From Wikipedia, the free encyclopedia
Jump to: navigation, search
Imperva Inc.
Type Public
Traded as (NYSEIMPV)
Industry IT security
Founded 2002
Founders Shlomo Kramer
Headquarters 3400 Bridge Parkway [1] Redwood Shores, California, United States
Area served Worldwide
Key people Anthony Bettencourt (CEO)
Amichai Shulman (CTO)
Terry Schmid (CFO)
Kim DeCarlis (CMO)
Products Data Security, Web Application Security, Database Security, File Security, Sharepoint Security, Web Security-as-a-Service (SaaS)
Revenue Increase $137.76 million (2013)
Employees 580 (December 2012)
Subsidiaries Incapsula, Inc

Imperva, pioneering the third pillar of enterprise security, fills the gaps in endpoint and network security by directly protecting high-value applications and data assets in physical and virtual data centers.[2] With an integrated security platform built specifically for modern threats, Imperva data center security provides the visibility and control needed to neutralize attack, theft, and fraud from inside and outside the organization, mitigate risk, and streamline compliance.[3] Over 3,000 customers in more than 75 countries rely on our SecureSphere® platform to safeguard their business. Imperva is headquartered in Redwood Shores, California.[4]


Founded in November 2002 by Shlomo Kramer, Amichai Shulman and Mickey Boodaei, Imperva delivers a security platform[clarification needed] that offers real-time and automated protection against data loss and theft.

The company’s key innovation was the development of the data security and compliance solution,[5] SecureSphere—an appliance that protects web applications from online attacks, secures business-critical databases and files, and mitigates vulnerabilities across all areas of data.

Imperva has received a total of $53.7M in venture capital funding, including over $20M in its Series D round in April 2008.

  • Series A May 2002 $4.7M
  • Series B Jun 2003 $12M
  • Series C May 2006 $17M
  • Series D Apr 2008 $20M

Imperva’s investors include Accel Partners, Greylock Partners, Meritech Capital Partners, USVP and Venrock.

Key milestones[edit]


  • Imperva to Acquire Incapsula and Skyfence; Introduces SecureSphere WAF for Amazon Web Services [6]
  • Imperva Acquires Tomium Software Assets to Accelerate Mainframe Data Security Solutions [7]
  • Imperva replaces founder Shlomo Kramer as CEO with Anthony Bettencourt, who has led his last two companies through acquisitions.[8]


  • Imperva Sets a New Standard for Data Center Security with the Release of SecureSphere 10.0 [9]


  • Imperva Ranked 235th Fastest Growing Company in North America on Deloitte's 2012 Technology Fast 500(TM) [10]
  • Imperva SecureSphere WAF to be hosted on the Cisco Nexus 1110/1010 Virtual Services Appliances to Improve Web Application Security [11]


  • Goes public, finishing 2011 as the top performing IPO.
  • Files for IPO.
  • Named a leader in Forrester’s Wave on Database Activity Monitoring.[12]
  • Named the top vendor for WAF in Japan.[13]
  • Imperva spins off Incapsula,[14] a cloud-based web application firewall service targeted at small companies.


  • Introduced Virtual Data Security Suite
  • Introduced File Security Family
  • Introduced ThreatRadar To Mitigate Automated, Industrialized Cyber Attacks
  • Featured on the front page of the New York Times for a study of 32 million breached passwords.[15]


  • SecureSphere Achieves Common Criteria Certification
  • ICSA Labs certified Imperva SecureSphere Web Application Firewall
  • Extends operations in Asia.


  • Techworld names SecureSphere a winner for Network Application Product of the Year
  • RSA Secured Partner Program Certification


  • Imperva Ships 1,000th SecureSphere Appliance


  • Extends Operations into Europe


  • Yankee Group Names Imperva "Market Leader" in Web Application Firewalls
  • Imperva Delivers First True Gigabit Application Firewall Solution


  • Imperva Unveils SecureSphere Web Application Security Appliances WebCohort, Inc. Changes Company Name to Imperva, Inc.


  • Shipped first version of SecureSphere
  • Company founded


Imperva’s belief is that an organization’s most important asset today is data—customer, financial and intellectual property, each of which need to be protected from insiders and hackers. To protect data, Imperva claims to have built a data security suite to protect both structured and unstructured data:

  • To keep data from hackers, Imperva offers a web application firewall. In 2010, the Verizon Databreach report[16] cited that 50% of data breaches were due to external hackers.
  • To stop insiders, Imperva offers database protection known as database activity monitoring (DAM). According to the 2008 Verizon Business’ Data Breach Investigations Report,[17] cyber attacks targeting databases accounted for 75 percent of all records compromised in 2008. For unstructured data, Imperva offers a file protection known as file activity monitoring (FAM).

Imperva has published a detailed company mission overview.

Data security[edit]

Imperva’s currently sells SecureSphere, an appliance and has three main components: Web application firewalls, Database activity monitoring, and File Activity Monitoring.

Database security[edit]

Imperva’s Database security solutions secure sensitive data stored in databases against compromises of their confidentiality, integrity and availability by providing full visibility into data usage, vulnerabilities and access rights to security, audit and risk professionals. The company enables customers to optimize the deployment by combining remote assessment scans, agent-based monitoring and network activity monitoring.

File security[edit]

Imperva’s File Security solutions protect sensitive files on file servers, storage devices, and content repositories, as well as provide full visibility into data ownership, usage and access rights, which according to Gartner’s Neil MacDonald is crucial to improving file data security.[18]

Web application security[edit]

Web application security draws on the principles of application security but applies them specifically to Internet and Web systems. By continuously adapting to evolving threats and mitigating the risk of data breaches, Imperva’s Web application security solutions protect web applications from cyber attacks predominantly through web application firewalls.


