Rubrik has announced a strategic partnership with Mandiant, part of Google Cloud. This collaboration brings together the strengths of data security, incident response, and threat intelligence to accelerate threat detection and cyber recovery for customers.
Enhancing Threat Detection and Cyber Recovery
The integration of Rubrik’s backup solutions with Mandiant’s premier threat detection and intelligence capabilities aims to identify threats within backups, ensuring that organizations can respond swiftly and recover efficiently after cyberattacks. Steve Elovitz, Director at Mandiant Consulting, emphasized the significance of this partnership, stating, “Together, we can help organizations before, during, and after cyber attacks to ensure businesses can respond quickly and get back up and running as soon as possible.”
Addressing the Challenge of Undetected Threats
Mandiant’s M-Trends 2024 report indicates that the global median dwell time from compromise to detection is improving, yet threat actors can still operate undetected for a median of 10 days. This window provides ample opportunity for destructive attacks. Typically, organizations restore the most recent backup before encryption, but if that backup contains a backdoor, the risk of reinfection remains. The integration of Mandiant’s frontline breach insights with Rubrik’s solutions aims to proactively enhance cyber resilience.
Steve Stone, Head of Rubrik Zero Labs, highlighted the impact of the collaboration: “Organizations have been responding to ransomware attacks with months-long recovery processes, which can result in irreparable damage to the business. With Mandiant, we are able to demonstrably lessen the impact window of ransomware attacks while simultaneously increasing the capabilities available to customers in need — from threat intelligence to rapid access to incident response teams.”
Key Pillars of the Partnership
Integration of Mandiant Threat Intelligence in Rubrik Security Cloud: Rubrik’s Threat Monitoring now incorporates Mandiant’s breaking threat intelligence, enabling organizations to combat threats such as ransomware and malware before they cause significant damage. This integration leverages Mandiant’s extensive knowledge from major breaches, applying it to every Rubrik backup to identify safe recovery points.
Clean Room Recovery Powered by Google Cloud: To address concerns about backups containing backdoors, Rubrik introduces Clean Room Recovery. This allows organizations to recover and store data in a secure Google Cloud environment or other multi-cloud environments, eliminating the risk of reinfection.
Joint Ransomware and Incident Response Teams: Rubrik and Mandiant are combining their Ransomware Response and Incident Response teams to offer enhanced investigative and recovery support for joint customers. This collaboration ensures that, in the event of an attack, both teams work together to help businesses recover swiftly.
Achieving Consistent and Integrated Cybersecurity
The partnership between Rubrik and Mandiant offers organizations the benefits of integrated, best-in-class technology and expertise, enhancing their ability to manage and mitigate significant threats. By uniting their strengths, Rubrik and Mandiant provide a robust defense against the evolving landscape of cyber threats.