# Unified visibility, control, automation, and insights across the entire data estate Imperva Data Security Fabric delivers comprehensive and centralized management through a single data service or dashboard ## Imperva Data Security Fabric (DSF) provides you with a holistic view of your total data environment #### Effectively manage, monitor, and protect all of your data across different sources, applications, and cloud environments Imperva DSF delivers centralized management through a single data service or dashboard for supervising and monitoring your data security controls. By unifying visibility of your entire data estate, Imperva DSF allows you to configure and manage security policies, view alerts and incidents, and track the status of data protection measures for the whole organization—for any data source and type—across on-premises, cloud, multicloud, and hybrid-cloud environments. - Protect data by understanding and controlling access by users, processes, and apps within a single service view - Gain full enterprise visibility of multicloud and hybrid threats, risk, and activity across the entire data environment - Detect anomalous and bad behavior with machine learning algorithms ### Discover, classify, and view all of your data Imperva DSF Discovery and Classification automatically discovers sensitive data in databases, file shares, and other data stores—on-premises, in the cloud, across multiple clouds, or in hybrid environments. In the process it automatically classifies the data so you can put the right risk mitigation mechanisms in place. ### Monitor data access and activity in real-time Imperva DSF Data Activity Monitoring provides continuous monitoring to capture and analyze all data store activity from both application and privileged user accounts, providing detailed audit trails that show who accesses what data, when, and what was done to the data. ### Receive alerts and notifications immediately Imperva Data Risk Analytics (DRA) identifies abnormal user behavior that can lead to bad practices, hostile intrusions, and data compromise. Imperva DRA translates complex technical events into plain language that IT operations teams and security staff members can immediately understand. ### Live audit data access and reporting With Imperva DSF, years worth of retained records are instantly accessible for detailed search and investigation. Audit data is archived automatically, as time passes, but remains accessible in seconds for queries and reporting. Built-in interactive dashboards and on-demand Kibana visualization tools deliver easy to understand results. ## Data Security Fabric Overview Imperva DSF is the first data-centric solution that enables security and compliance teams to quickly and easily secure sensitive data no matter where it resides with an integrated, proactive approach to visibility and predictive analytics. Imperva DSF is the industry's first hybrid cloud, data-centric solution designed to secure all data types, protect the data estate from data breaches, and drastically reduce time spent managing compliance and privacy. ### The Imperva DSF architecture was purpose-built for visibility, efficiency, and increasing the business value of data ### Traditional Approach ### Imperva Approach ## The Imperva Data Security Fabric difference Enterprise financial services customer ### Before - 7.2 billion transaction in 60 days - 10,000 Splunk alerts per day - 2 FTE - 10% of alerts investigated - 0 significant incidents discovered ### After - 732 incidents in 60 days - 12 actionable insights per day - 2 FTE - 100% of alerts investigated - 3 significant incidents discovered ### Measured Results - Zero tuning with machine learning - Manageable number of actionable insights - Equivalent FTE - 100% of issues investigated - 914K DB records accessed by 1 person ## Data-centric security lifecycle ## Real-time, interactive data exploration #### Consolidate compliance efforts from one location No more batch operations—retrieve data in minutes versus days - All data is "always live"—no need to import data manually or collate between several environments - Fast reads allow for huge reports to be recalled in minutes - Interact with data from any source including clouds, metadata, and existing Imperva gateways and management servers - Build quickly and with ease ## Increased usability of data #### Empower new users and use cases: APIs enable controlled access by SOC, DBAs, Forensics, etc. through their tool of choice Unlock value for different business and technical stakeholders outside of compliance and governance teams - Define who sees what with role-based access control - Stakeholders can use their tool of choice with rich 3rd party tool support - Improve the security value of the data sent to other teams - Improve the context of the data with external enrichments ## Data activity monitoring and predictive data risk analytics Imperva DSF monitors and continuously analyzes all data access activity, by both database user accounts and privileged user accounts, and can automatically determine if a data access event violates a compliance or security policy. In addition, Imperva DSF utilizes machine learning and unique detection techniques developed by Imperva Labs to spot known attack exploits or suspicious activity even if the behavior attempts to be evasive. ## Long-term, live audit data access With Imperva DSF, years worth of retained records are instantly accessible for detailed search and investigation. Audit data is archived automatically as time passes, but remains accessible in seconds for queries and reporting. - Free staff from all aggregation, archive, restore and other manual processes - Highly efficient NoSQL column-store deduplicates and compress data at a rate of over 50k events per core - Seamlessly move data between storage tiers for cost avoidance: hot storage and cold storage - Automatically optimize underlying storage whether Disk, SAN, or Cloud for cost avoidance ## Imperva Data Security Fabric protects all data types with a single system that delivers multiple business capabilities Imperva Data Security Fabric is the first data-centric solution that enables your organization's security and compliance teams to quickly and easily secure sensitive data, no matter where it resides, with an integrated, proactive approach to visibility and predictive analytics. ### Data Risk Prioritization Get a unified view of essential data risk metrics that are transparent, flexible, and customizable to understand your risk profile and mitigate gaps. ### Data Discovery & Classification Discover ungoverned data, classify all data, and assess vulnerabilities. ### Data Activity Monitoring Gain complete visibility and ensure compliance with continuous monitoring, auditing and analyzing all data store and data types. ### Data Risk Analytics Detect and report non-compliant, risky, or malicious data access behavior across all of your data repositories enterprise-wide to accelerate remediation. ### Data Retention & Archive Meet any data archiving requirement using the most cost efficient storage technology available. ### Ecosystem Integrations Enhance the value of your existing technology investments—for both incident context and additional data capabilities. ### Data Encryption & Tokenization Protect critical data with encryption, key management, and tokenization wherever it resides. ### Static Data Masking Modify sensitive data so it is of no value to unauthorized users while still being usable by your systems. ### Automated Workflows & Playbooks Achieve higher scale and increase DevOps efficiency through the use of automated workflows delivered through trusted repositories.