Security teams are stretched thin — inundated by endless alerts and plagued by false positives. To help ease the burden, Varonis began offering incident response assistance to customers who reached out for help.
Over the past few years, we investigated thousands of incidents and compiled countless stories from happy customers who have tapped our team to help stop a breach.
Today, we're taking our mission of providing effortless outcomes to a whole new level.
Announcing Proactive Incident Response for Varonis SaaS customers. With this new offering, Varonis SaaS customers will be assigned a dedicated incident response analyst who will watch their alerts, investigate suspicious activity, and call them if we see a problem.
Varonis SaaS customers can rest assured that even if they're not looking at their alert dashboard every day, our world-class team will be keeping a watchful eye on their data. Another monumental step in our quest for truly effortless outcomes.
A platform, a team, and a plan
Our incident response capabilities are built atop Varonis’ best-in-class data detection and response product, decades of cybersecurity experience, and a battle-tested playbook.
Varonis' user and entity behavior analytics (UEBA) is unique because we start with data. We watch how users and devices interact with data, learn their normal behavior, and alert on meaningful deviations. When we see an alert, we can dive into the Varonis audit log, see what data was touched, collect forensics artifacts, and take action.
"The investment we've made in Varonis has been immeasurable in finding and stopping cyberattacks. The Varonis team proactively reaches out to me with true incidents, rather than just surfacing more alerts for my team to manage," says Scott Mercer, Director, Cybersecurity and Technical Services, KU Endowment.
I sleep better at night knowing that we have an extra set of eyes watching our environment.
Forensics and threat research expertise
Cybersecurity support doesn’t stop with the incident response team. For advanced threats, we have a forensics team that is trained to think like attackers. They reverse-engineer malware, assist with APT investigations, and perform threat hunting.
They also perform Cyber Resiliency Assessments for customers — a four-week red team/blue team exercise to stress-test a customer's security stack against the latest adversary tradecraft. The exercise ends with a full report of strengths and weaknesses, along with areas of opportunity to strengthen detections.
Beyond forensics, Varonis employs a talented team of threat researchers called Varonis Threat Labs. With decades of military, intelligence, and enterprise experience, this team is responsible for evolving Varonis’ threat detection and response capabilities. They search for vulnerabilities in commonly used applications and work with those app companies to fix security gaps before they can be exploited by a hacker. As the team makes new discoveries, we build their findings into Varonis’ platform.
Tailored detection and response
In addition to tactical assistance with incident response, threat hunting, and alert prioritization, Varonis security operations experts provide strategic guidance and take preventative action to continuously improve customers' data security resilience.
As our incident response team watches customer alerts, they proactively optimize the platform’s alerting so that it's tailored to the organization. They can make recommendations for and help configure automated responses to certain alerts to stop active threats like ransomware before they do damage. They can also build custom threat models to suit an organization’s specific detection needs. All of this is possible because of Varonis’ flexible, agile platform that allows for rapid response.
Regular risk reviews
Our team will escalate major incidents to your organization and reserve minor findings for our regular check-ins. Varonis engineers will meet with your team to review these issues and explain each result, providing you with personalized recommendations for where you can improve your security posture. As we monitor your environment, we look for data exposure risks, such as sensitive data shared externally or admin accounts without MFA, and help you prioritize what to fix and how.
Meet some of your new security analysts
Our Proactive Incident Response team is made up of some of the brightest minds in offensive and defensive security. They’re based all over the world, ready and available to help protect your data.
Get effortless security outcomes with Varonis
Proactive Incident Response is our latest announcement of offerings focused on delivering effortless outcomes with automation.
Earlier this month, we announced least privilege automation for Microsoft 365, Google Drive, and Box and a new customizable data security posture management (DSPM) dashboard. Last week, we also launched automated posture management to automatically fix security risks and non-compliant configurations across customers’ cloud environments.
Proactive Incident Response is available now for Varonis SaaS customers. Varonis takes just minutes to install and provides data security insights instantly. Sign up for a complimentary Data Risk Assessment to evaluate your security posture and get expert help on how to tackle your biggest data exposure risks.
What you should do now
Below are three ways we can help you begin your journey to reducing data risk at your company:
- Schedule a demo session with us, where we can show you around, answer your questions, and help you see if Varonis is right for you.
- Download our free report and learn the risks associated with SaaS data exposure.
- Share this blog post with someone you know who'd enjoy reading it. Share it with them via email, LinkedIn, Reddit, or Facebook.
