Imperva

Imperva Inc.
	File:Imperva-logo.jpg
Company type	Public
Traded as	(NYSE: IMPV)
Industry	IT security
Founded	2002
Founder	Shlomo Kramer
Key people	Shlomo Kramer (CEO); Amichai Shulman (CTO);
Products	Application layer firewall;
Revenue	$34.479 million (2010)
Number of employees	360 (June 2011)
Subsidiaries	Incapsula, Inc
Website	www.imperva.com

Imperva (NYSE: IMPV), is a data security company headquartered in the United States, which provides solutions for high-value business data protection and prevents sensitive data theft from hackers and malicious insiders by securing data across three main areas: databases, file systems, and web applications.

Imperva claims more than 1,500 customers with thousands of organizations protected through cloud-based deployments. Imperva's customers include leading enterprises, government organizations, and managed service providers who rely on Imperva’s data security solutions.

History

Founded in November 2002 by Shlomo Kramer, Amichai Shulman and Mickey Boodei, Imperva delivers a security platform that offers real-time and automated protection against data loss and theft.

The company’s key innovation was the development of the data security and compliance solution, SecureSphere—an appliance that protects web applications from online attacks, secures business-critical databases and files, and mitigates vulnerabilities across all areas of data.

Imperva has received a total of $53.7M in venture capital funding, including over $20M in its Series D round in April 2008.

Series A May 2002 $4.7MM
Series B Jun 2003 $12MM
Series C May 2006 $17MM
Series D Apr 2008 $20MM

Imperva’s investors include Accel Partners, Greylock Partners, Meritech Capital Partners, USVP and Venrock.

It was announced in June 2011, that Imperva filed for an initial public offering; which means that it will issue common stock or shares to the public for the first time. The company plans to raise $75 million in a November 2011 IPO by offering 5 million shares at a price range of $14.00 to $16.00.^[1]

Key Milestones

2011

Files for IPO.
Named a leader in Forrester’s Wave on Database Activity Monitoring.^[2]
Named the top vendor for WAF in Japan.^[3]
Imperva spins off Incapsula,^[4] a cloud-based web application firewall service targeted at small companies.

2010

Introduced Virtual Data Security Suite
Introduced File Security Family
Introduced ThreatRadar To Mitigate Automated, Industrialized Cyber Attacks
Featured on the front page of the New York Times for a study of 32 million breached passwords.^[5]

2009

SecureSphere Achieves Common Criteria Certification
ICSA Labs certified Imperva SecureSphere Web Application Firewall
Extends operations in Asia.

2008

Techworld names SecureSphere a winner for Network Application Product of the Year
RSA Secured® Partner Program Certification

2007

Imperva Ships 1,000th SecureSphere Appliance

2006

Extends Operations into Europe

2005

Yankee Group Names Imperva "Market Leader" in Web Application Firewalls
Imperva Delivers First True Gigabit Application Firewall Solution

2004

Imperva™ Unveils SecureSphere Web Application Security Appliances WebCohort, Inc. Changes Company Name to Imperva, Inc.

2002

Shipped first version of SecureSphere
Company founded

Focus

Imperva’s belief is that an organization’s most important asset today is data—customer, financial and intellectual property, each of which need to be protected from insiders and hackers. To protect data, Imperva claims to have built a data security suite to protect both structured and unstructured data:

To keep data from hackers, Imperva offers a web application firewall. In 2010, the Verizon Databreach report^[6] cited that 50% of data breaches were due to external hackers.
To stop insiders, Imperva offers database protection known as database activity monitoring (DAM). According to the 2008 Verizon Business’ Data Breach Investigations Report,^[7] cyber attacks targeting databases accounted for 75 percent of all records compromised in 2008. For unstructured data, Imperva offers a file protection known as file activity monitoring (FAM).

Imperva has published a detailed company mission overview.

Data Security

Imperva’s currently sells SecureSphere, an appliance and has three main components: Web application firewalls, Database activity monitoring, and File Activity Monitoring.

