Home > News > featured news > Varonis Introduces Automated Posture Management to Fix Cloud Security Risks

DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

Varonis Introduces Automated Posture Management to Fix Cloud Security Risks

Varonis | January 27, 2023 | Read time : 02:00 min

Varonis Introduces Automated Posture Management to Fix Cloud Security Risks

On January 26, 2023, Varonis Systems, Inc., a leader in data security and analytics, announced the availability of automated posture management to assist clients in resolving security and compliance gaps spanning their SaaS and IaaS systems.

Varonis continuously scans, identifies, and ranks cloud security threats, providing CISOs and compliance officers with real-time insight into their data security posture. With this new automation option, users can fix misconfigurations in applications such as Salesforce and AWS with a single click from a unified interface.

According to Gartner, through 2025, 99% of cloud security breaches will be the customer's fault. CIOs can counter this by adopting and enforcing rules for cloud ownership, accountability, and risk acceptance.

Varonis Field CTO, Brian Vecci, said, “Automated posture management takes the burden of understanding and remediating cloud misconfigurations off the customer.” He also said, “We stay on top of the latest configuration risks and best practices, so you don’t have to. Now, we can not only show you exactly how to improve your security posture, but we can also automatically mitigate risk on your behalf.”

(Source – GlobeNewswire)

This release marks a significant advancement in cloud data security. Passive data security posture management (DSPM) solutions need manual operations to generate help desk tickets for a person to review and fix in every cloud application manually. Varonis offers a uniform and automated method for minimizing the attack surface of multi-cloud environments.

Automated posture management is the most recent tool introduced by Varonis to simplify data security outcomes. Varonis introduced least privilege automation for Google Drive, Microsoft 365, and Box, as well as a new data security posture management (DSPM) dashboard early this month.

About Varonis

Varonis is a leader in data security and analytics, waging war differently from typical cybersecurity corporations. Instead, Varonis focuses on protecting business data like:

  • Sensitive files and emails
  • Strategic and product plans
  • Financial records
  • Confidential customer, patient, and employee data

In addition to data protection, Zero Trust, data governance, compliance, categorization, data privacy, and threat detection and response, Varonis solutions handle various other critical use cases. The company began operations in 2005 and has clients in the financial services, healthcare, industrial, energy and utilities, insurance, technology, media and entertainment, consumer and retail, and education industries, among others.

Spotlight

5 Top Residential Security Trends to Watch in 2023

The security industry has gained millions of households due to the explosion of DIY offerings and COVID-19. Households sought stability and safety during COVID and were able to find low-cost solutions. In 2022 though, home security system adoption slowed with home security ownership dropping from 2021 levels. The industry’s top players, however, are achieving record revenue in 2022 and that shows no signs of slowing. The rebound of professional installation since 2020 and recent solar system and service offerings have generated robust revenue growth.

More featured news

Spotlight

5 Top Residential Security Trends to Watch in 2023

The security industry has gained millions of households due to the explosion of DIY offerings and COVID-19. Households sought stability and safety during COVID and were able to find low-cost solutions. In 2022 though, home security system adoption slowed with home security ownership dropping from 2021 levels. The industry’s top players, however, are achieving record revenue in 2022 and that shows no signs of slowing. The rebound of professional installation since 2020 and recent solar system and service offerings have generated robust revenue growth.

