Case Study: AARP protects members' data and reduces vulnerability backlog with Imperva RASP

Imperva Helps AARP Protect Senior Citizens

AARP, the membership organization serving people 50 and older, processes large volumes of personally identifiable information and already had a mature security-in-depth program. To protect its AWS-hosted Java applications (and prepare for future microservices), AARP sought a runtime application self-protection (RASP) solution that could scale, provide permanent runtime protection and richer visibility, and integrate smoothly with its automated deployment workflows.

AARP ran a proof-of-value and adopted Imperva/Prevoty RASP, deploying an autonomous plugin via its open-source deployment automation with a safe rollout path (disabled → monitor → protect) and no code changes required. The result: faster, scalable pushes to production with security built in, immediate mitigation that reduced the criticality and backlog of vulnerabilities, freed developer time for feature work, and delivered context-rich attack telemetry into the SIEM for better incident intelligence.

AARP

Saffet Ozdemir

VP of Information Security