With the powerful new features available in the 12.1 release announced late last year, the Veeam Data Platform is evolving into a more secure, more resilient solution for data security – and the timing couldn’t be better. According to the latest Data Protection Trends Report, we know that 75% of organizations suffered a ransomware attack in the last year. Thanks to the Ransomware Trends Report, we also know that 96% of those attacks explicitly targeted an organization’s backups. At Veeam, we always say that secure backups are your best line of defense against ransomware – but what happens when those backups are the primary target for a cyberattack?
The risk posed to your backups is a security threat to your organization. If and when your backups are impacted by malware, your organization’s ability to recover quickly becomes limited, and business continuity is at risk. It’s important to consider the health and security of your backup data when building your holistic strategy for organizational resilience.
Uniting IT and security teams for a stronger security posture
Organizational resilience requires input from not only your organization’s security teams, but your IT teams as well. Your organization likely has an IT team or team member responsible for backup administration – this team’s goal will be to enable the organization to recover faster, with less data loss and lower risk. Similarly, your security team will be working to mitigate risk in the midst of an evolving threat landscape. These two teams operate around similar goals, and needless to say, a threat to your organization’s backup environment is a red flag for everyone.
When IT and security teams come together to aggregate data across the entire environment – from endpoints, to networks, to backups and beyond – into SIEM systems and similar security solutions, these teams can dramatically improve organizational resilience. Both teams are on a mission to protect business continuity, which requires early threat detection and the ability to immediately recover from cyberattacks.
Announcing: NEW Veeam App for Splunk
Veeam recently announced a new solution for security and IT teams to increase their visibility of potential cyber threats in their backup environments – the Veeam App for Splunk. The Veeam App for Splunk brings Veeam event data into your Splunk platform, monitoring for security events like ransomware, accidental deletion, malware, and other cyberthreats. With this new application, organizations can expand their daily monitoring practices to their Veeam backups, ensuring their backup data remains clean, reliable, and resilient against cyberthreats.
Security and IT leaders can now leverage Splunk to closely monitor their Veeam backup environments in the same single pane of glass as other source environments. With the Veeam App for Splunk, organizations can detect cybersecurity threats in real-time with immediate alerts for hundreds of events that could impact the integrity of their backups. These proactive alerts help organizations identify and address any cyberthreats before they lead to prolonged downtime, enabling faster recovery.
Key Features of the Veeam App for Splunk
The Veeam App for Splunk offers detailed dashboards, reports, and alerts to help your security and IT teams proactively monitor their Veeam backup environments. The app also offers several key features to enhance your security posture including:
- Pre-defined alerts for stronger threat detection: Customize hundreds of operational and security alerts to notify you of a potential cyber threat. The app includes more than 60 pre-defined alerts to help you identify things like malware, changes to your security settings, network connection issues, and more.
- Monitoring and security dashboards for a consolidated view: Monitor the status of Veeam Jobs and identify security related activities happening in the Veeam environment.
- Defined locations to accelerate response time: Improve visibility into Veeam servers in different data centers by segmenting your servers based on location. This level of visibility can help your security teams locate and respond to potential threats faster.
- Role-based access for increased control: Assign appropriate access levels to different users based on role and location. By controlling what individual users can see in your Veeam environment, you can improve the security of your backups.
How to implement the Veeam App for Splunk
The Veeam App for Splunk is now available for Veeam Data Platform Advanced and Premium users leveraging version 12.1 or later. The app can be implemented at no additional cost from Veeam via Splunkbase, and is compatible with the latest releases of Splunk Enterprise and Splunk Cloud.
Find the Veeam App for Splunk on Splunkbase here or download our dedicated solution brief to find out more.