Imperva has added risk assessment to its SecureSphere database-security platform. The new SecureSphere Discovery and Assessment Server finds all database servers in the network, classifies data according to its sensitivity as defined by the customer and points out vulnerabilities on the servers involved.

The company said that this automated process would save time over doing it manually so customers could take quicker action to better protect that data found to be at risk. The assessment results detail the vulnerabilities found, such as unpatched systems or default passwords that have been left unchanged. Imperva competes against Guardian and Lumigent Technologies among other vendors.

The new server can sort data it gathers by server or by type of data to facilitate audit reporting. For example, it could locate all credit card data regardless of where it is stored and include that information as part of a Sarbanes-Oxley report, said Imperva.

The software includes a graphical user interface called Risk Explorer that color codes servers by severity of risk. Clicking on server icons allows users to drill down to find details about them. A workbench tool lets users correct vulnerabilities by changing default passwords, for example.

Discovery and Assessment Server is expected to be available by mid-year.

Imperva is also repackaging its existing line of products as SecureSphere Data Security Suite, which consists of the formerly separate SecureSphere products Web Application Firewall, Database Firewall, Database Activity Monitoring, MX Management Server and the new Discovery and Assessment Server. Previously, the components were sold separately.