On May 28th of this year, I had the incredible opportunity to join Rick Vanover and Emilee Tellez at Security Field Day 13 in San Jose, California! I was able to tag along and help them facilitate their smashing Security Field Day presentation, centered around Veeam’s latest innovations in security. If you are unfamiliar with what Security Field Day is, it’s a live streamed presentation that includes an in-person roundtable of security thought leaders and experts to weigh in and drive the conversation about what really matters in the current security landscape. I wanted to take this opportunity to break down the five-part presentation and share my feedback on the most impactful and interesting moments.

Have You Seen Veeam Lately?

This section was a great starting point to give a fresh update on Veeam. Highlighting our pillars of Data Backup, Recovery, Portability, Security, and Intelligence made many realize just how much Veeam has evolved. When it comes to Veeam’s data security, it’s all about the Veeam power of three. This includes innovation with over eight different security scanning features to scan before, during and after a backup, partnerships with over 65 different security vendors, and the acquisition of Coveware by Veeam to become the only data protection vendor with an in-house incident response firm. The visual below brings these concepts to life. It illustrates how Veeam’s platform is designed to deliver comprehensive data resilience, whether its self-managed or as-a-service and across a plethora of environments. At the center, Veeam Cyber Secure provides the foundation to integrate our key pillars. This diagram not only demonstrates versatility but the understanding of how deeply security is woven into every backup offering.

Watch the Full Video Here: Have You Seen Veeam Lately?

Security Innovations at Veeam

Focusing on this first security pillar of Innovation, I want to showcase just how many features have been added since 12.2:

Threat Hunter, in-line detection, and Indicators of Compromise form a fantastic trio that creates a multi-layered security approach. Threat Hunter provides signature-based scans of your backup data, AI-based in-line detection scans your data streams for anomalies in real time, and IOC (Indicators of Compromise) searches and detects known attacker toolkits. Another cool feature in this lineup is the Security and Compliance Analyzer which can help ensure best practices around security of your backup infrastructure. A particularly impressive point made is that there have been ZERO recorded cases of data loss when data is backed up to an immutable target and the customer retains the encryption password. I think this is an incredible point that people with unprotected data should take Ricks advice and stop what they’re doing and go fix right now.

Watch the Full Video Here: Security Innovations at Veeam

Security Ecosystems at Veeam

This section focused on Veeam’s vast security ecosystem highlighting integration with over 65 security vendors allowing customers to choose their own vendor while maximizing existing security investments. This allows organizations to feed Veeam’s data protection insights directly into their security tool of choice. Another key highlight from this section is the comprehensive monitoring with Veeam ONE. Veeam ONE monitors the data protection of all kinds of workloads with unified dashboards providing at-a-glance views of protection status, immutability settings, and malware detections. With the added reporting and enhanced visibility into the environment, organizations can help ensure compliance and pinpoint at-risk workloads effectively to make the proper adjustments to their resilience strategy.  

Another standout feature is Veeam’s integration with Palo Alto XSOAR. The Veeam App for Palo Alto Networks XSOAR is a Cortex XSOAR content pack that allows you to monitor various security activities in your Veeam backup infrastructure including events related to malware detection, health state and alarms triggered by Veeam ONE. This is highlighted in the screenshot below.

Not only that, but this also allows organizations to run automated security playbooks like Instant VM Recovery to restore safe system states in seconds. This bidirectional communication between Veeam and XSOAR empowers security teams to orchestrate and automate complex workflows when they need it the most.

Watch the Full Video Here: Security Ecosystem at Veeam

The Veeam Difference: Coveware by Veeam  

In this section, Rick and Emilee discuss how the acquisition of Coveware is driving rapid innovation and expanding an already wide-reaching security ecosystem. Coveware supports up to 100 cases each month which allows them to build and maintain a comprehensive data base of threat intelligence. This database allows for organizations to stay ahead of the latest ransomware trends and tactics. Coveware supports organizations both with preventative due diligence and during actual security incidents. Boasting 24/7/365 support with experts ready to engage in as little as 15 minutes, Coveware provides negotiation, decryption and forensic analysis through their patent pending Recon Scanner. While neither Veeam nor Coveware advocate paying any ransoms, their negotiation skills often provide organizations with the crucial time needed to recover their data from an immutable backup. The Recon Scanner is a powerful tool that helps reconstruct attack timelines and can uncover historic threats that may have slipped past other security tools. It is included as part of Veeam Data Platform (VDP) Premium, giving organizations advanced forensic capabilities right out of the box.

Watch the Full Video Here: The Veeam Difference: Coveware by Veeam