Database Security

Imperva’s Database security solutions secure sensitive data stored in databases against compromises of their confidentiality, integrity and availability by providing full visibility into data usage, vulnerabilities and access rights to security, audit and risk professionals. The company enables customers to optimize the deployment by combining remote assessment scans, agent-based monitoring and network activity monitoring.

File Security

Imperva’s File Security solutions protect sensitive files on file servers, storage devices, and content repositories, as well as provide full visibility into data ownership, usage and access rights, which according to Gartner’s Neil MacDonald is crucial to improving file data security.^[8]

Web Application Security

Web application security draws on the principles of application security but applies them specifically to Internet and Web systems. By continuously adapting to evolving threats and mitigating the risk of data breaches, Imperva’s Web application security solutions protect web applications from cyber attacks predominantly through web application firewalls.

ADC

Imperva has a dedicated research team, the Application Defense Center (ADC) that actively researches current threats and hacker trends. Notably, the ADC launched a Hacker Intelligence Initiative that has helped illuminate hacker activity and organization. They have contributed a lot to helping understand hacker technology and activities:

• Passwords:^[9]
• Anatomy of SQL injections:^[10]
• Search Engine Poisoning:^[11]
• Operation Payback:^[12]
• Lulzsec:^[13]
• Automated web attacks:^[14]
The ADC helps drive Imperva’s blog which features technical and nontechnical security discussions.

Industry Recognition

Template:Multicol 2010

Named the Wall Street Journal’s “Next Big Thing”. Ranked tenth out of 50, and the highest ranked security vendor.^[15]
Named a leader in Forrester’s Wave on Database Activity Monitoring.^[16]
Named the top vendor for WAF in Japan.^[17]
Awarded 2010 Everything Channel Partner Program Guide and Five-Star Partner Rating
Introduced ThreatRadar To Mitigate Automated, Industrialized Cyber Attacks
InfoSecurity magazine names Imperva’s WAF product of the year.
SC Magazine names SecureSphere as a runner up product of the year.
SC Magazine Australia names SecureSphere as product of the year.

2009

Named One of 50 Hottest Companies for 2009 in TiEcon Competition
SecureSphere Achieves Common Criteria Certification
Finalist in SC Awards 2009 SecureSphere Best Web Application Security Solution
ICSA Labs certified Imperva SecureSphere Web Application Firewall

2008

2008 Editor's Best Award from SQL Server Magazine
Techworld names SecureSphere a winner for Network Application Product of the Year
Shlomo Kramer Named CEO of the Year by SC Magazine
Information Security Magazine "Imperva presented the strongest all-around (WAF) offering"
Finalist in for SC Magazine Excellence Award - Best Enterprise Security Solution
RSA Secured® Partner Program Certification

2007

Red Herring 100 Global Award
Editor's Choice Award from InformationWeek Magazine
Red Herring 100 Award—One of the top private companies in North America
2007 Readers' Choice Award from Information Security Magazine
Finalist in the SC Magazine Awards 2007 Europe Best Security Solution for Healthcare
One of the 25 Best Security Innovations for 2007 by Financial IT Security Magazine

Template:Multicol-break 2006

InfoWorld CTO 25 List name Amichai Shulman
Editor's Choice for Web Application Firewall by Network Computing
eWeek Excellence Award
Shlomo Kramer - Top 20 People Who Changed the Network Industry by Network World
Most Innovative at the invitation-only RSA Conference 2006 Innovation Station Showdown
Security Company to Watch by Red Herring Magazine

2005

Yankee Group Names Imperva "Market Leader" in Web Application Firewalls
CRN gives Imperva SecureSphere Database Security Gateway 5-Star Recommendation
Finalist for Red Herring Top 100 Private Companies
Finalist for Software Newcomer of the Year 2005 "CODiE" Awards
Imperva Delivers First True Gigabit Application Firewall Solution

2004

CRN gives Imperva SecureSphere Web Application Firewall 5-Star Recommendation
InfoWorld Product Review gives Imperva the Highest Score in Application Security
Imperva™ Unveils SecureSphere Web Application Security Appliances
WebCohort, Inc. Changes Company Name to Imperva, Inc.

