Case Study: Blue Cross Blue Shield of Tennessee achieves comprehensive web and database protection with Imperva SecureSphere

Blue Cross Blue Shield of Tennessee - Customer Case Study

BlueCross BlueShield of Tennessee (BCBST), a not‑for‑profit health benefits company serving more than 4.6 million people, needed to strengthen protections for members’ private health information and demonstrate compliance with HIPAA and CMS requirements. Existing enterprise firewalls blocked unauthorized traffic but couldn’t detect or alert on malicious application‑ and database‑level activity that used allowed protocols, so BCBST required a comprehensive, low‑impact solution that fit existing processes and timelines.

BCBST implemented Imperva SecureSphere with dynamic profiling, deployed initially in non‑inline mode to protect web applications, portals and backend databases without changes to infrastructure. The turnkey deployment delivered complete application and database visibility, reduced operational tuning, improved detection and blocking of attacks that used legitimate protocols, lowered vendor dependency and helped BCBST meet its compliance and security objectives while planning an enterprise‑wide rollout.

Blue Cross Blue Shield of Tennessee

Chris Levan

CIO