Veeam launches a new app that injects backup data into Microsoft Sentinel for faster threat detection and automated response.
Veeam launches a new integration with Microsoft Sentinel, making backup information directly available within the Security Operations Center (SOC). The Veeam App for Microsoft Sentinel provides SOC teams with access to backup events and threat signals within a single environment.
Detection and Recovery in One
Veeam links its Data Platform to Microsoft Sentinel, a cloud-native SIEM solution. Through this integration, security teams gain visibility into more than 300 backup and security events, including failed backup tasks, suspicious activities, ransomware infections, and findings from Veeam’s Recon Scanner. This information is linked to the MITRE ATT&CK framework, allowing threat indicators to be recognized more quickly.
SOC teams can manage recovery operations, malware scans, and other actions directly from Microsoft Sentinel. This is made possible by bidirectional API connections and built-in playbooks, reducing the time between detection and recovery and minimizing manual intervention.
Integrated Dashboard
The app displays all backup and security data through an integrated dashboard within Microsoft Sentinel. This provides security teams with a centralized overview of ongoing threats, recovery actions, and the status of backup tasks. By bringing together IT and security workflows, collaboration within the SOC is enhanced, and incidents are responded to more quickly.
With the app, Veeam aims to address the growing need for visibility of backup environments within cybersecurity processes. As cyberattacks increasingly target backups, this integration adds an extra layer of defense against ransomware and other threats.
read also
Veeam Integrates Backup Information into Microsoft Sentinel
The Veeam App for Microsoft Sentinel is available to customers of the backup specialist. The application can be downloaded via the Microsoft marketplace or directly through Sentinel.