and the

IBM Security Systems portfolio
33
IBM Security Systems and the IBM Security Framework
Only vendor in the market with end-toend coverage of the security foundation
6K+ security engineers and consultants
Award-winning X-Force research
Largest vulnerability DB and 2nd largest
IP reputation DB in the industry
Partner with IBM Software Group
Services, IBM Security Services and an
extensive partner community for
consulting and delivery
Intelligence
Intelligence
4
Integration
Integration
Expertise
Expertise
IBM Security Systems Portfolio

IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
Security Intelligence and Analytics
QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar
Vulnerability Manager
Advanced Fraud Protection

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management
Guardium Data Security

and Compliance
AppScan
Source
Network
Intrusion Prevention
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
MaaS360 by Fiberlink
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management
Endpoint Security and

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint
IBM X-Force Research

5
Showing the IBM Security Capabilities and Integration

The slide deck uses a representative environment with
typical components, services and communications for
customers/partners (and cloud services), the enterprise
and employees
and then progressively overlays IBM security

capabilities in the context of this representative
environment to show features and integration points
6

(and GRC; IT security + enterprise)
77
NEW
IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
QRadar Packet Capture

QRadar Incident Forensics

QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management

and Compliance
AppScan
Source
Network
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint

8
Generic Environment for ABC Co
but lets focus on the Infrastructure
10
Log Management
11
Security Information and Event Management
12
Application-level and Virtualised Network Monitoring
13
Intelligence and Risk Management
14
Incident Forensic Analysis
15
Intelligence and Vulnerability Management
16
Enterprise GRC Integrating IT Controls for Business Risk View
17
18
18

IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management

and Compliance
AppScan
Source
Network
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint

19
20
Providing Common Fraud Prevention Services from the Cloud
21
Protecting Employee Devices from Fraud
22
Protecting Customer Devices from Fraud
23
Protecting Customer Devices from Fraud without Client-Side Agents
24
Protecting Customer Mobile Devices from Fraud
25
Leveraging Access Management for Fraud Protection
26
Fraud Protection and Security Intelligence
27
People
28
28
The People Domain

IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management

and Compliance
AppScan
Source
Network
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint

29
30
Identity Management
31
Web Access Control
32
Federated Identity/Access Management
33
Mobile Access Management
34
Enterprise (Desktop) Single Signon
35
Privileged Identity Management
36
Identity into Security Intelligence
37
Data
38
38
The Data Domain

IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management

and Compliance
AppScan
Source
Network
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint

39
40
but lets focus on the DB-specific Components
41
Protecting DB Access at the Network Layer
42
Centralised Management of DB Access Control Policy
43
Managing Testing Data Based on Production Data
44
Managing Lifecycle of Hardware Encryption Keys
45
Security Intelligence and Databases
46
Identity Management for Databases
47
Vulnerability Management for Databases
48
Applications
49
49
The Applications Domain

IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management

and Compliance
AppScan
Source
Network
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint

50
51
but lets look at the Application components
52
Source Code and Runtime App Scanning
53
Application Policy Testing
54
XML Appliances and Security
55
Identity Mapping and Security Token Services
56
Common Security Policy Mgmt, Provisioning and Enforcement
57
Security Intelligence and Applications
58
Identity Management for Applications
59
Web Application Protection for Applications
60
Test Data Masking/Cleansing
61
Infrastructure (Network, Server and

Endpoint) Distributed
62
62
The Infrastructure (Network, Server and Endpoint) Domain

IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management

and Compliance
AppScan
Source
Network
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint

63
Generic Environment for Infrastructure
64
Network-level Security and Protection
65
NextGen Network-level Security and Protection
66
Centralised Security Event Management
67
Endpoint Management and Security
68
Endpoint Management for Mobile
69
Network Anomaly Detection Complementing NIPS
70
Centralised Security Information Management
71
Infrastructure for z
72
72
Infrastructure for z
IBM
IBMSecurity
SecuritySystems
SystemsPortfolio
Portfolio
QRadar
Log Manager
QRadar
SIEM
QRadar
Risk Manager
QRadar

Trusteer
Rapport
Trusteer Pinpoint
Malware Detection
Trusteer Pinpoint
ATO Detection
Trusteer Mobile
Risk Engine
People
Data
Applications
Identity
Management

and Compliance
AppScan
Source
Network
Trusteer Apex
Access
Management
Guardium DB
Vulnerability
Management
AppScan
Dynamic
Next Generation
Network Protection
Mobile Security
Privileged Identity
Manager
Guardium / Optim
Data Masking
DataPower Web
Security Gateway
SiteProtector
Threat Management

Management
Federated
Access and SSO
Key Lifecycle
Manager
Security Policy
Manager
Network
Anomaly Detection
Mainframe
Security
Network
Infrastructure
Endpoint

73
Generic Network, Server and Endpoint Environment
74
Drilling into the Mainframe-specific Components
75
Better Administration of External Security Manager Objects
76
Mainframe System Audit, Reporting and Alerting
77
Administering, Auditing and Reporting for z/VM
78
Enterprise-wide Auditing and Alerting
79
Mainframe Security and the Enterprise-wide Security Ecosystem
80
Security
Intelligence,
Analytics &
GRC
People
Data
Applications
Infrastructure
81
Ques
tions
82

Build Deck v3.07

Uploaded by

Copyright:

Available Formats

You might also like

Build Deck v3.07

Uploaded by

Document Information

Original Description:

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Build Deck v3.07

Uploaded by

Copyright:

Available Formats

Architectural Overview of the

IBM Security Systems Portfolio

Ver 3.07 Jun 2014

The IBM Security Framework and portfolio

2014 IBM Corporation

IBM Security Framework and the

2014 IBM Corporation

IBM Security Systems and the IBM Security Framework

2014 IBM Corporation

IBM Security Systems Portfolio

Advanced Fraud Protection

Guardium Data Security

Endpoint Security and

IBM X-Force Research

2014 IBM Corporation

Showing the IBM Security Capabilities and Integration

and then progressively overlays IBM security

2014 IBM Corporation

Security Intelligence and Analytics

2014 IBM Corporation

Security Intelligence and Analytics

QRadar Packet Capture

Security Intelligence and Analytics

Advanced Fraud Protection

Guardium Data Security

Endpoint Security and

IBM X-Force Research

2014 IBM Corporation

Generic Environment for ABC Co

2014 IBM Corporation

but lets focus on the Infrastructure

2014 IBM Corporation

2014 IBM Corporation

Security Information and Event Management

2014 IBM Corporation

Application-level and Virtualised Network Monitoring

2014 IBM Corporation

Intelligence and Risk Management

2014 IBM Corporation

Incident Forensic Analysis

2014 IBM Corporation

Intelligence and Vulnerability Management

2014 IBM Corporation

Enterprise GRC Integrating IT Controls for Business Risk View

2014 IBM Corporation

Advanced Fraud Protection

2014 IBM Corporation

Advanced Fraud Protection

Advanced Fraud Protection

Guardium Data Security

Endpoint Security and

IBM X-Force Research

2014 IBM Corporation

Generic Environment for ABC Co

2014 IBM Corporation

Providing Common Fraud Prevention Services from the Cloud

2014 IBM Corporation