Skip to content

Case Study – Tower ensures website visibility and uninterrupted business operations with Imperva Application Security

Tower Insurance selects Imperva for cloud application security

Born and bred in New Zealand, Tower has been supporting Kiwis when they need it most for 150 years. In that time, we’ve grown to operate across New Zealand and the Pacific Islands, providing our customers with cover for their houses, cars, contents, businesses and more.

While our heritage is important to us, we’ve also set our sights on the future. Our goal is to meet the 21st century head-on with customer focused, digital-first insurance solutions for Kiwis and their communities.


Seeking to continue and improve support granularity and flexibility

Insurance companieslike many other organisations, are vulnerable to web application attacks because of the high volume of sensitive data that passes back and forth between stakeholders.

Tower’s previous service for monitoring website traffic was to a certain extent, a black box for the security team and the company. “People in the organization had visibility of real-time security events being generated by web traffic but not at the granular level we wanted”, stated Darren Beattie, Security Lead at Tower.

Due to the fast-paced rollout of Tower’s digital first insurance services across multiple geographies, additional requirements for Tower’s future WAF capability were identified to include:

  • Real-time visibility of web traffic (good and bad)
  • Advanced protection capabilities (e.g. Bot and DDoS protection)
  • Self-service capabilities for non-security teams
  • SIEM Integration patterns for logging and alerting
  • Straightforward Pricing models for modular capabilities
  • Ease of configuration & implementation
  • A credible delivery partner and locally based product expertise

With these additional requirements, Tower took the opportunity to look at alternative solutions to monitor website traffic, stop attacks, and ensure uninterrupted business operations.

Click to read the full case study 


Related Posts

After engaging Advantage to run a weekly breach and attack simulation, Mitre 10 has taken their continuous security control visibility to the next stage, utilising the regular tests to update their play books and work with their SOC to adapt to various responses.
What are some of the key differentiators that can propel small businesses forward? They include efficiency, productivity, and innovation. Microsoft has expanded the availability of one of its most dynamic tools to SMBs. A tool that can be a real game-changer for growth.
ISO27001 is an international standard that specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS).