Imperva tries to make regulatory compliance simpler

Imperva is selling a service package that makes it easier for businesses to set up Imperva database security appliances so they protect in accordance with industry and government regulations.

Called ADC Insight Services, the package secures specific business applications and makes it easier to comply with specific requirements of regulatory agencies.

Insight consists of downloads that analyze the structure of databases and identify what is sensitive data, and assesses whether the databases are secure as configured. ADC Insight also audits whether use of data meets regulatory requirements and creates reports on what the audits find.

The services initially support SAP ERP and Oracle E-Business and their relationships with regulations from the Sarbanes-Oxley Act, Health Insurance Portability and Accessibility Act and the Payment Card Industry (PCI) standard. So if a business uses SAP financial applications in a way that has to meet PCI standards, Insight services would check that Imperva gear properly supports the application and the regulation.

The company says the service is meant to help businesses that must comply with regulations but may lack detailed knowledge of the applications they use and the regulations they are regulated by.

Imperva’s SecureSphere gateways sit in front of Web servers where they analyze Web application and database traffic and can block traffic that may pose a security breach.

Imperva already offered software gathered data pertinent to database use and how it related to compliance with specific regulations. Insight Services adds a link between specific business software packages and these regulations.

Insight Services is similar to software available from Imperva competitor IPLocks, which is also designed to help meet regulatory guidelines.