Imperva SecureSphere Database Security Reviews

• Easy agent setup
• Big data
• SIEM tool integration

SecureSphere covers the legal obligations for Turkish banks. According to Turkish banking regulations, database activities (especially admins' activities) should be monitored and alerted.

Syslog size for transferring data should be increased.

I used it from September 2015-May 2016.

I remember that SecureSphere stores limited data according to the number of the data structure type that is defined in the server configuration files. If a customer does not realize this, data taken with the policy that has a max data structure type is interrupted.

The vendor’s local partners, NGN Company and Bulent Daldal, were very supportive whenever my company needed their help.

I supported NGN when SecureSphere was set up. Although I only experienced this setup process once, I can now setup SecureSphere DAM and agents on my own. I mean, it was easy and feasible with guidance.

A vendor team implemented it.

I did not evaluate other solutions, but I have heard from my clients (Deloitte clients) who have used Guardium before that SecureSphere is better.

SecureSphere fulfills so many requirements for our clients. Additionally, if they want to evaluate and correlate data more comprehensively, they can use this product with SIEM tools such as ArcSight or Splunk.

• Database activity monitoring
• Web application firewall

This product has limited attacks to the core tax collection application. It also provides audit logs for changes to the database and gives user account details.

None so far.

I've used it for over two years.

I was not around during the implementation, but reports do not show any issues noted.

None so far.

None so far. Our solution has not had bottlenecks so far

Customer service has always been available.

Technical support is rated highly.

Only a firewall was in place before. WAF was needed for web application specific protection as firewalls are not the best solution.

No issues noted in the implementation reports.

A third party vendor was used to implement the product and to get the IT security staff trained.

We have had a high ROI with this product.

Budget for licenses in synch with your financial years, and it's best to have licenses covering over a year so that planning for procurement of new licenses is done earlier. Of course, if you operate in AWS cloud, its much easier to justify as you can pay for three or more years at once.

I am not privy to procurement details, but we use Gartner as a source. Imperva is the sole leader in its field.

Implement this product across all systems running applications as access to one unprotected system can be elevated to a protected one. Also, have reports produced frequently using the tools available in the system and analyze them to know and investigate the sources of attacks the WAF has blocked. That's because they could be internal indicating a compromise or a malicious user within. Ensure that your SharePoint environment is also protected as though it may be internal, attacks can be directed at it.

I use this solution to discover missing data, and to find weaknesses or miscalculations in my database standards.

One example of how this has improved my organization is with respect to security. We previously had a default passcode in place, and this is discouraged by our password policy. I was able to find this problem and solve it.

The best feature of this solution is the integration between components. It has a lot of different components that cover the needs of our customers.

The pricing for support could be improved.

Integration with other databases or third-party products would be useful.

It is a stable solution.

I think that the product is scalable.

There are five users for this solution.

I have no experience with their technical support.

I did use other tools for a short span of time.

The initial setup for this solution is straightforward.

I am not using the entire solution, so the deployment time was very short. There were five people involved in the installation.

The cost of support for this solution is very expensive.

There are no costs in addition to the standard licensing fees.

I looked at several websites and read reviews. All of them said that Imperva is the best product in this area.

My advice is to do a POC before implementing this solution.

I would rate this solution an eight out of ten.

My team and I deploy this solution for customers. In Israel, I'm the team leader of the whole Application Security Division.

The most valuable feature of this solution is the database security policy.

Technical support for this solution needs improvement.

The stability of this solution depends on the version of the operating system, itself. Often, when a new version of the OS comes out, it is not stable by nature. Once the new patch comes out then it is fixed.

The scalability is dependent on the deployment surface. If you plan for scalability then you will have it. If you are going to a single, or one box solution, then you don't have scalability.

Technical support for this solution is insufficient. If you have a professional then you can handle it, but if you are a regular customer then it is difficult.

We have different solutions in our portfolio, including IBM Guardium and McAfee Sentrigo.

The initial setup of this solution is complex. However, I understand the complexity.

The length of the time it takes for deployment depends on the customer and their environment. It can take up to three months.

We have a team that handles the implementation and deployment of this solution for our customers. I am the team leader.

My advice for anybody implementing this solution is to know what you are doing before deploying. You need to learn the security concept of this product. You need to know what you want to protect, and then learn how to protect it. You cannot just deploy this solution and leave it like that. You need to know how to maintain this product.

Things are being constantly improved in this solution, but there is no such thing as perfect.

I would rate this solution eight out of ten.

Imperva SecureSphere Database Security is used to store data for if there is an emergency we can restore it.

The performance of the solution is good.

The solution could improve by having more integration.

I have been using Imperva SecureSphere Database Security for six months.

The solution is stable.

Imperva SecureSphere Database Security is scalable.

We have three people in my organization using the solution.

I have not needed to use the support.

The installation is straightforward.

We have five engineers that do the implementation and maintenance of the solution.

The price of the solution is reasonable and it requires a license.

I rate Imperva SecureSphere Database Security a nine out of ten.

We do not use this solution directly. Rather, we procure it for our customers and assist with the implementation.

The most valuable feature is the Data Masking. Most of our customers inquire about it, so it is very important to us.

There is room for improvement in the firewall capabilities when it comes to additional features such as Traffic Shaping, Connection Pooling and Load Balancing. Barracuda and F5 are leading in this aspects.

Once the installation is complete there are complaints here and there. Afterward, however, it is stable. Our support continues from this point, so over time, we will have a better understanding of this.

One of our customers currently has five hundred users.

The technical support is ok, and we have had good assistance from them.

The initial setup is not straightforward for a single person or IT administrator. However, when many IT administrators get together then they can resolve all of the issues.

We have consultants that assist our IT administrator with the deployment.

The length of time for deployment varies, but the last one took us approximately three months.

Many of our customers compare this solution to Oracle Audit Vault, although we are confident that Imperva satisfies all of their requirements.

My advice to anybody who is implementing this solution is to get the right people on board, and with that, there shouldn't be any problem. 

I would rate this solution an eight out of ten.

Our primary use for this product is as an application firewall.

The system reports vulnerabilities in my vulnerability assessment, but I need something to generate warning messages.

I would like to see integration such that there is support for different kinds of environments, such as on-premises versus cloud.

We have been using Imperva SecureSphere Database Security for more than five years.

This is a stable product.

We are not concerned with scalability because we do not have the need.

We don't speak directly with the vendor. We only call the managed solution provider.

We did not use another similar product prior to this one.

This is a managed service, so I did not handle the installation.

This is an expensive solution and the price should be reduced.

We may or may not continue using this product in the future, and I may recommend it to others, depending on their environment.

I would rate this solution a six out of ten.

We use it to prevent threats to the database. It is like a firewall in front of the database servers.

The cyber intelligence feature is the most valuable. 

It is very expensive. Its price can be better.

I have been using this solution for three years.

It is stable.

It is easy to scale technically, but it is so expensive. 

We have about five administrators who use this solution.

Their technical support is very good. In a few situations, they took too long to respond. I would rate them a nine out of ten.

The initial setup is easy. It took us four weeks to deploy it.

It is very expensive.

I would advise others to use a professional service to certify for the latest implementations. I would rate Imperva SecureSphere Database Security a nine out of ten.