3038 - 扩展 IBM Sentinel 以保护超大型 EPIC IRIS 环境.pdf

《3038 - 扩展 IBM Sentinel 以保护超大型 EPIC IRIS 环境.pdf》由会员分享，可在线阅读，更多相关《3038 - 扩展 IBM Sentinel 以保护超大型 EPIC IRIS 环境.pdf（14页珍藏版）》请在三个皮匠报告上搜索。

1、3038-Scaling IBM Sentinel To Protect UCLAs Large EPIC IRIS EnvironmentJose GarciaSr.Manager,Hybrid Storage and Database Administration,UCLA Health Information TechnologyMatt SmithIBM Storage Defender Product ManagerControl Plane,Threat Detection&PosturePrimary StorageBackup StorageIBM Storage Archiv

2、eArchive your data for long term retentionSentinel&Copy Data MgmtTake and scan app consistent,immutable snapshots for anomaliesStorage VirtualizeVirtualize your storage to modernize and consolidateData Resiliency ServiceOrchestration,Governance and Malware scanningData Management ServiceCombined bac

3、kup managementData ProtectModern data protectionStorage ProtectTraditional data protection supporting disk,tape and cloudIBM Storage FlashSystemFlashSystem foundational resilienceZero TrustZero TrustSingle sign on and multi-factor authenticationObject based access control Two-person integrityEncrypt

4、ion at restSafeguarded CopySafeguarded CopyImmutable snapshotCannot be changed,must be cloned to access dataOnly system can manage retention,delete older copiesPolicyPolicy-based Replicationbased ReplicationTwo and three-site high availability and disaster recoveryPolicy driven Simplified management

5、 and failoverRansomware DetectionRansomware DetectionHardware-based,within FlashCore Module drivesAnalyses every IO for early detection of active ransomwareOne part of a multi-layer ransomware storySchedule crash-consistent or application-aware snapshotssnapshots on primary storageImmutable copies a

6、re taken to avoid copies later becoming compromisedPrimary storage from multiple vendors supportedCopies taken on FlashSystem storage FlashSystem storage can be deep scanned by CyberSense for anomalies and ransomwareSentinel-Copy Data Management&Index Engines CyberSensePrimary StorageCopy Data Manag