Related News

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

Dremio and Privacera Announce Their Latest Integration

Dremio | February 01, 2023

On January 31, 2023, Dremio, the leading simple and open data lakehouse, and Privacera, the only open-standards-based data governance and security solution provider, announced their latest integration, which expands advanced data governance and security capabilities for customers building modern data applications on top of data lakehouses. As data lakehouses become more popular, it is becoming increasingly essential to manage and organize safe data access while also adhering to complicated regulatory regulations across all data assets. The new integration now allows Joint clients to expedite secure and governed analytics by decreasing manual processes while automating stringent compliance for contemporary data cooperation, which is especially important in highly regulated industries like financial services. The enhanced integration proffers joint clients with the following capabilities: Ensuring scalability and performance By pushing down policies written in Privacera into Dremio, the native integration allows quick query performance and scalability. Enhanced data security and governance capabilities The connector enables enterprises to implement attribute-based access control (ABAC), discovery for tagging and data classification, data encryption, row-level filtering and masking, canned reports and centralized auditing. Applying Consistent policy administration across Dremio and the majority of hybrid and multi-cloud data sources Customers can now establish and enforce data access policies and classifications once and then deploy them anywhere. About Dremio Founded in 2015, Dremio is a simple, open data lakehouse that offers self-service analytics, data warehouse capability, and data lake flexibility across all data. It boosts agility with a novel data-as-code approach that enables Git-style data experimentation, version control, and governance. In addition, it removes data silos by allowing searches across data lakes, databases, and data warehouses, as well as easing ingestion into the lakehouse. Dremio is employed by hundreds of enterprises, including three of the Fortune 500, to offer mission-critical BI on the data lake. The company is the inventor of Apache Arrow and is on a quest to redefine SQL for data lakes and meet clients where they are on their cloud journey. About Privacera Founded in 2016, Privacera is the first company to offer a SaaS-based data governance and security solution that unifies privacy and compliance across various cloud services such as Azure, AWS, Databricks, GCP, Starburst and Snowflake. It assists businesses in making efficient and responsible use of data by guiding them through their data journey. Privacera, founded by the creators of Apache Ranger™ and Apache Atlas™, is often referred to as "Apache Ranger in the Cloud." Fortune 500 customers in the insurance, finance, life sciences, media, retail, and consumer industries, as well as government agencies, use the Privacera platform to mask sensitive data, automate sensitive data discovery, and manage high-fidelity policies at petabyte scale on-premises and in the cloud.

Read More

NETWORK THREAT DETECTION, PLATFORM SECURITY, SOFTWARE SECURITY

Deepwatch Enhances SecOps Platform to Detect and Contain Identity Threats

Deepwatch | February 08, 2023

On February 08, 2023, Deepwatch, the industry leader in advanced managed detection and response (MDR) security, announced new service offerings and enhancements to the Deepwatch SecOps Platform to enhance threat detection and containment across the organization. The introduction of Deepwatch MXDR for Identity enables enhanced detection and response to rising identity-based threats; Deepwatch MXDR for Endpoint now supports Microsoft Windows Defender, which allows automatic response capabilities on Windows endpoints; and Deepwatch SecOps Platform, user interface upgrades, provide customers with greater visibility into the efficacy of their security operations program – from practitioner dashboards to self-service, board-level metrics and reporting. Deepwatch offers comprehensive detection and automated reaction to cyber threats, as well as customized security recommendations from experienced professionals. The 24/7/365 protection provided by the Deepwatch SecOps Platform eliminates the risk and significantly enhances security posture. Based on advanced threat analytics, integrations with top security tools, and dynamic content libraries, Deepwatch's managed detection and response services (MXDR, MDR, and others) provide customers with an "always on" modern SOC that continuously adapts to the combat ever-changing threat landscape. Wesley Mullins, CTO at Deepwatch, said, "Deepwatch provides security teams the expertise, flexibility, user experience and support to rapidly accelerate their extended detection and response strategies to defend against threats targeting enterprises." He also added, "With the addition of Deepwatch MXDR for Identity, we can do more than shut down the endpoint or make a firewall rule on the fly. We can respond to a threat at every level across the customer's attack surface whether its network, cloud or identity." (Source – Business Wire) About Deepwatch Based in Florida, Deepwatch is the industry leader in managed security services, guarding businesses 24/7/365 from evolving cyber threats. Deepwatch, which is powered by Deepwatch's cloud security platform, provides the industry's quickest, most exhaustive detection and automatic response to cyber threats, along with customized advice from dedicated experts to mitigate risks and significantly improve security posture. Deepwatch is trusted by the world's biggest corporations, from the Fortune 100 to mid-sized businesses, to defend their businesses.

