ShareDiscovery and Assessment for Databases
The Imperva SecureSphere SE Discovery and Assessment Server delivers a full database vulnerability assessment solution that discovers databases in networks, classifies the data they contain, and assesses vulnerability risks associated with that data. In addition to known databases, SecureSphere can identify rogue servers and help discover the data they contain. Organizations can use SecureSphere to automatically classify the database data as Personally Identifiable Information (PII), financial data, SOX, or PCI-relevant data, or custom data types. SecureSphere then helps you manage risks by performing vulnerability assessment tests and mapping test results to classified data.
The SecureSphere SE Discovery and Assessment Server is an intuitive and easy to deploy solution for medium enterprises that need vulnerability management for databases within their organization. Organizations needing additional upgrade paths may also consider the Enterprise Edition Discovery and Assessment Server.
Benefits
- Database platform, software, and configuration vulnerability analysis
- Automatic network discovery of database servers
- Comprehensive data classification by pre-defined or custom data types
- Risk scoring for vulnerability management
SecureSphere SE Discovery and Assessment Server Features
- Automated Database Server Discovery - SecureSphere discovers known and rogue servers over the network and reports servers, platforms, software, versions and other critical information.
- Data Classification - SecureSphere locates sensitive data on discovered databases. Data is classified by data type, including PII (Personally Identifiable Information), financial data, credit card numbers, PCI, SOX, and custom types.
- Vulnerability Assessment - SecureSphere performs non-intrusive assessment to detect hundreds of platform, software, and configuration vulnerabilities specific to the assessed database platform. Comprehensive reports recommend remediation steps and actions.
- Risk-based Vulnerability Management – Providing risk-scoring based on data classification and assessed vulnerabilities enables SecureSphere to help organizations prioritize security activities.
- Clear, Relevant Reports analyze Database Threats – The SecureSphere Discovery and Assessment Server includes intuitive and easy-to-understand reports that provide high-level summaries of security status as well as detailed, drill down reports with individual assessment results. Pre-defined reports make it easy to document compliance to auditors.
- Scheduled Assessments and Report Distribution – Saving operational time and effort, organizations can schedule one-time or recurring database assessments.
- Inclusive Vulnerability Knowledgebase – With the most in-depth and current database vulnerability assessments, customers can be assured that SecureSphere will uncover all vulnerabilities and configuration flaws.
- Up-to-date Vulnerability Assessments – The Imperva Application Defense Center (ADC) constantly analyzes the latest database threats and vulnerabilities. Assessments are continually and automatically updated.
SE Discovery and Assessment Server Specifications
| Specification | Description |
|---|---|
| Supported Database Platforms |
|
| Automated Discovery |
|
| Data Classification |
|
| Vulnerability Assessment |
|
| Enterprise Application Assessments |
|
| Compliance Assessments |
|
| Risk Management |
|
| Scheduling |
|
| Actions |
|
| Assessment Updates |
|
| Performance Overhead |
|
| Management |
|
| Role-Based Controls |
|
| Event Notification |
|
| Reports |
|
| Report Formats |
|