The News: Cloud global file system vendor Nasuni added targeted restore capabilities to the Nasuni Ransomware Protection add-on service to streamline recovery, and integrated its ransomware recovery with Microsoft Sentinel. You can read more about the news on the Nasuni website.

Nasuni Bolsters Cybersecurity, Integrates with Microsoft Sentinel

Analyst Take: The Nasuni File Data Platform stores files, data, and metadata as objects in public clouds. It caches frequently-accessed files and on-premises virtual appliances for quick access. The architecture allows geographically-dispersed workers to collaborate while providing enterprise data availability and protection.

Nasuni’s targeted restores allow customers to:

Minimize impact of a ransomware attack on the business, dramatically reducing risk that an attack on file shares will impact operations
Recover only encrypted files identified in the incident
Automatically save key details on affected files and the last clean snapshot of data when engaging in the restore process
Manage IT and SecOps timelines and reduce administrative tasks, fully documented attack details to meet reporting, regulatory, and insurance requirements
Simplify setup of Nasuni’s Rapid Recovery process with a few clicks

Sentinel is Microsoft’s security information and event management (SIEM) platform. Integration with Sentinel allows Nasuni to automatically capture threat events and send them to Sentinel for analysis. SIEM systems such as Sentinel can help detect anomalies in file behavior, and use AI to automate incident response and act to:

Disable Active Directory accounts of targeted users
Analyze user activity leading up to the event
Investigate threats and hunt suspicious activities

Microsoft Log Analytics Workspace gathers and shares Nasuni event and audit logs at any Nasuni distributed device for constant monitoring with the Sentinel platform.

Security Needs to Be Built in, Not Bolted On

Security can be a challenge for companies that store critical data in public clouds. Storing data in such a distributed manner provides criminals with a larger attack surface. Strong encryption is required, plus a secure connection to the cloud. And those capabilities must be delivered with little or no impact on performance.

So, it’s no surprise that Nasuni has made security a focus from the start, building immutable snapshots, versioning, and encryption into its global file system. It added the Ransomware Protection add-on service in 2022. Like its cloud global file system rival CTERA, Nasuni has continued to add security capabilities. Nasuni claims it can recover millions of files in seconds with its Ransomware Protection’s targeted restores.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.