Read More

PLATFORM SECURITY,SOFTWARE SECURITY,WEB SECURITY TOOLS

Skyhigh Security Announces Achieving Amazon Web Services Security

Skyhigh Security | December 28, 2022

Skyhigh security, a leading data security solutions provider, recently announced receiving Amazon Web Services (AWS) Security Competency accreditation in the infrastructure security industry. This distinction recognizes Skyhigh Security's extensive technical expertise in AWS and proven success in its ability to assist customers in achieving their cloud security objectives. Achieving AWS Security Competency distinguishes Skyhigh Security as a member of the AWS Partner Network (APN) that offers specialized software to assist organizations in adopting, developing, and deploying complex security projects on AWS. To achieve the distinction, APN Partners must have in-depth knowledge of AWS and provide solutions on AWS effortlessly. AWS delivers scalable, versatile, and cost-effective solutions to startups and large-sized organizations. To enable the seamless integration and implementation of these solutions, AWS launched the AWS Competency Program to assist customers in identifying consulting and technology APN Partners with extensive industry knowledge and expertise. AWS users can buy the entire Security Service Edge (SSE) portfolio of Skyhigh Security through the AWS Marketplace, which enhances the efficiency of the procurement process and provides flexible licensing options. The company's SSE portfolio is cloud-native, designed from the bottom up with Zero Trust principles, and includes a unified data loss prevention and policy engine. Skyhigh SSE contains, Skyhigh Cloud Access Security Broker, Skyhigh Secure Web Gateway, and Skyhigh Private Access, among other products, offering one of the most extensive portfolios in the market. About Skyhigh Security Based in California, U.S., Skyhigh Security, a provider of a complete, market-leading data security platform built on a modern cloud stack, focuses on helping customers protect the world's data. It protects businesses with data-aware and user-friendly cloud-native security solutions. Its industry-leading Security Service Edge (SSE) portfolio extends beyond data access and focuses on data use, enabling enterprises to communicate from any device and location without compromising security.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

Dremio and Privacera Announce Their Latest Integration

Dremio | February 01, 2023

On January 31, 2023, Dremio, the leading simple and open data lakehouse, and Privacera, the only open-standards-based data governance and security solution provider, announced their latest integration, which expands advanced data governance and security capabilities for customers building modern data applications on top of data lakehouses. As data lakehouses become more popular, it is becoming increasingly essential to manage and organize safe data access while also adhering to complicated regulatory regulations across all data assets. The new integration now allows Joint clients to expedite secure and governed analytics by decreasing manual processes while automating stringent compliance for contemporary data cooperation, which is especially important in highly regulated industries like financial services. The enhanced integration proffers joint clients with the following capabilities: Ensuring scalability and performance By pushing down policies written in Privacera into Dremio, the native integration allows quick query performance and scalability. Enhanced data security and governance capabilities The connector enables enterprises to implement attribute-based access control (ABAC), discovery for tagging and data classification, data encryption, row-level filtering and masking, canned reports and centralized auditing. Applying Consistent policy administration across Dremio and the majority of hybrid and multi-cloud data sources Customers can now establish and enforce data access policies and classifications once and then deploy them anywhere. About Dremio Founded in 2015, Dremio is a simple, open data lakehouse that offers self-service analytics, data warehouse capability, and data lake flexibility across all data. It boosts agility with a novel data-as-code approach that enables Git-style data experimentation, version control, and governance. In addition, it removes data silos by allowing searches across data lakes, databases, and data warehouses, as well as easing ingestion into the lakehouse. Dremio is employed by hundreds of enterprises, including three of the Fortune 500, to offer mission-critical BI on the data lake. The company is the inventor of Apache Arrow and is on a quest to redefine SQL for data lakes and meet clients where they are on their cloud journey. About Privacera Founded in 2016, Privacera is the first company to offer a SaaS-based data governance and security solution that unifies privacy and compliance across various cloud services such as Azure, AWS, Databricks, GCP, Starburst and Snowflake. It assists businesses in making efficient and responsible use of data by guiding them through their data journey. Privacera, founded by the creators of Apache Ranger™ and Apache Atlas™, is often referred to as "Apache Ranger in the Cloud." Fortune 500 customers in the insurance, finance, life sciences, media, retail, and consumer industries, as well as government agencies, use the Privacera platform to mask sensitive data, automate sensitive data discovery, and manage high-fidelity policies at petabyte scale on-premises and in the cloud.

