WEB SECURITY MANAGER
with ACTIVEWATCH

Web application attacks are one of the most serious risks in today’s threat landscape. They are:

• Prevalent – seven out of ten environments will be attacked an average of 40 times during a year¹
• Dangerous – implicated in many
  high-profile data breaches

From SQL injection attempts to cross-site scripting exploits, protection is essential.

Web application firewalls (WAFs) are an ideal technology for defense. However, they also require expert tuning and management to be effective; otherwise, they impact site availability by blocking legitimate traffic, or are set to a level that is no longer effective.

• Download the Product Overview

Key Benefits

Alert Logic Web Security Manager is built upon powerful web application firewall technology that’s proven to defend against dangerous attacks.

Proven Website and Web Application Protection

• Immediate protection against SQL injection, cross-site scripting, OS command injection and other serious web attacks
• Automated learning engine develops customized site security policies
• High-availability infrastructure with automatic fail-over and policy synchronization
• XML, JSON and SOAP web service supported
• Web server cloaking and customizable HTTP error handling to shield web servers from direct Internet access and defeat fingerprinting attacks
• Whitelist-based filtering of input data for protection against threats from unpublished vulnerabilities in web server software and applications
• Blocking at either the application or network level
• Protection against outbound data theft and log data masking

Security-as-a-Service Delivery

• Rapidly deploy and scale as needed
• No upgrades or patching – you always have the current product
• No hidden costs

ActiveWatch Managed Web Security Services

• Expert customized tuning and configuration
• Incident response and escalation
• Proactive analysis and ongoing management
• GIAC-Certified Security Analysts and Researchers
• 24×7 State-of-the-Art Security Operations Center

Compliance Support

• Rapid compliance with PCI DSS section 6.6
• Support for other compliance mandates, including HIPAA and FISMA

Improved Website User/Visitor Experience

• Acceleration – 50 to 100% transfer rate improvement
• Dynamic HTTP compression and static content caching
• SSL termination and TCP connection off-loading
• Accommodates almost unlimited concurrent users (more than 100,000)

Secure, Non-Invasive Deployment Options

• Exclusive deployment model provides no-downtime implementation with optimum protection
• Additional deployment models for the widest range of network requirements
• Choice of physical and virtual appliances
• Deploys rapidly on-premises, in hosted environments and in the cloud

A New Approach to Web Application Security

The first Security-as-a-Service WAF, Web Security Manager provides:

• Proven WAF technology that block attacks with negative and positive security features
• Intuitive learning that adapts to your traffic patterns
• SaaS delivery from Alert Logic that removes typical WAF management headaches
• Non-invasive, no-downtime deployment
• ActiveWatch Security Operations Center (SOC) services
• Superior value, leveraging Alert Logic’s investment in highly-available infrastructure, security technology and expert staff for a monthly fee—with no capital expenses

¹ Alert Logic State of Cloud Security Report, Feb. 2012