ABOUT IMPERVA
DDATABASE SECURITY: AUDIT & PROTECT CRITICAL DATA SETS
In today's business environments data security is often thought of only when looking at data as it traverses the network boundaries but clearly some of the biggest threats come from unsecured data-base and file systems. Imperva's SecureSphere appliance delivers exacting data-base and file system remediation to assure your protection.
SecureSphere Database Security solutions secure sensitive data stored in databases. SecureSphere provides full visibility into data usage, vulnerabilities and access rights. It enables security, audit and risk professionals to improve data security and meet compliance mandates.
Unique to the industry, SecureSphere enables customers to optimize the deployment of database security solutions by combining remote assessment scans, agent-based monitoring and network activity monitoring. Agents can be used for monitoring local privileged activity exclusively, or for monitoring all database activity.
Key Capabilities
- Audit all access to sensitive data by privileged and application users
- Alert or block database attacks and abnormal access requests, in real time
- Detect and virtually patch database software vulnerabilities based on Imperva ADC research – reducing the window of exposure
- Identify excessive and dormant user rights to sensitive data
- Accelerate incident response and forensic investigation with advanced analytics
SecureSphere Database Security Products
Database Activity Monitoring (DAM)
Delivers automated scalable activity monitoring, auditing, and reporting for heterogeneous database environments. SecureSphere helps organizations demonstrate regulatory compliance through automated processes, analysis, and reporting. SecureSphere accelerates incident response and forensic investigation with centralized management and advanced analytics.
Database Firewall (DBF)Provides real-time database protection against internal and external threats by alerting or blocking attacks and abnormal access requests. SecureSphere provides ‘virtual patching’ for database software vulnerabilities reducing the window of exposure and impact of long patch cycles. DBF includes the auditing and analytics capabilities offered by DAM.
User Rights Management for Databases (URMD)Enables automatic aggregation and review of user access rights. SecureSphere helps identify excessive rights and dormant users based on organizational context and actual data usage. Using URMD organizations can demonstrate compliance with regulations such as SOX, PCI 7, and PCI 8.5 and reduce the risk of data breach.
Discovery and Assessment Server (DAS)Provides vulnerability assessment and configuration audits allowing users to measure compliance with industry standards and best practices. Data discovery and classification enable organizations to accurately scope security and compliance projects. With a combined analysis of sensitive data and vulnerabilities, SecureSphere helps prioritize and better manage risk mitigation efforts.
SecureSphere Database AgentsSecureSphere database security solutions utilize host-based agents to monitor and audit database activity, and eliminate monitoring blind spots. Agents can be configured for monitoring local privileged activity exclusively, or for monitoring all database activity. Combined with network activity monitoring, the agents enable an optimized deployment with minimal overhead.
PLATFORM SUPPORT
PRODUCTS
IMPERVA FILE PROTECTION
Monitor, Audit and Control Access to Sensitive File DataBusinesses deploy a variety of file security solutions to protect sensitive file data from insider threats and ensure it is kept in compliance with regulations. However, even after making significant investments in infrastructure and staff to protect unstructured data, organizations are still challenged to identify who owns their file data, which users have access rights, and who is actually using the data. These core capabilities are critical to delivering file security and managing file data efficiently day-to-day.
SecureSphere File Security products protect sensitive file data stored on file servers, network attached storage devices, and SharePoint. SecureSphere provides full visibility into data ownership, usage and access rights and enables executives, auditors, security and IT managers to improve data security and meet compliance mandates.
Key Capabilities
- Identify excessive user access rights and enable a complete file rights audit and review cycle
- Audit all access to files including access by privileged users and applications
- Alert on, or block, file access requests that violate corporate policies
- Identify data owners
- Accelerate incident response and forensic investigations through centralized management and advanced analytics
SecureSphere File Security products are part of the SecureSphere Data Security Suite (DSS). DSS extends end-to-end protection to web applications, databases and files.
SecureSphere File Security Products
File Activity Monitoring (FAM)
SecureSphere File Activity Monitoring delivers real-time monitoring and auditing of access to files stored on file servers and network attached storage (NAS) devices. SecureSphere file auditing provides flexible alerting, analytics, and reporting so administrators can document and communicate access activity to key stakeholders, and demonstrate regulatory compliance. FAM includes User Rights Management for Files for file rights auditing.
File Firewall (FFW)SecureSphere File Firewall prevents internal abuse and unauthorized access of sensitive file data, and helps ensure file integrity. SecureSphere monitors access activity, generates alerts based on user-defined rules, and blocks access that violates business policy. Centralized management, analytics and reporting accelerate forensic investigations and security incident response. FFW includes User Rights Management for Files for file rights auditing.
Watch a Demonstration
