FlexProtect
- Cost-efficient
- Integrated
- Secure
Application security
FlexProtect Plus
Learn moreFlexProtect Premier
Learn moreComplete data and application security that lets you deploy protection when and where you need it - on-premises or in the cloud.
Maximum data and application security that gives you all that Imperva has to offer.
Cloud Web Application Firewall
A cloud WAF that protects applications against all attacks wherever they're located; on-premises, in public or private cloud. Imperva cloud WAF is PCI-certified, customizable, SIEM-ready and tuned for blocking threats with minimal false-positives. Easy setup ensures rapid time to benefit.
API Security
Protects websites and APIs with an intuitive single stack approach. Enforces positive security models automatically, integrating seamlessly with leading API Gateway vendors.
SIEM Integration
Integration with leading Security Information and Event Management (SIEM) systems, including Splunk, ArcSight, QRadar and more.
Web Application Firewall Gateway
An appliance or virtual WAF that protects applications against all attacks wherever they're located; on-premises, in public or private cloud. Imperva WAF gateways set the standard for protection, innovation, and customization. Dynamic profiling ensures any application is protected no matter how complex or unique.
Reputation Intelligence
A security reputation feed that combines research from Imperva security researchers, live crowdsourced intelligence from millions of sites and threat intelligence from multiple partners.
Attack Analytics
A service that uses machine learning to distill thousands of events into a single, actionable attack narrative. Provides a single consolidated event feed from both cloud and on-premises application security.
Content Delivery Network
A CDN that uses intelligent caching and cache control options, as well as high-speed storage and optimization tools to improve website performance while lowering bandwidth costs.
Dynamic Content Acceleration
Network acceleration which boosts response times to the origin. Leverages flexible routing to provide an optimized end user experience.
Cache Shield
Cache Shield provides the Imperva CDN with an intermediate cache layer to optimize infrastructure capacity. The service protects origin servers from redundant requests, sending all requests to an automatically-selected point of presence (PoP).
Load Balancing
A cloud-based load balancer that supports local and global server load balancing across on-premises and public cloud data centers. Supports automatic failover to standby servers to enable high-availability and disaster recovery without any TTL-related delays.
Client Classification
A multilayered system to block malicious traffic. Behavioral analysis, device fingerprinting, signature identification and transparent challenges combine to only allow legitimate users with low false positives.
CAPTCHA Insertion
Inserts CAPTCHA test into the workflow to mitigate automated bot traffic.
Advanced Bot Protection (inc. ATO)
Protects websites, mobile applications, and APIs from automated threats, known as bad bots, without affecting the flow of business-critical traffic.
DDoS Protection for Websites
An always-on DDoS mitigation service that manages any type, size or duration of attack with near-zero latency in under 3 seconds--backed by a service level agreement. Protects applications on-premises or in the cloud with activation via a simple DNS change.
Add-on
DDoS Protection for Networks
An on-demand or always-on mitigation service that protects your network infrastructure against DDoS attacks.
Runtime Application Self-Protection
Detects and blocks attacks from inside the application. Using patented LangSec techniques which treat data as code, RASP provides fast and accurate protection with no signatures and no learning mode.
Client-Side Protection
Prevents data theft from client-side attacks like formjacking, digital skimming, and Magecart.
Data security
Data Discovery and Classification
Discovers unknown databases by scanning your enterprise network for database services and servers. Identifies sensitive data such credit card numbers or national identification numbers.
Database Vulnerability Assessments
Scans databases for vulnerabilities and misconfigurations such as default passwords. Provides detailed reports including recommended remediation steps.
Data Activity Monitoring
Continuously monitors database transactions, including local privileged user and service account activity. Provides enterprise-wide visibility of database activity across supported on-premises and cloud environments. Alerts or blocks on security or compliance policy violations. Demonstrate compliance with pre-defined and custom reports.
Data Security Gateways
A virtual appliance that continuously monitors database activity. Imperva data security gateways set the standard for scalability, reliability and performance. Imperva data security gateways can be deployed on-premises and in public or private clouds.
User Rights Management
Aggregates, correlates and reports on user access rights across heterogeneous enterprise databases.
Data Risk Analytics
Identifies dangerous data access activity that exposes sensitive data to breach risk. Uses machine learning, data science and behavior analytics to analyze and distill millions of database events into a few, actionable incidents.
Data Masking
De-identifies, anonymizes, and pseudonymizes sensitive data within non-production environments such application development, testing, analysis, and more. Data masking helps de-risk non-production environments and addresses many data privacy and protection regulations such as GDPR.
FlexProtect Plus
Learn moreComplete data and application security that lets you deploy protection when and where you need it - on-premises or in the cloud.
