What are you looking for ?
Mobile Search Icon
Mobile Menu Icon
Advertise with us
RAIDON

Druva Data Security Capabilities to Accelerate Incident Response

Threat hunting and managed data detection and response capabilities help businesses respond faster to cyber incidents.

This is a Press Release edited by StorageNewsletter.com on July 23, 2024 at 2:01 pm

Druva, Inc. announced new capabilities to help its customers accelerate the investigation and remediation of cyber threats.

Druva Security Campaign Scheme

The new Threat Hunting capability empowers IT and security teams to search their global data footprint for indicators of compromise (IOCs). The company is also announcing the expanded global availability of Managed Data Detection and Response (Managed DDR), a managed service that uses a combination of technology and human expertise to proactively monitor customer backups for faster detection of and response to threats.

Druva Incident Response Timeline

While traditional security tools focus primarily on the perimeter and production environment, these tools don’t provide full-picture visibility into the data, which could lead to prolonged and incomplete digital forensics and incident analysis. The company’s approach to leveraging data and insights across incident response addresses this gap and complements existing security strategies. With Druva, customers can accelerate incident response, minimize downtime, and prevent data loss.

With today’s more advanced and persistent threats, we need to go beyond perimeter-based security. Cybersecurity needs to be complemented with the power of data to handle these risks,” said Jaspreet Singh, CEO and co-founder. “Druva’s 100% SaaS approach seamlessly consolidates and contextualizes data across all workloads, enabling customers to bolster cyber resilience and accelerate incident response.”

Click to enlarge

Druva Platform Flow 2

Threat hunting for indicators of compromise
With new Threat Hunting capabilities for indicators of compromise (IOCs), the company allows customers to more quickly understand the gestation, timeline, and impact of threats throughout their data environment.

The firm also empowers IT and security teams with contextual data insights throughout incident response (IR) workflows to understand, remediate, and recover from critical incidents. Key benefits to Druva’s approach include:

  • Faster response: Granular logs of data changes and audit trails help IR teams to analyze incidents.
  • Centralized threat hunting: Powered by rich metadata, it enables IR teams to identify and remediate IOCs, such as specific file extensions or file patterns, across the entire data estate.
  • Cleaner recovery: It scans multiple backups to create a curated snapshot and identify the most recent, clean version of each file, minimizing data loss, ensuring secure recovery, and accelerating the recovery process.
  • Enhanced forensics: With access to context-rich data, users can perform sensitive data analysis to understand if sensitive data has been compromised and if compliance regulations have been violated.

Fully managed data detection and response for backup environments
Threat actors are targeting backup environments with increasingly sophisticated attacks. With extensive experience and operational oversight, the company solution can offer businesses the resources and expertise to understand, protect, and recover from threats to their backups with minimal downtime and data loss.

The company extends this expertise through the simplicity of Managed DDR to provide customers with an expert extension to their IR team.

With Managed DDR, Druva delivers:

  • 24x7x365 monitoring of backups for early threat detection.
  • Expert analysis by company’s incident response to provide data insights for anomalous behavior.
  • Pre-built response runbooks and automatic lockdown of backups to safeguard data.
  • Expedited support and expert assistance to customer IR teams during cyber recovery.

With Druva, businesses can gain confidence throughout their IR workflows with access to a single source of truth and IR experts who can assist in incident remediation and recovery. The firm’s Managed DDR service is available to customers at no additional charge.

Backups are the last line of defense. In the event they are compromised, organizations need to know they’re still able to recover,” said Phil Goodwin, research VP, IDC. “Druva not only guarantees recovery, but they also complement existing security tools with its approach to data security. The Druva Data Security Cloud provides customers with the context-rich insights that security and IR teams need to quickly respond to and effectively remediate threats.

Resources:
Blog: Threat Hunting capability can better protect your business against critical cyber incidents     
Blog: Druva’s Managed Data Detection and Response Service strengthens your data security posture
Blog: Threat Hunting: Search, Contain, and Destroy Cyberthreats with Druva

Read also :
Druva Reinforces Commitment to Defending Microsoft Workloads with Latest Data Security Innovations
Enhancements across Microsoft ecosystem with support for Microsoft Entra ID, which serves as core identity and access management for all Microsoft Cloud resources
June 19, 2024 | Press Release
Articles_bottom
ExaGrid
AIC
ATTO
OPEN-E