Template:Multicol-end

Partners

Template:Multicol

Template:Multicol-break

Template:Multicol-end

Selected Customers

Key customers Imperva has cited include:

References

^ "Imperva sets terms, Fourth company to set IPO terms this week". Renaissance Capital. 28 October 2011.
^ "Database Auditing and Real-time Protection".
^ "Company Outline: WAF".
^ incapsula.com
^ Vance, Ashlee (January 21, 2010). "If Your Password Is 123456, Just Make It HackMe". The New York Times.
^ "2010 Verizon Data Breach Report" (PDF).
^ "2008 Verizon Data Breach Report" (PDF).
^ MacDonald, Neil. "Why Does Identifying Data Owners Have To Be So Hard".
^ Vance, Ashlee (1/20/2010). "If Your Password Is 123456, Just Make It HackMe". The New York Times. {{cite news}}: Check date values in: |date= (help)
^ Rachwald, Rob (5/30/2011). "PBS Breached - How Hackers Probably Did It". {{cite web}}: Check date values in: |date= (help)
^ Jacob, Marc (6/2011). "Imperva Releases Details of How SEP Works". {{cite web}}: Check date values in: |date= (help)
^ Cohen, Noam (12/9/2010). "Web Attackers Find a Cause in WikiLeaks". The New York Times. {{cite news}}: Check date values in: |date= (help)
^ Acohido, Byron (6/26/2011). "Governments, Businesses, People Caught in Hacker Crossfire". USA Today. {{cite news}}: Check date values in: |date= (help)
^ Steinberg, Scott (7/27/2011). "Hackers Attack Web Apps Once Every Two Minutes". {{cite web}}: Check date values in: |date= (help)
^ "Wall Street Journal's "Next Big Thing" List 2010". The Wall Street Journal. Retrieved August 1, 2011.
^ "Database Auditing and Real-time Protection".
^ [http://www.itr.co.jp/company_outline/press_release/110629PR/

External links

www.imperva.com

[1] "Imperva sets terms, Fourth company to set IPO terms this week". Renaissance Capital. 28 October 2011.

[2] "Database Auditing and Real-time Protection".

[3] "Company Outline: WAF".

[4] sula.com

[5] Vance, Ashlee (January 21, 2010). "If Your Password Is 123456, Just Make It HackMe". The New York Times.

[6] "2010 Verizon Data Breach Report" (PDF).

[7] "2008 Verizon Data Breach Report" (PDF).

[8] MacDonald, Neil. "Why Does Identifying Data Owners Have To Be So Hard".

[9] Vance, Ashlee (1/20/2010). "If Your Password Is 123456, Just Make It HackMe". The New York Times. {{cite news}}: Check date values in: |date= (help)

[10] Rachwald, Rob (5/30/2011). "PBS Breached - How Hackers Probably Did It". {{cite web}}: Check date values in: |date= (help)

[11] Jacob, Marc (6/2011). "Imperva Releases Details of How SEP Works". {{cite web}}: Check date values in: |date= (help)

[12] Cohen, Noam (12/9/2010). "Web Attackers Find a Cause in WikiLeaks". The New York Times. {{cite news}}: Check date values in: |date= (help)

[13] Acohido, Byron (6/26/2011). "Governments, Businesses, People Caught in Hacker Crossfire". USA Today. {{cite news}}: Check date values in: |date= (help)

[14] Steinberg, Scott (7/27/2011). "Hackers Attack Web Apps Once Every Two Minutes". {{cite web}}: Check date values in: |date= (help)

[15] "Wall Street Journal's "Next Big Thing" List 2010". The Wall Street Journal. Retrieved August 1, 2011.

[16] "Database Auditing and Real-time Protection".

[17] [http://www.itr.co.jp/company_outline/press_release/110629PR/

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

[14]

[15]

[16]

[17]