Imperva Blog|Login|中文Deutsch日本語
Regulatory & Industry Compliance

Streamlining Regulatory and Industry Compliance

Regulatory & Industry Compliance Organizations often struggle with regulatory compliance requirements, such as PCI DSS, SOX, HIPAA, and others. Industry regulations, federal regulations, and privacy acts require implementing audit and security controls, to protect regulated data. This is a complex challenge for IT. That's why it is important to choose a partner with expertise in data center security, application requirements, and databases and file systems.

Audit and Security Control


Sensitive Data Access Auditing
Automates auditing of access, users, and data systems containing regulated data. Allows organizations to more easily achieve compliance with regulations spanning from PCI DSS to SOX.

Privileged User Monitoring
Allows organizations to closely monitor privileged-users, without constraining their legitimate access requirements. Establishes clear separation of responsibilities for effective monitoring.

Development and Maintenance of Secure Web Applications
Provides controls that minimize exposure to security vulnerabilities in systems and software, in compliance with PCI DSS requirements. Eases the challenge of meeting web application, database, and file security requirements.

Database Security
Product NameCapabilities
SecureSphere Database Activity Monitoring
or
SecureSphere Database Firewall
  • Compliance with database audit and security requirements mandated by:
    • PCI DSS
    • SOX
    • HIPAA
    • Other regulations
  • Audit all access to sensitive data
  • Monitor all privileged users and privileged activities
  • Maintain secure databases through vulnerability management, virtual patching and blocking database attacks
SecureSphere Discovery and Assessment Server
  • Discover newly created databases and database objects in scope for audit and security projects
  • Maintain secure databases through vulnerability and patch management
User Rights Management for Databases
  • Address PCI 7 and 8.5 which require management of user access rights based on business need to know
File Security
Product NameCapabilities
SecureSphere File Activity Monitoring
or
SecureSphere File Firewall
  • Compliance with file audit and security requirements mandated by:
    • PCI DSS
    • SOX
    • HIPAA
    • Other regulations
  • Audit all access to sensitive data
  • Maintain secure files by blocking unauthorized access
User Rights Management for Files
  • Address PCI 7 and 8.5 which require management of user access rights based on business need to know
Web Application Security
Product NameCapabilities
SecureSphere Web Application Firewall
  • Maintenance of Secure Applications (PCI requirement 6)