GigaOm - Experts & Thought Leaders
Latest GigaOm news & announcements
Commvault, a pioneering provider of cyber resilience and data protection solutions for hybrid cloud organisations, released new critical insights from its 2024 Cyber Recovery Readiness Report. This global survey of 1,000 security and IT professionals across 11 countries, reveals interesting behaviour changes for organisations that have been breached versus those that have not. Cyber resilience and recovery The Commvault survey, done in collaboration with GigaOm, shows that organisations that have endured cyber incidents in the past don’t want to get burned again. Consequently, they often reassess and invest in cyber resilience and recovery strategies in very meaningful ways. According to the survey: Investments in cyber resilience increase: Organisations that have been breached spend nearly 30% more on cybersecurity measures than those that haven't. More attention is given to understanding data risk profiles: Breached organisations are nearly 2.5 times more likely to prioritise understanding their data risk profiles, which highlight data types and relative levels of risk. Cyber readiness testing is prioritised: Breached organisations conduct more testing to find gaps in their cyber preparedness plans. Twenty percent of organisations that haven’t been breached do not test their recovery plan at all, that number drops to just 2% for organisations that have been breached. Comprehensive cyber recovery plans The impact of these added investments and focus on cyber resilience is significant The impact of these added investments and focus on cyber resilience is significant. According to the survey, breached organisations that have invested in comprehensive cyber recovery plans recover 41% faster than their less-prepared counterparts. In terms of specific recovery times, breached organisations state that they are 32% more likely to recover within 48 hours compared to those that have not been breached – a much better outcome than the recovery times noted by other respondents, which could be three weeks or more. This reduced downtime can translate to significant savings, both in terms of direct financial losses and the preservation of customer trust and brand reputation. Recovery strategies "We’ve all heard the expression hindsight is 20/20, and that could not be more applicable when it comes to the findings of this survey," said Brian Brockway, Chief Technology Officer at Commvault. "Our survey shows that the most resilient organisations are those that continuously test and refine their recovery strategies, learning from each incident to strengthen their defences. It’s this proactive mindset, rather than reactive spending, that makes the difference." Cyber resilience measures The report underlines that the costs of being breached–ranging from active upset to regulatory finesMuch like health insurance, where the cost of coverage often far outweighs the potential expenses of medical emergencies, cyber recovery readiness serves a similar purpose. The report underscores that the costs of being breached – ranging from operational disruption to regulatory fines – far exceed the expenses of proactive cyber resilience measures. "The findings should be a call to action for all organisations, not just those that have been breached," said Chris Ray, Cybersecurity Analyst at GigaOm. "Cyber threats are constantly evolving, and so too must the strategies to counter them. It’s about adopting a holistic approach to cyber resilience that integrates people, processes, and technology, ensuring readiness at every level." Five resiliency markers In addition to these findings, Commvault and GigaOm were able to pinpoint five key capabilities, also called resiliency markers, that when deployed together, helped companies recover faster from cyberattacks and experience fewer breaches compared to companies that did not follow the same path. These five resiliency markers emerged after data analysis teams combed through the same survey results across a range of topics including: how often companies were breached, what resilience technologies were (or were not) deployed, and how rapidly businesses were able to recover data and resume normal operations.
Absolute Security, the pioneer in enterprise cyber resilience, has acquired Syxsense, a recognised innovator in automated endpoint and vulnerability management. Firmware-embedded platform With Syxsense integrated, customers will be able to add automated, vulnerability and patch management capabilities. From the moment devices are powered on, organisations will be able to leverage Absolute’s firmware-embedded platform to ensure that operating systems (OS), applications, and critical security controls are always up to date, protected against vulnerabilities and threats, and fully operational. Modern resilience architecture "Fundamental problems in applications and operating systems are continuing to cripple businesses, despite the billions of dollars spent to defend against advanced threats," said Christy Wyatt, CEO of Absolute Security. She adds, "Organisations need a modern resilience architecture to address problems before the OS even loads, something that can only be done from the device firmware, where Absolute is uniquely positioned." Compliance, integrity, and recovery Christy Wyatt continues, "With the addition of Syxsense, we can bring a comprehensive set of resilience capabilities to the market. With cyber resilience reimagined, customers can now fix defects and vulnerabilities before the OS runs or applications load, preventing issues from turning into incidents." She stated, "Our unique platform provides a pre-installed safety net that helps ensure compliance, integrity, and recovery, even from widespread incidents involving faulty updates." Unified Endpoint Management (UEM) Founded in 2012, Syxsense is recognised as a pioneer in Unified Endpoint Management (UEM) by analyst firm - GigaOm and noted for its Unified Endpoint Security (UES) innovation by other major analyst firms. When added to Absolute, customers will receive: Automated Patch Management: Ensuring comprehensive, risk-aligned patching across all platforms with verifiable compliance, reducing vulnerability gaps, and meeting regulatory requirements. Vulnerability Remediation: Providing proactive, automated remediation for both patched and unpatched vulnerabilities, minimising risk exposure with a robust library of predefined security fixes. This includes the ability to remediate vulnerabilities even before official patches are available. Custom Workflow Automation: Empowering teams to build and deploy tailored security workflows quickly, while enhancing response times and operational agility without adding complexity. Connectivity, visibility, and control The combination of Syxsense and existing capabilities will provide customers with resilient endpoint security The combination of Syxsense and existing capabilities will provide customers with resilient endpoint security, visibility, control, connectivity, resilience, and self-healing for applications and security controls. "We are thrilled to bring automated endpoint and vulnerability management to Absolute Security," said Ashley Leonard, CEO of Syxsense. Streamlining critical security Ashley Leonard adds, "We’ve built a platform that enterprises rely on to minimise risk and streamline critical security and management activities across globally distributed endpoints. By leveraging Absolute’s unique position in the firmware, we now can deliver the industry’s only truly resilient solution to a wider market." The acquisition positions Absolute to expand its customer base, global presence, and competitive position in additional markets. It will further establish the company as the pioneer in enterprise cyber resilience by enabling it to expand into the adjacent markets of Unified Endpoint Management (UEM) and Vulnerability Management. Endpoint and vulnerability management Two exciting spaces are estimated to be worth a combined $35 billion by 2027. This is in addition to the estimated value of the endpoint security market of $40 - $50 billion. Existing Syxsense customers and partners will continue to receive full support for existing deployments. Absolute customers will be able to add Syxsense endpoint and vulnerability management capabilities.
