User Rights Management for Databases

Achieve Compliance and Reduce Risk

Virtually every regulation has requirements to manage user rights to sensitive data. Complying with these requirements is one of the most difficult tasks to carry out effectively, despite built in database controls. User Rights Management for Databases (URMD) helps you establish an automated access rights review process to eliminate excessive user rights. It also enables you to demonstrate compliance with regulations such as SOX and PCI DSS. URMD lowers IT labor costs associated with database user access management.

ADC Insights

Directed Cyber Security and Compliance for SAP, Oracle EBS, and PeopleSoft

When it comes to protecting SAP, Oracle E-Business Suite (EBS), and PeopleSoft, time is of the essence. These applications contain sensitive business data that hackers and auditors often examine first. Application Defense Center (ADC) Insights saves you time by streamlining security and compliance efforts with predefined, application-specific policies and reports for regulations such as SOX, PCI DSS, and HIPAA.

User Rights Management for Databases

Achieve Compliance and Reduce Risk

STREAMLINE USER ACCESS COMPLIANCE

URMD allows you to easily demonstrate an automatic, repeatable process for reviewing access rights, which is a requirement of regulations like SOX 302 and 404, and PCI 7 and 8.5. URMD includes a workflow framework to support user rights review and authorization processes.

SAVE TIME BY AUTOMATICALLY CONNECTING THE DOTS

Discover the information you need to reduce the risk of unauthorized data access without spending countless hours attempting to do it manually. URMD automatically correlates user rights with information about data sensitivity, quickly clarifying important relationships.

DISCOVER AND REMOVE EXCESSIVE ACCESS AND DORMANT USERS

Hackers look for easy opportunities to access sensitive data. User accounts with a lot of access to data are valuable targets because they provide a lot of leverage. So are dormant user accounts because suspicious activity, such as unexplained changes, go unnoticed by the account owner. With URMD, you are able to reduce the chance of a security breach by identifying users with excessive access rights, as well as dormant user accounts.

ADC Insights

IMMEDIATE PROTECTION

ADC Insights makes Imperva SecureSphere Database Activity Monitor and Database Firewall smarter about enterprise applications so that they know where sensitive application data is stored and what constitutes normal usage for SAP, Oracle EBS, and PeopleSoft. Out-of-the-box rules and reports enforce and help document compliance – such as ensuring separation of duties in Oracle EBS for data covered by SOX.

FAST COMPLIANCE REPORTING

ADC Insights quickly produces reports that identify risks and measure IT compliance. To accelerate time-to-compliance, ADC Insights includes 250 predefined SOX, PCI, HIPAA, and other detailed report templates.

INTELLIGENT SELF-LEARNING PROTECTION

ADC Insights saves you time by automating user behavior profiling. Dynamic Profiling, a part of ADC Insights, allows for ease of policy configuration, detection of behavioral changes, and flexible custom policy definition for automated and accurate data security.ADC Insights saves you time by automating user behavior profiling. Dynamic Profiling, a part of ADC Insights, allows for ease of policy configuration, detection of behavioral changes, and flexible custom policy definition for automated and accurate data security.

Capabilities

Pre-Package Knowledge of Enterprise Applications Data Structures

ADC Insights pre-packaged database structure understanding enables SecureSphere to instantly know where data is stored, which data is sensitive, and what constitutes normal usage. ADC Insights are continuously and automatically updated with new auditing knowledge from the Imperva ADC.

Targeted Assessments, Policies for Compliance and Security Risks

ADC Insights include automated assessments for applications, databases, and operating systems for potential compliance deficiencies and security risks. Out-of-the-box rules and policies specific to the targeted business risks enforce access control policies (for example, separation of duties for SOX within Oracle EBS).

Out-of-the-Box Reporting

The ADC Insights for SOX, PCI, HIPAA and enterprise applications together provide more than 250 detailed and graphical reports that clearly identify risks and measure IT compliance against regulatory policy.

Broad Support for Leading Enterprise Applications

ADC Insights packages for SAP, Oracle E-Business Suite, and PeopleSoft provide in-depth knowledge of market-leading applications. In addition, an innovative Dynamic Profiling capability enables SecureSphere products to automate security and policy configuration for all other packaged and custom business applications.