Application security
Web Application Firewall
- Cloud Web Application FirewallA cloud WAF that protects applications against all attacks wherever they're located; on-premises, in public or private cloud. Imperva cloud WAF is PCI-certified, customizable, SIEM-ready and tuned for blocking threats with minimal false-positives. Easy setup ensures rapid time to benefit.
- API SecurityProtects websites and APIs with an intuitive single stack approach. Enforces positive security models automatically, integrating seamlessly with leading API Gateway vendors.
- SIEM IntegrationIntegration with leading Security Information and Event Management (SIEM) systems, including Splunk, ArcSight, QRadar and more.
- Web Application Firewall GatewayAn appliance or virtual WAF that protects applications against all attacks wherever they're located; on-premises, in public or private cloud. Imperva WAF gateways set the standard for protection, innovation, and customization. Dynamic profiling ensures any application is protected no matter how complex or unique.
Analytics
- Reputation Intelligence A security reputation feed that combines research from Imperva security researchers, live crowdsourced intelligence from millions of sites and threat intelligence from multiple partners.
- Attack AnalyticsA service that uses machine learning to distill thousands of events into a single, actionable attack narrative. Provides a single consolidated event feed from both cloud and on-premises application security.
Application Delivery
- Content Delivery NetworkA CDN that uses intelligent caching and cache control options, as well as high-speed storage and optimization tools to improve website performance while lowering bandwidth costs.
- Dynamic Content AccelerationNetwork acceleration which boosts response times to the origin. Leverages flexible routing to provide an optimized end user experience.
- Cache ShieldCache Shield provides the Imperva CDN with an intermediate cache layer to optimize infrastructure capacity. The service protects origin servers from redundant requests, sending all requests to an automatically-selected point of presence (PoP).
- Load BalancingA cloud-based load balancer that supports local and global server load balancing across on-premises and public cloud data centers. Supports automatic failover to standby servers to enable high-availability and disaster recovery without any TTL-related delays.
Bot Protection
- Client ClassificationA multilayered system to block malicious traffic. Behavioral analysis, device fingerprinting, signature identification and transparent challenges combine to only allow legitimate users with low false positives.
- CAPTCHA InsertionInserts CAPTCHA test into the workflow to mitigate automated bot traffic.
- Advanced Bot Protection (inc. ATO)
Protects websites, mobile applications, and APIs from automated threats, known as bad bots, without affecting the flow of business-critical traffic.
DDoS
- DDoS Protection for Websites
Add-on
An always-on DDoS mitigation service that manages any type, size or duration of attack with near-zero latency in under 3 seconds--backed by a service level agreement. Protects applications on-premises or in the cloud with activation via a simple DNS change. - DDoS Protection for Networks
An on-demand or always-on mitigation service that protects your network infrastructure against DDoS attacks.
RASP
- Runtime Application Self-Protection
Detects and blocks attacks from inside the application. Using patented LangSec techniques which treat data as code, RASP provides fast and accurate protection with no signatures and no learning mode.
Client-Side Protection
- Client-Side Protection
Prevents data theft from client-side attacks like formjacking, digital skimming, and Magecart.
Data security
Discovery and Assessment
- Data Discovery and ClassificationDiscovers unknown databases by scanning your enterprise network for database services and servers. Identifies sensitive data such credit card numbers or national identification numbers.
- Database Vulnerability AssessmentsScans databases for vulnerabilities and misconfigurations such as default passwords. Provides detailed reports including recommended remediation steps.
Data Protection
- Data Activity MonitoringContinuously monitors database transactions, including local privileged user and service account activity. Provides enterprise-wide visibility of database activity across supported on-premises and cloud environments. Alerts or blocks on security or compliance policy violations. Demonstrate compliance with pre-defined and custom reports.
- Data Security GatewaysA virtual appliance that continuously monitors database activity. Imperva data security gateways set the standard for scalability, reliability and performance. Imperva data security gateways can be deployed on-premises and in public or private clouds.
- User Rights ManagementAggregates, correlates and reports on user access rights across heterogeneous enterprise databases.
Analytics
- Data Risk AnalyticsIdentifies dangerous data access activity that exposes sensitive data to breach risk. Uses machine learning, data science and behavior analytics to analyze and distill millions of database events into a few, actionable incidents.
Data Masking
- Data Masking
De-identifies, anonymizes, and pseudonymizes sensitive data within non-production environments such application development, testing, analysis, and more. Data masking helps de-risk non-production environments and addresses many data privacy and protection regulations such as GDPR.
FlexProtect Premier
Learn moreMaximum data and application security that gives you all that Imperva has to offer.
Application security
Web Application Firewall
- Cloud Web Application FirewallA cloud WAF that protects applications against all attacks wherever they're located; on-premises, in public or private cloud. Imperva cloud WAF is PCI-certified, customizable, SIEM-ready and tuned for blocking threats with minimal false-positives. Easy setup ensures rapid time to benefit.
- API SecurityProtects websites and APIs with an intuitive single stack approach. Enforces positive security models automatically, integrating seamlessly with leading API Gateway vendors.
- SIEM IntegrationIntegration with leading Security Information and Event Management (SIEM) systems, including Splunk, ArcSight, QRadar and more.
- Web Application Firewall GatewayAn appliance or virtual WAF that protects applications against all attacks wherever they're located; on-premises, in public or private cloud. Imperva WAF gateways set the standard for protection, innovation, and customization. Dynamic profiling ensures any application is protected no matter how complex or unique.
Analytics
- Reputation Intelligence A security reputation feed that combines research from Imperva security researchers, live crowdsourced intelligence from millions of sites and threat intelligence from multiple partners.
- Attack AnalyticsA service that uses machine learning to distill thousands of events into a single, actionable attack narrative. Provides a single consolidated event feed from both cloud and on-premises application security.
Application Delivery
- Content Delivery NetworkA CDN that uses intelligent caching and cache control options, as well as high-speed storage and optimization tools to improve website performance while lowering bandwidth costs.
- Dynamic Content AccelerationNetwork acceleration which boosts response times to the origin. Leverages flexible routing to provide an optimized end user experience.
- Cache ShieldCache Shield provides the Imperva CDN with an intermediate cache layer to optimize infrastructure capacity. The service protects origin servers from redundant requests, sending all requests to an automatically-selected point of presence (PoP).
- Load BalancingA cloud-based load balancer that supports local and global server load balancing across on-premises and public cloud data centers. Supports automatic failover to standby servers to enable high-availability and disaster recovery without any TTL-related delays.
Bot Protection
- Client ClassificationA multilayered system to block malicious traffic. Behavioral analysis, device fingerprinting, signature identification and transparent challenges combine to only allow legitimate users with low false positives.
- CAPTCHA InsertionInserts CAPTCHA test into the workflow to mitigate automated bot traffic.
- Advanced Bot Protection (inc. ATO)Protects websites, mobile applications, and APIs from automated threats, known as bad bots, without affecting the flow of business-critical traffic.
DDoS
- DDoS Protection for WebsitesAn always-on DDoS mitigation service that manages any type, size or duration of attack with near-zero latency in under 3 seconds--backed by a service level agreement. Protects applications on-premises or in the cloud with activation via a simple DNS change.
- DDoS Protection for Networks
An on-demand or always-on mitigation service that protects your network infrastructure against DDoS attacks.
RASP
- Runtime Application Self-ProtectionDetects and blocks attacks from inside the application. Using patented LangSec techniques which treat data as code, RASP provides fast and accurate protection with no signatures and no learning mode.
Client-Side Protection
- Client-Side ProtectionPrevents data theft from client-side attacks like formjacking, digital skimming, and Magecart.
Data security
Discovery and Assessment
- Data Discovery and ClassificationDiscovers unknown databases by scanning your enterprise network for database services and servers. Identifies sensitive data such credit card numbers or national identification numbers.
- Database Vulnerability AssessmentsScans databases for vulnerabilities and misconfigurations such as default passwords. Provides detailed reports including recommended remediation steps.
Data Protection
- Data Activity MonitoringContinuously monitors database transactions, including local privileged user and service account activity. Provides enterprise-wide visibility of database activity across supported on-premises and cloud environments. Alerts or blocks on security or compliance policy violations. Demonstrate compliance with pre-defined and custom reports.
- Data Security GatewaysA virtual appliance that continuously monitors database activity. Imperva data security gateways set the standard for scalability, reliability and performance. Imperva data security gateways can be deployed on-premises and in public or private clouds.
- User Rights ManagementAggregates, correlates and reports on user access rights across heterogeneous enterprise databases.
Analytics
- Data Risk AnalyticsIdentifies dangerous data access activity that exposes sensitive data to breach risk. Uses machine learning, data science and behavior analytics to analyze and distill millions of database events into a few, actionable incidents.
Data Masking
- Data MaskingDe-identifies, anonymizes, and pseudonymizes sensitive data within non-production environments such application development, testing, analysis, and more. Data masking helps de-risk non-production environments and addresses many data privacy and protection regulations such as GDPR.
“We now spend less time on issues such as software changes and can direct more energy on protecting our members’ data company information“
Sharon BlackSr. Manager of Information Security
“Increasing the visibility into threats allows us to make informed decisions into securing our environment.”
Edward MessinaIT Security and Risk Manager
