SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers
Story image
Imperva updates WAAP and Data Security offerings with emphasis on simplicity
Tue, 2nd Feb 2021
FYI, this story is more than a year old

Imperva has optimised its Web Application and API Protection (WAAP) and Data Security products, according to a statement from the company.

New simplified subscription plans and security services have been designed to make it easier for businesses to protect critical assets from a growing volume of complex and automated threats that present the highest risk of a data breach and business disruption.

The Imperva App Protect plans provide capabilities such as client-side protection (CSP) to prevent form-jacking attacks, account takeover (ATO) mitigation to stop credential stuffing attacks and runtime protection (RASP) to defend against software supply chain attacks.

In addition, the new cloud-based Managed DNS service is included to ensure the operational availability of websites, applications and APIs, and to reduce on-premises DNS costs.

To further support resource-constrained businesses, value-based services from Imperva are included as part of the new subscription plans.

Based on the company's industry expertise and threat intelligence research, the services aim to help understaffed IT teams build a stronger security posture.

Advanced Reporting on a monthly and quarterly basis is included in the Imperva App Protect subscription plans to give businesses a holistic overview along with a security assessment and statistical analysis of their application security environment.

Proactive Monitoring is included in select plans to help detect anomalies, scan for the use of hacking and development tools, and track DNS changes.

After analysing and validating incidents, Imperva will proactively provide an anatomy of the incident along with recommendations for remediation.

Imperva CEO Pam Murphy says, “As businesses modernise their infrastructure and pivot to a digital world, the variety, speed and intensity of attacks they are facing is both unprecedented and more than they can handle.

“For nearly 20 years, Imperva has delivered innovative solutions to help customers keep pace with the growing complexity of attacks.

"With today's announcement, Imperva is making it easier for resource-constrained businesses to stop fraud, prevent business disruption and ensure application resiliency.

Businesses can experience the capabilities of the Imperva product portfolio through free self-service trials that allow immediate protection of critical assets, the company states.

The Imperva Application Security self-service trial includes the cloud web application firewall (WAF), DDoS protection, client-side protection, account takeover detection and attack analytics.

Out-of-the-box, a business will know if they are under attack and an onboarding wizard enables ease of deployment with guided steps to customise rules and more, Imperva states.

In addition, the Imperva Cloud Data Security self-service trial provides needed data security for Databases as a Service (DBaaS). It detects policy-violating behaviour without slowing DevOps, auto-discovers data and establishes controls for ungoverned databases.