To help organizations centralize security management, incident response, and compliance, SecureSphere can feed database security alerts and audit logs to the ArcSight SIEM Platform. As part of the alliance, the companies will present a free webinar on December 17 on the benefits of integrating database monitoring and event data with SIEM. Details and registration information are available at: http://www.imperva.com/go/siem/.
SecureSphere Adds Deep Database Visibility to ArcSight Imperva's award-winning SecureSphere gateways provide full visibility and granular control over the usage of enterprise business data from the database, through the application, to the accountable end user. Using the ArcSight-developed Common Event Format (CEF) standard, SecureSphere can deliver continuing database security event, alert and audit data to the ArcSight SIEM Platform. Through this integration, SecureSphere enhances ArcSight SIEM with the following database intelligence which can be presented and correlated in a centralized dashboard for enterprise views of security data:
. Cross platform: Automated database audit logs for Oracle, Microsoft-SQL Server, IBM DB2, Sybase, and Informix environments. . Enterprise Applications: A detailed, independent record of database application activity of any kind with specific emphasis on packaged applications like Oracle E-Business Suite, SAP, and PeopleSoft. . Administrator Actions: Local audit logs (e.g. console, telnet, ssh, IPC, and shared memory) of all activity performed by database administrators. . User Activity Tracking: Audit trails that link database activity to users connected through application servers over pooled connections. . Row Level Monitoring: Alerts on suspicious changes to the values of specific records or subsets of table rows.
"Imperva and ArcSight have mutual customers around the world that have requested the ability to pump the deep database security information gathered by SecureSphere into the ArcSight Platform," said Rohit Gupta vice president of business development for Imperva. "The integration of SecureSphere and the ArcSight SIEM Platform provides organizations with a global view of database events and audit logs which they can view side-by-side with other security information to holistically manage risk and simplify compliance with regulatory mandates."
"Imperva's certified CEF integration allows enterprises to provide visibility and control over the use of sensitive information," said Jeff Scheel, senior vice president of business development, ArcSight. "ArcSight customers now can easily correlate SecureSphere's end-to-end analysis of application and database activity with related events across other infrastructure layers to provide simple and efficient security, policy control and event response."
Imperva, the leader in application data security, delivers activity monitoring, real-time protection, and risk management solutions for business applications and data. Imperva's practical solutions provide full visibility into sensitive data, database and application access, enabling granular control and maintenance of critical data. Over 4500 of the world's leading enterprises and government organizations in over 35 countries rely on Imperva's automated, scalable and business-relevant solutions to prevent data theft, data abuse and ensure data integrity. For more information, visit www.imperva.com.