Imperva has a dedicated research team, the Application Defense Center (ADC) that actively researches current threats and hacker trends. Notably, the ADC launched a Hacker Intelligence Initiative that has helped illuminate hacker activity and organization. They have contributed a lot to helping understand hacker technology and activities:

The ADC helps drive Imperva’s blog which features technical and nontechnical security discussions.

Industry recognition[edit]


  • Imperva Named Web Application Firewall Vendor of the Year at 2014 Frost & Sullivan Asia Pacific ICT Awards". [25]


  • Named the Wall Street Journal’s “Next Big Thing”. Ranked tenth out of 50, and the highest ranked security vendor.[26]
  • Named a leader in Forrester’s Wave on Database Activity Monitoring.[27]
  • Named the top vendor for WAF in Japan.[28]
  • Awarded 2010 Everything Channel Partner Program Guide and Five-Star Partner Rating
  • Introduced ThreatRadar To Mitigate Automated, Industrialized Cyber Attacks
  • InfoSecurity magazine names Imperva’s WAF product of the year.
  • SC Magazine names SecureSphere as a runner up product of the year.
  • SC Magazine Australia names SecureSphere as product of the year.


  • Named One of 50 Hottest Companies for 2009 in TiEcon Competition
  • SecureSphere Achieves Common Criteria Certification
  • Finalist in SC Awards 2009 SecureSphere Best Web Application Security Solution
  • ICSA Labs certified Imperva SecureSphere Web Application Firewall


  • 2008 Editor's Best Award from SQL Server Magazine
  • Techworld names SecureSphere a winner for Network Application Product of the Year
  • Shlomo Kramer Named CEO of the Year by SC Magazine
  • Information Security Magazine "Imperva presented the strongest all-around (WAF) offering"
  • Finalist in for SC Magazine Excellence Award - Best Enterprise Security Solution
  • RSA Secured® Partner Program Certification


  • Red Herring 100 Global Award
  • Editor's Choice Award from InformationWeek Magazine
  • Red Herring 100 Award—One of the top private companies in North America
  • 2007 Readers' Choice Award from Information Security Magazine
  • Finalist in the SC Magazine Awards 2007 Europe Best Security Solution for Healthcare
  • One of the 25 Best Security Innovations for 2007 by Financial IT Security Magazine


  • InfoWorld CTO 25 List name Amichai Shulman
  • Editor's Choice for Web Application Firewall by Network Computing
  • eWeek Excellence Award
  • Shlomo Kramer - Top 20 People Who Changed the Network Industry by Network World
  • Most Innovative at the invitation-only RSA Conference 2006 Innovation Station Showdown
  • Security Company to Watch by Red Herring Magazine


  • Yankee Group Names Imperva "Market Leader" in Web Application Firewalls
  • CRN gives Imperva SecureSphere Database Security Gateway 5-Star Recommendation
  • Finalist for Red Herring Top 100 Private Companies
  • Finalist for Software Newcomer of the Year 2005 "CODiE" Awards
  • Imperva Delivers First True Gigabit Application Firewall Solution


  • CRN gives Imperva SecureSphere Web Application Firewall 5-Star Recommendation
  • InfoWorld Product Review gives Imperva the Highest Score in Application Security
  • Imperva™ Unveils SecureSphere Web Application Security Appliances
  • WebCohort, Inc. Changes Company Name to Imperva, Inc.


Selected customers[edit]

Key customers Imperva has cited include:


  1. ^ "Contact US". Imperva. Retrieved 2013-09-10. 
  2. ^
  3. ^
  4. ^
  5. ^
  6. ^
  7. ^
  8. ^ Owens, Jeremy. "Biz Break: Imperva names new CEO with history of acquisitions". San Jose Mercury News. 
  9. ^
  10. ^
  11. ^
  12. ^ "Database Auditing and Real-time Protection". 
  13. ^ "Company Outline: WAF". 
  14. ^
  15. ^ Vance, Ashlee (January 21, 2010). "If Your Password Is 123456, Just Make It HackMe". The New York Times. 
  16. ^ "2010 Verizon Data Breach Report". 
  17. ^ "2008 Verizon Data Breach Report". 
  18. ^ MacDonald, Neil. "Why Does Identifying Data Owners Have To Be So Hard". 
  19. ^ Vance, Ashlee (2010-1-20). "If Your Password Is 123456, Just Make It HackMe". The New York Times.  Check date values in: |date= (help)
  20. ^ Rachwald, Rob (2011-05-30). "PBS Breached - How Hackers Probably Did It". 
  21. ^ Jacob, Marc (June 2011). "Imperva Releases Details of How SEP Works". 
  22. ^ Cohen, Noam (12/9/2010). "Web Attackers Find a Cause in WikiLeaks". The New York Times.  Check date values in: |date= (help)
  23. ^ Acohido, Byron (2011-06-26). "Governments, Businesses, People Caught in Hacker Crossfire". USA Today. 
  24. ^ Steinberg, Scott (2011-07-27). "Hackers Attack Web Apps Once Every Two Minutes". 
  25. ^
  26. ^ "Wall Street Journal's "Next Big Thing" List 2010". The Wall Street Journal. Retrieved August 1, 2011. 
  27. ^ "Database Auditing and Real-time Protection". 
  28. ^ [1]

External links[edit]