Varonis launches v 7.0

The new Varonis Data Security Platform 7.0 showcases incident response playbooks, Active Directory risk dashboards, enhanced cloud coverage, threat intelligence, and accelerated investigations with lightning- fast query response.

  • 5 years ago Posted in
Varonis Systems has introduced new features in version 7.0 of the Varonis Data Security Platform to help organizations protect their enterprise data from insider threats and cyberattacks.

 

Version 7.0 of the Varonis Data Security Platform features new cloud and advanced threat detection and response capabilities: new event sources and enrichment; out-of-the-box threat intelligence to Varonis security insights; and playbooks that arm customers with incident response plans right in the web UI – making it easier for customers to follow best-practice responses to security incidents.

 

Additional highlights of 7.0 include:

 

  • New Dashboards Highlight Cloud, Active Directory and GDPR Risks

Active Directory risk dashboards, GDPR dashboards, and Office 365 dashboards offer at-a-glance visibility into critical exposures and concerns on Active Directory and key data stores. Widgets within each dashboard provide drill-down context and explanations of security risks -- from vulnerable user accounts to at-risk cloud data to potential compliance violations.

 

  • Support for Box Security Events

The Varonis Data Security Platform was created to protect enterprise data wherever it’s stored, and that now includes data stored in Box. Customers can filter, search, and sort by event type including impersonation events, sharing events, and more; highlight risky behavior like over-permissive sharing and impersonation; and see where to remediate security vulnerabilities.

  • Additional Office 365 and Active Directory Events Add Intelligence and Context for Alerting and Investigations

Attackers commonly exploit weaknesses or misconfigurations in Azure and on-premises Active Directory to escalate privileges and access data, including email stored in Exchange Online. Varonis 7.0 enhances Exchange Online, Azure AD and Active Directory monitoring with new event and entity information, and additional telemetry from directory services helps customers reduce the time it takes to detect and respond to threats on premises and in the cloud.

 

  • Threat Intelligence Details Provide Deeper Insights

Monitor and track malicious (or suspicious) connections with out-of-the-box threat intelligence.  Varonis security insights and events are now enriched with information about risky external connections. Customers can now get external IP and URL enrichment in context with suspicious behavior and unusual activity for deeper insight on potential security incidents.

 

  • Incident Response Playbooks Map Out Next Steps

Incident response plans from our cybersecurity research lab are now built into the Varonis UI as playbooks: our security experts mapped out best practices for responding to different types of cyberattacks – covering incident notification to containment to recovery, along with actionable steps to eradicate threats and improve security postures for future attacks.

  • Increased Speed and Scalability with Solr

Version 7 optimizes the use of Solr for dramatically faster and more intuitive investigations. Solr enables rapid data aggregation, visualization, and horizontal scalability on commodity hardware, even with billions of events. By innovating on top of Solr, Varonis customers can provision relatively little hardware and receive significant performance improvements. Customers will benefit from faster search auto-completion, improved search response and immediate access to search results -- even during their compilation.

 

  • …and More

Additional features from version 7.0 include more out-of-the-box reports (including reports on overexposed regulated and GDPR data); new threat models to detect additional types of cyberattacks; faster updates to the web UI; and saved searches for more collaborative investigations.

 

“This new release of the Varonis Data Security Platform speaks to the fact that too many modern organizations are combatting a lack of perimeter visibility, in-house expertise, proactive incident response, and the requirement for a cyber-resilient strategy – creating prime targets for attackers,” said Peter Evans, chief marketing officer, Optiv. “Assessing a company’s business requirements first, and starting with an ‘inside-out’ view on risk, can identify and prioritize gaps in security program execution across tools, processes – such as global access, and data. Technology can automate these processes for detection and remediation, thereby optimizing security while increasing effectiveness.”

Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
73% of organizations lack automated patch management, and 62% experienced incidents involving...
Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with...
Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to...
Aqua’s cloud native application protection platform becomes the only solution that protects cloud...
54% of organisations working on a security transformation project now or in the next 12 months.
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities...