Commvault has unveiled a significant enhancement to its integration with Microsoft Security, focusing on improving cyber resilience for enterprises. This collaboration leverages Microsoft Sentinel, Microsoft Security Copilot, and Commvault's Cloud platform to optimize resilience operations and deliver immediate data insights.
The integration facilitates the flow of security alerts from Commvault Cloud into the Microsoft Sentinel data lake, allowing security operations center (SOC) analysts to enrich incident details with partner intelligence. This process aids in assessing the impact and validating the scope of threats, which is crucial for timely response and recovery.
Key components of this partnership include an updated Microsoft Sentinel connector and Commvault’s Investigation Agent within Security Copilot. These tools enhance visibility into risks related to backups and enable organizations to detect ransomware patterns more swiftly. Additionally, the Investigation Agent autonomously examines suspicious activities, linking findings with Microsoft security signals to streamline recovery processes.
Michelle Graff, Senior Vice President of Global Channels and Partnerships at Commvault, emphasized that this integration represents a forward-thinking framework for resilience operations, highlighting the importance of quick, coordinated responses as cyber threats become more sophisticated.