Cohesity, a leader in AI-driven data security, announced the expansion of its Cohesity Cyber Event Response Team (CERT) service with new partnerships with leading incident response (IR) vendors. The Cohesity CERT team has years of dedicated incident response experience and has helped numerous customers rapidly respond to and recover from high-stakes security incidents since its founding in 2021. By partnering with leading IR vendors Palo Alto Networks Unit 42, Arctic Wolf, Sophos, Fenix24, and Semperis, Cohesity CERT will augment existing IR processes with rich data and backup and recovery expertise to accelerate investigations and help customers recover from incidents faster.
Cohesity CERT can leverage native platform capabilities to share customer-approved operational data sets, including logs, reports, and inventories, with IR partners. These rich data sets, along with Cohesity CERT’s deep data security and recovery expertise, enhance IR partners’ digital forensics, threat intelligence, and isolation capabilities to more effectively and efficiently analyze cyber incidents, resolve issues faster, and reduce business downtime. Customers can be confident that their chosen IR partner is working directly with Cohesity to streamline cyber response and recover clean data faster.
“As ransomware, data breaches, and other cyber threats become a reality, enterprises need confidence that they can recover faster, stronger, and smarter,” said Sanjay Poonen, CEO of Cohesity. “Cohesity CERT is a natural extension of our mission to empower enterprises with resilient and secure data management. We are doubling down on our commitment to our customers by providing them with the expertise and tools they need to effectively respond and recover from cyber crises. Cyber resilience is the cornerstone of modern cybersecurity, and we are committed to helping our customers achieve it.”
Cohesity CERT is available to all Cohesity customers as part of their existing subscription. Customers will enjoy the following benefits:
- Minimize Business Disruption and Financial Loss: As cyberattacks become more frequent and damaging, Cohesity helps customers quickly detect, investigate and recover from incidents, thereby preventing and minimizing business disruption.
- Comprehensive, Integrated Response and Recovery: Cohesity works with industry-leading IR partners to provide a seamless response. Cohesity has developed a methodology that leverages integrations with the Data Security Alliance and native platform capabilities to provide deeper insight into data breaches. This methodology includes customer-approved operational data, such as logs, reports, and inventory, which can be quickly shared with approved external incident response vendors for more effective and efficient analysis to support safe and rapid recovery.
- 24/7 Availability and Multi-Vendor Integration Support: Cohesity CERT handles a wide range of incidents, from sophisticated ransomware and data breaches to targeted attacks, and is available to support customers at any time during a cyber incident. Cohesity and its partners are in constant communication throughout the response and recovery process, enabling faster decision-making and agile cyber-attack response.
- Specialized Expert Groups and Proactive Delivery of Recommendations: Cohesity CERT and its partners are comprised of cybersecurity experts with expertise in incident response, threat intelligence, and forensics, making them a valuable resource when a significant incident occurs. This service provides actionable recommendations and valuable expertise, helping organizations strengthen their defenses over time, helping customers stay ahead of changing cyber threats.
“Cybercriminals are increasingly emboldened by new technologies, making cyberattacks more effective and efficient,” said Sam Rubin, vice president of threat intelligence and consulting for Unit 42 at Palo Alto Networks. “Unit 42 provides our customers with leading incident response expertise, threat intelligence and proactive services to effectively respond to the most challenging threats. This new partnership will allow Cohesity to play a critical role in accelerating our shared customers’ backup and business recovery processes. This collaboration will provide our customers with a comprehensive approach to cybersecurity and will enhance Unit 42’s overall investigation process.”
“The two most critical components of incident response are time and information. The more information we have, the faster we can get our customers back to normal operations,” said Kerri Shafer-Page, vice president of incident response at ArcticWolf. “Cohesity’s Rapid Response Toolkit provides access to a wealth of data that can enable a more comprehensive investigation and faster recovery. Our partnership with Cohesity CERT adds valuable expertise in backup and recovery, helping our joint customers withstand whatever threat an attacker throws their way.”
“An organization’s well-being depends on how secure, redundant, tamper-proof and aligned with threat actor playbooks its backup controls are,” said John Anthony Smith, CEO and Founder, Conversant Group. “But incident response investigations can be complex and time-consuming. That’s why our long-standing partnership with Cohesity CERT is so beneficial, as it adds invaluable expertise in backup and recovery, helping our joint customers remain resilient to whatever threats adversaries throw at them.”
“Partnering with Cohesity CERT will enable our team of incident response (IR) experts, who identify and neutralize threats 27/4 around the world, to immediately begin assessing and responding to active threats targeting Cohesity customers,” said Rob Harrison, senior vice president of SecOps and Endpoint Security Product Management at Sophos. “This streamlined process is critical. The sooner our IR teams engage, the sooner we can stop and disarm attackers before they can exfiltrate data, cause ransomware or cause other damage. Through this partnership, Sophos customers will also have access to Cohesity’s Rapid Response Toolkit for comprehensive backup and recovery programs. This will ensure that our joint customers are more resilient and can recover from cyberattacks faster.”
“Our expanded partnership with Cohesity will enhance the operational resilience of our joint customers and partners by protecting the critical avenues that ransomware attackers use to compromise Microsoft Active Directory (AD) and Entra ID systems,” said Mickey Bresman, CEO of Semperis. “In nearly all ransomware attacks, attackers target an organization’s core: AD or Entra ID. Without adequate backup and recovery solutions and regular continuity testing, outages of these identity systems can and do occur, costing organizations money and putting critical infrastructure at risk.” “Semperis’ 15+ years of AD experience not only differentiates us in the hybrid identity system security market, but also gives us the ability to protect leading global organizations and recover compromised identity systems in hours, not days.”
According to the S&P Global Market Intelligence 451 Research 2023 VoTE Information Security Organizational Behavior and 2024 VoTE Information Security Budget Study Report, enterprise security teams need all the help they can get, and one-third of companies say their current staffing levels are inadequate for the organization’s challenges. In addition, the level of specialization among employees continues to increase. Instead of hiring additional staff, companies are looking for suppliers who can provide added value through their products to improve their processes.
Additional information about Cohesity CERT can be found at www.cohesity.com/cert .
- See more related articles
You must be logged in to post a comment.