Read More

NETWORK THREAT DETECTION, PLATFORM SECURITY, SOFTWARE SECURITY

Deepwatch Enhances SecOps Platform to Detect and Contain Identity Threats

Deepwatch | February 08, 2023

On February 08, 2023, Deepwatch, the industry leader in advanced managed detection and response (MDR) security, announced new service offerings and enhancements to the Deepwatch SecOps Platform to enhance threat detection and containment across the organization. The introduction of Deepwatch MXDR for Identity enables enhanced detection and response to rising identity-based threats; Deepwatch MXDR for Endpoint now supports Microsoft Windows Defender, which allows automatic response capabilities on Windows endpoints; and Deepwatch SecOps Platform, user interface upgrades, provide customers with greater visibility into the efficacy of their security operations program – from practitioner dashboards to self-service, board-level metrics and reporting. Deepwatch offers comprehensive detection and automated reaction to cyber threats, as well as customized security recommendations from experienced professionals. The 24/7/365 protection provided by the Deepwatch SecOps Platform eliminates the risk and significantly enhances security posture. Based on advanced threat analytics, integrations with top security tools, and dynamic content libraries, Deepwatch's managed detection and response services (MXDR, MDR, and others) provide customers with an "always on" modern SOC that continuously adapts to the combat ever-changing threat landscape. Wesley Mullins, CTO at Deepwatch, said, "Deepwatch provides security teams the expertise, flexibility, user experience and support to rapidly accelerate their extended detection and response strategies to defend against threats targeting enterprises." He also added, "With the addition of Deepwatch MXDR for Identity, we can do more than shut down the endpoint or make a firewall rule on the fly. We can respond to a threat at every level across the customer's attack surface whether its network, cloud or identity." (Source – Business Wire) About Deepwatch Based in Florida, Deepwatch is the industry leader in managed security services, guarding businesses 24/7/365 from evolving cyber threats. Deepwatch, which is powered by Deepwatch's cloud security platform, provides the industry's quickest, most exhaustive detection and automatic response to cyber threats, along with customized advice from dedicated experts to mitigate risks and significantly improve security posture. Deepwatch is trusted by the world's biggest corporations, from the Fortune 100 to mid-sized businesses, to defend their businesses.

Read More

PLATFORM SECURITY,SOFTWARE SECURITY,WEB SECURITY TOOLS

Skyhigh Security Announces Achieving Amazon Web Services Security

Skyhigh Security | December 28, 2022

Skyhigh security, a leading data security solutions provider, recently announced receiving Amazon Web Services (AWS) Security Competency accreditation in the infrastructure security industry. This distinction recognizes Skyhigh Security's extensive technical expertise in AWS and proven success in its ability to assist customers in achieving their cloud security objectives. Achieving AWS Security Competency distinguishes Skyhigh Security as a member of the AWS Partner Network (APN) that offers specialized software to assist organizations in adopting, developing, and deploying complex security projects on AWS. To achieve the distinction, APN Partners must have in-depth knowledge of AWS and provide solutions on AWS effortlessly. AWS delivers scalable, versatile, and cost-effective solutions to startups and large-sized organizations. To enable the seamless integration and implementation of these solutions, AWS launched the AWS Competency Program to assist customers in identifying consulting and technology APN Partners with extensive industry knowledge and expertise. AWS users can buy the entire Security Service Edge (SSE) portfolio of Skyhigh Security through the AWS Marketplace, which enhances the efficiency of the procurement process and provides flexible licensing options. The company's SSE portfolio is cloud-native, designed from the bottom up with Zero Trust principles, and includes a unified data loss prevention and policy engine. Skyhigh SSE contains, Skyhigh Cloud Access Security Broker, Skyhigh Secure Web Gateway, and Skyhigh Private Access, among other products, offering one of the most extensive portfolios in the market. About Skyhigh Security Based in California, U.S., Skyhigh Security, a provider of a complete, market-leading data security platform built on a modern cloud stack, focuses on helping customers protect the world's data. It protects businesses with data-aware and user-friendly cloud-native security solutions. Its industry-leading Security Service Edge (SSE) portfolio extends beyond data access and focuses on data use, enabling enterprises to communicate from any device and location without compromising security.

Read More

More featured news