Ponemon Institute: 2009 PCI DSS Compliance Survey

Imperva and the Ponemon Institute present the findings of a survey across more than 500 U.S. and multinational IT security practitioners showing that, despite the Payment Card Industry’s (PCI) Data Security Standard (DSS), companies still struggle with data security, putting consumers at continued risk for identity theft. In fact, 71% of companies surveyed admit to not making data security a top strategic initiative, and 55% admit to only securing credit card information and not sensitive information such as Social Security numbers, driver’s license numbers, and bank account details. However, the survey also found that companies taking a strategic approach to PCI compliance have fewer data breaches.

Building a Web Application Security Program, 2009

This report by industry experts at Securosis shows how to build a pragmatic Web application security program that constrains costs while still providing effective security. Rather than digging into the specific details of any particular technology, this report shows all the basic pieces and how to put them together. Beginning with some background on how Web applications are different than traditional enterprise applications or commercial off-the-shelf products. Next it provides basic business justifications for investments in Web application security you can use to gain management support. It focuses on the particular security needs of web applications, and then delves into details of the major security components and how to pull them together into a complete program, with examples built around typical use cases."

The Forrester Wave^TM: Enterprise Database Auditing And Real-Time Protection, Q4 2007

According to Forrester, "Imperva offers the most comprehensive database auditing solution to support rigorous enterprise auditing requirements. SecureSphere's centralized management server supports central administration of audit data and policies through a single GUI, making it easier to deploy across many databases and servers..."

Imperva Takes Control of the Datacenter

"Imperva's SecureSphere Database Monitoring Gateway unobtrusively addresses the end-to-end auditing requirements of the chain of data security. The datacenter becomes more secure and compliance requirements for database auditing can be met with no impact on deployed applications… Imperva's SecureSphere product line allows security operations to provide independent oversight of the business application infrastructure, allowing the protected business to grow with confidence."