Imperva > Case Studies > Securing Trading Environment with IoT: A Case Study of a Major US Financial Services Provider

Securing Trading Environment with IoT: A Case Study of a Major US Financial Services Provider

Imperva Logo
Technology Category
  • Application Infrastructure & Middleware - Database Management & Storage
  • Infrastructure as a Service (IaaS) - Cloud Databases
Applicable Industries
  • National Security & Defense
Applicable Functions
  • Quality Assurance
Use Cases
  • Cybersecurity
  • Traffic Monitoring
Services
  • Cloud Planning, Design & Implementation Services
  • Cybersecurity Services
About The Customer
The customer is a major US financial services provider, part of a Global Fortune 500 Company. The company has been fulfilling clients’ investment needs for the last half century. The Financial Services Company manages $174 billion in fixed income and balanced assets for both institutions and private clients. The asset management firm relies on Imperva solutions to protect its trading processes by securing its web site, IT infrastructure and customer data—both in the cloud and on-premises.
The Challenge
The customer, a major US Financial Services Provider, part of a Global Fortune 500 Company, was facing several challenges in securing its trading environment. The company needed clear visibility into its database traffic to monitor activity and identify risks. It was crucial to secure customer data and transactions within the online trading environment. The company also needed to ensure the high performance and availability of the database and services that actively support online trading processes. The company was also looking to automate compliance and reporting capabilities for regulatory standards such as GLBA, HIPAA, HiTECH, FISMA, SCC, SOX, ISO 27001 and the NIST Cybersecurity Framework. Protecting sensitive customer and trading information from insider abuse was another challenge. The company also needed to control access to cloud apps and confidential client information, including rich policy enforcement and IP address whitelisting. Lastly, the company needed to prevent DDoS / DNS attacks from compromising the client website.
The Solution
The company adopted several Imperva solutions to address its challenges. The Imperva SecureSphere Data Audit and Protection was used to provide clear visibility into database traffic and secure customer data and transactions. The Imperva Skyfence Cloud Access Security Broker for SaaS Apps was used to control access to cloud apps and confidential client information. The Imperva Incapsula was used for protection from DDoS / DNS attacks. The SecureSphere solution mitigates the risk to active trading by sniffing the database traffic in a non-inline mode without requiring an agent on the server. This solution provides a clear view of the data stream, enabling the company to monitor activity and identify risks. The Skyfence Cloud Access Security Broker provides visibility and control over cloud apps and access to trading data. The Incapsula solution protects the company's website from DDoS/DNS attacks.
Operational Impact
  • The implementation of Imperva solutions has resulted in several operational benefits for the company. The agentless operation of SecureSphere mitigates the impact of security on active trading. The non-inline activity monitoring provides a clear view of the data stream, enabling the company to monitor activity and identify risks. The automatic reporting simplifies the demonstration of compliance against all standards. The company can now identify and quarantine risky users quickly, preventing or containing data breaches. The CASB provides visibility and control over cloud apps and access to trading data. The company can now whitelist mobile devices by individuals, ensuring only employees can access the company network. The protection from DDoS/DNS attacks prevents the missed opportunity costs (lost revenue and reputation) of website downtime.
Quantitative Benefit
  • Agentless operation mitigates impact of security on active trading
  • Non-inline activity monitoring provides clear view of data stream
  • Automatic reporting simplifies demonstration of compliance against all standards

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.