Managed Web application firewall service from SecureWorks
SecureWorks launched a Web Application Firewall (WAF) management and monitoring service that detects and blocks threats targeting Web applications found on corporate Web sites. Today’s organizations rely on Web applications and Web 2.0 technologies to support key business processes and interact with consumers, partners, employees and other parties.
With SecureWorks’ Managed Web Application Firewall service, Web applications such as online shopping carts, login pages, forms and dynamically generated content (user ratings, forums, etc.) are protected against application layer attacks that bypass traditional network and host-based security controls. SecureWorks currently supports full lifecycle management, maintenance and monitoring of Imperva SecureSphere appliances as well as monitoring for other WAF appliances that organizations may have. Imperva is a market leading Web application firewall provider.
Unlike network security appliances like firewalls and intrusion detection and prevention systems, WAF appliances perform full inspection of inbound and outbound Web application communications including encrypted (https://) traffic. To accommodate high diversity among commercial and internally-developed applications, WAF technologies profile each application’s behavior and use defined policies to detect and block inappropriate activity.
Leveraging purpose-built security management technology, applied security research from the Counter Threat Unit and 100% GIAC-certified security professionals, SecureWorks provides “end to end” management of WAF appliances to provide the highest degree of protection and visibility without interrupting legitimate business traffic to and from client applications. SecureWorks supports the full WAF lifecycle from initial architecture design and deployment to ongoing tuning and configuration management to real-time security event monitoring and response, removing these burdens on client staff and allowing them to focus on business-driven security initiatives.