Cohesity expands cyber resilience with new IR partners

Cohesity has announced the expansion of its Cyber Event Response Team (CERT) service through partnerships with incident response companies including Palo Alto Networks Unit 42, Arctic Wolf, Sophos, Fenix24, and Semperis. This development aims to enhance cyber resilience for its clients by speeding up incident recovery with specialised expertise and coordinated support.

These partnerships allow the Cohesity CERT to augment traditional incident response (IR) processes by providing integrated data and recovery capabilities, aiding faster investigations and quicker recovery from cyber incidents. This system supports IR partners with a consolidated set of customer-approved operational data, enriching their digital forensics, threat intelligence, and containment abilities.

Sanjay Poonen, CEO of Cohesity, stated, "With ransomware, data breaches, and other cyber threats becoming an unavoidable reality, organisations need the assurance that they can bounce back faster, stronger, and smarter. Cohesity CERT is a natural extension of our mission to empower organisations with resilient, secure data management. We're doubling our commitment to our customers by ensuring they have the expertise and tools to navigate and recover from cyber crises effectively. Cyber resilience is the cornerstone of modern cybersecurity, and we are committed to helping our customers achieve it."

The CERT service is available to Cohesity customers as part of their existing subscription, offering several benefits. Among these are minimised business disruption and financial loss, comprehensive response and recovery, 24/7 availability, and specialised expertise with proactive recommendations.

Paul Henaghan, Managing Director for Cohesity in Australia and New Zealand, highlighted the regional impact by saying, "In light of Australia's stringent cybersecurity regulations, along with the Australian Cyber Security Centre's (ACSC) guidelines, organisations must adopt robust measures to safeguard against cyber threats, including ransomware and data breaches. Cohesity CERT aligns with these national priorities while empowering our customers with resilient data management solutions that support the Australian Government's emphasis on protecting critical infrastructure and personal data. By ensuring rapid recovery and effective navigation of cyber crises, we are dedicated to helping Australian organisations strengthen their overall cybersecurity posture and comply with legal obligations. Our new IR partnerships provide our Australian customers an advantage by giving them an accelerated ability to respond to and recover from malicious attacks. This industry-leading coalition is an exciting step in fortifying the resilience of Australian organisations against evolving cyber threats."

Sam Rubin from Unit 42 at Palo Alto Networks added, "Cybercriminals are increasingly emboldened by new technology, making cyberattacks more effective and efficient. Unit 42 provides customers with leading incident response expertise, threat intelligence and proactive services, enabling them to effectively address the most challenging threats. Through this new partnership, Cohesity will play a crucial role in expediting backup and business recovery processes of shared customers. This collaboration will greatly benefit our customers, ensuring a comprehensive approach to cybersecurity that enhances the overall investigation process for Unit 42."

Kerri Shafer-Page of Arctic Wolf said, "Time and information are two of the most critical parts of incident response. The more information we have, the quicker we can return a customer to normal operations. Cohesity's quick response toolkit gives us access to all kinds of data that can enable a more comprehensive investigation and quicker recovery. Partnering with Cohesity CERT adds valuable expertise in backup and recovery and helps us ensure our joint customers are resilient no matter what attackers throw at them."

Rob Harrison of Sophos remarked, "By partnering with Cohesity CERT, Sophos' Incident Response (IR) team of experts who work 27/4 around the world identifying and neutralising threats can jump right in to assess and react to active threats targeting Cohesity's customers. This streamlined process is critical because the faster Sophos IR can get involved, the faster the team can disrupt and eject attackers before they exfiltrate data, carry out ransomware or other damaging activities. With this partnership, Sophos customers will also be referred to Cohesity's quick response toolkit for comprehensive backup and recovery programs. This collaboration ensures our joint customers are more resilient and able to recover faster from cyberattacks."

Semperis CEO Mickey Bresman commented, "Expanding our partnership with Cohesity will improve operational resilience for our joint customers and partners, by protecting the critical pathways that ransomware attackers use to compromise Microsoft Active Directory (AD) and Entra ID systems. In nearly all ransomware attacks, adversaries target AD or Entra ID as the key to the organisation. Without sufficient backup and recovery solutions and regular continuity testing, disruptions of these identity systems can and do occur, costing organisations money and putting critical infrastructure at risk."

451 Research noted in their study, "Enterprise security teams need all the help they can get. One third of enterprises have expressed that current staffing levels are inadequate for their organisation's challenges; the degrees of staff specialisation have consistently increased. In lieu of additional staffing, enterprises are looking for vendors to provide value-added services that improve processes with their products."