Imperva Cyber Community

Expand all | Collapse all

where to begin with policy creation in DAM

  • 1.  where to begin with policy creation in DAM

    Posted 08-13-2021 04:40
    Hello all,

    I am new to Imperva DAM solution however, i have good experience in other cyber security domains. for out client we have purchased Imperva DAM solution to secure couple of SQL database servers. my challenge is that i am new to database security and don't know much on creation of security and audit policies. we have identified few use cases around which we want to build our policies.
    If anyone from community can help me answer few question around deployment which can ensure security of databases that will be great.

    1) Since we do not have UAT and prod SQL servers ready, is it possible to move with creation of policy without ingestion of data?
    2) Is data classification required before we can even configure the policies?
    3) From below use cases, are there out-of-the-box policies that can be used? if yes can anyone help me map those policies?

    a) Perform automated data discovery and classification;
    b) Detect query errors or an increase in query error rates;
    c) Detect new query statements;
    d) Determine source program used to query the database;
    e) Detect specific records being access (e.g. accessing honey token);
    f) Detect query statements that evade detection;
    g) Limit the amount of data returned from each database query;
    h) Analyze and block (in real-time) all malicious database transaction;
    i) Detect anomalies in database activity;
    j) Enforcement of database security policy compliance

    Thanks in advance!

    [Karl] [barg]

  • 2.  RE: where to begin with policy creation in DAM

    Community Manager
    Posted 08-13-2021 05:19

    Hi Sukhmeet,

    Thanks for the great question. It's always great to get tips and hints from fellow users. Any thoughts or insights @Robert Miller@Sabajete Elezaj@Alex Aguilas@Mayuranathan Palanichamy?

    You may find some useful info in our DAM resources here. If you drop down "product resources" from the navigation bar, there's another DAM Q&A there also. I also came across this lively thread, which may help you tune the policies further down the line.



    Sarah Lamont(csp)
    Digital Community Manager