Commvault, a provider of cyber resilience and data protection solutions for the hybrid cloud announced an expansion of its cyber and data security ecosystem through strategic integrations with an array of security partners: Acante, Dasera, Google Cloud, Splunk, and Wiz. Cyber resilience These integrations play a key role in helping joint customers advance cyber resilience in a variety of ways across on-premises, hybrid, and cloud environments from identifying potential threats or anomalies, to understanding where sensitive data exists, to accelerating clean recoveries. These bi-directional integrations also empower customers to use their preferred security, data protection, and cyber recovery solutions. Recovery ability Only 13% of organisations are equipped to effectively defend against and rapidly recover from cyberattacks Security operations teams can leverage these integrations to help better understand risks and threats, defend against them, and recover with confidence. The need for these types of integrations has never been more critical or timely. According to a recent study commissioned by Commvault and conducted by GigaOm, only 13% of organisations are equipped to effectively defend against and rapidly recover from cyberattacks, with 54% of these organisations expressing full confidence in their recovery abilities. For more on these findings, read the 2024 Cyber Recovery Readiness Report. Cyber security, DSPM, and AI “Commvault is committed to partnering with industry leaders in cyber security, data security posture management (DSPM), and artificial intelligence (AI) with one goal in mind to help customers advance their security posture,” said Rajiv Kottomtharayil, Chief Product Officer, Commvault. “It takes a village to fight today’s cyber threats, and through these integrations, we help enable our customers to build a bridge towards true organisational resilience.” Advance data discovery Integrations with these partners continue to advance data discovery and classification, cyber resilience, and cyber security. Acante: Acante's data access governance solution for modern data and AI clouds empowers data teams to radically simplify and dramatically accelerate precise, secure, and compliant access to their fast-growing critical data. Dasera: Offers DSPM solutions that help companies identify where sensitive structured and unstructured data is, automate data security and governance, and rapidly find, flag, and fix data security risks. Google Threat Intelligence: Provides unmatched threat visibility and actionable context powered by AI to help organisations proactively set defenses, hunt efficiently, and investigate and respond to new and novel threats. With a Google Threat Intelligence licensed API key, customers can realise a seamless experience to investigate Commvault-detected threats without jumping between tabs. Splunk: Enhances threat detection and response capabilities via Splunk's advanced data analytics platform, providing real-time operational intelligence for comprehensive security insights. Wiz: Delivers a consolidated cloud security platform that excels in providing clarity, visibility, and context, enabling users to secure their cloud environments. Quotes from integration partners Acante: “We are thrilled to partner with an industry leader like Commvault to help customers bolster their data resiliency by combining Commvault’s cutting-edge data protection technology with Acante’s data access governance solution,” said Ranga Rangachari, Acante CEO and co-founder. “This integration dramatically enhances our customers' data security posture.” Dasera: “Our DSPM solutions complement Commvault’s offerings and help to provide continuous monitoring and rapid remediation of data security risks,” said Ani Chaudhuri, Dasera CEO and Co-founder. “Together, we are committed to helping organisations achieve robust data security and compliance.” Wiz: “The collaboration between Wiz and Commvault delivers cloud security context that enables highly secure backup recoveries with embedded vulnerability patching,” said Oron Noah, VP of Product Extensibility & Partnership at Wiz. “We're paving the way for a new era of cloud resilience, where data protection and security go hand in hand.” Availability These new integrations are available immediately through Commvault and its partners.
2025 Trends in video surveillance
Download7 proven solutions for law enforcement key control and asset management
DownloadMaximising security and performance
DownloadGuide for HAAS: New choice of SMB security system
DownloadThe truth behind 9 mobile access myths
Download