Varonis debuts trailblazing features for securing Salesforce. Learn More

Varonis named a Leader in The Forrester Wave™: Data Security Platforms, Q1 2023

Read the report

Varonis Announces Proactive Incident Response for SaaS Customers

3 min read
Published January 31, 2023
Last updated April 17, 2023

Security teams are stretched thin — inundated by endless alerts and plagued by false positives. To help ease the burden, Varonis began offering incident response assistance to customers who reached out for help. 

Over the past few years, we investigated thousands of incidents and compiled countless stories from happy customers who have tapped our team to help stop a breach.

Today, we're taking our mission of providing effortless outcomes to a whole new level.

Announcing Proactive Incident Response for Varonis SaaS customers. With this new offering, Varonis SaaS customers will be assigned a dedicated incident response analyst who will watch their alerts, investigate suspicious activity, and call them if we see a problem.

Varonis SaaS customers can rest assured that even if they're not looking at their alert dashboard every day, our world-class team will be keeping a watchful eye on their data. Another monumental step in our quest for truly effortless outcomes.

A platform, a team, and a plan

Our incident response capabilities are built atop Varonis’ best-in-class data detection and response product, decades of cybersecurity experience, and a battle-tested playbook.

Varonis' user and entity behavior analytics (UEBA) is unique because we start with data. We watch how users and devices interact with data, learn their normal behavior, and alert on meaningful deviations. When we see an alert, we can dive into the Varonis audit log, see what data was touched, collect forensics artifacts, and take action. 

"The investment we've made in Varonis has been immeasurable in finding and stopping cyberattacks. The Varonis team proactively reaches out to me with true incidents, rather than just surfacing more alerts for my team to manage," says Scott Mercer, Director, Cybersecurity and Technical Services, KU Endowment.

I sleep better at night knowing that we have an extra set of eyes watching our environment.

Forensics and threat research expertise

Cybersecurity support doesn’t stop with the incident response team. For advanced threats, we have a forensics team that is trained to think like attackers. They reverse-engineer malware, assist with APT investigations, and perform threat hunting.

They also perform Cyber Resiliency Assessments for customers — a four-week red team/blue team exercise to stress-test a customer's security stack against the latest adversary tradecraft. The exercise ends with a full report of strengths and weaknesses, along with areas of opportunity to strengthen detections.

Beyond forensics, Varonis employs a talented team of threat researchers called Varonis Threat Labs. With decades of military, intelligence, and enterprise experience, this team is responsible for evolving Varonis’ threat detection and response capabilities. They search for vulnerabilities in commonly used applications and work with those app companies to fix security gaps before they can be exploited by a hacker. As the team makes new discoveries, we build their findings into Varonis’ platform.

Tailored detection and response

In addition to tactical assistance with incident response, threat hunting, and alert prioritization, Varonis security operations experts provide strategic guidance and take preventative action to continuously improve customers' data security resilience.

As our incident response team watches customer alerts, they proactively optimize the platform’s alerting so that it's tailored to the organization. They can make recommendations for and help configure automated responses to certain alerts to stop active threats like ransomware before they do damage. They can also build custom threat models to suit an organization’s specific detection needs. All of this is possible because of Varonis’ flexible, agile platform that allows for rapid response.

Regular risk reviews  

Our team will escalate major incidents to your organization and reserve minor findings for our regular check-ins. Varonis engineers will meet with your team to review these issues and explain each result, providing you with personalized recommendations for where you can improve your security posture. As we monitor your environment, we look for data exposure risks, such as sensitive data shared externally or admin accounts without MFA, and help you prioritize what to fix and how.

Meet some of your new security analysts

Our Proactive Incident Response team is made up of some of the brightest minds in offensive and defensive security. They’re based all over the world, ready and available to help protect your data.

Varonis Security Experts

Get effortless security outcomes with Varonis

Proactive Incident Response is our latest announcement of offerings focused on delivering effortless outcomes with automation.

Earlier this month, we announced least privilege automation for Microsoft 365, Google Drive, and Box and a new customizable data security posture management (DSPM) dashboard. Last week, we also launched automated posture management to automatically fix security risks and non-compliant configurations across customers’ cloud environments.

Proactive Incident Response is available now for Varonis SaaS customers. Varonis takes just minutes to install and provides data security insights instantly. Sign up for a complimentary Data Risk Assessment to evaluate your security posture and get expert help on how to tackle your biggest data exposure risks.

What you should do now

Below are three ways we can help you begin your journey to reducing data risk at your company:

  1. Schedule a demo session with us, where we can show you around, answer your questions, and help you see if Varonis is right for you.
  2. Download our free report and learn the risks associated with SaaS data exposure.
  3. Share this blog post with someone you know who'd enjoy reading it. Share it with them via email, LinkedIn, Reddit, or Facebook.
Try Varonis free.
Get a detailed data risk report based on your company’s data.
Deploys in minutes.
Keep reading
Varonis Announces Salesforce Shield Integration
Varonis now integrates with Salesforce Shield to provide deep visibility into Salesforce and help organizations secure their mission-critical data.
Varonis Opens UK Data Centre to Support SaaS Customers
UK expansion will help Varonis customers demonstrate compliance with the U.K.’s Data Protection Act.
Varonis Delivers Market-leading Salesforce Security
Varonis delivers market-leading Salesforce security
What’s new in Varonis: August 2023
This month brings you several new features to help security teams enforce Zero Trust across their cloud and on-prem environments.