Tierney - stock.adobe.com

Rubrik charts data security path

Backup and recovery software provider Rubrik now sees itself as a cyber security company that helps organisations recover from ransomware and other data security threats

The menace of ransomware in recent times has cast the spotlight on data security as organisations look to protect their data from being held ransom and away from prying eyes.

Backup and recovery software providers have seized on this opportunity by bolstering their offerings to protect and recover data from ransomware attacks.

Rubrik, for example, has developed threat hunting capabilities that scan backups for traces of ransomware, as well as a cloud vault service that keeps air-gapped copies of data on Microsoft Azure to enable organisations to recover from cyber attacks.

Against this backdrop, suppliers such as Rubrik are increasingly positioning themselves as security technology suppliers even though their focus is largely limited to data security.

“Rubrik is a cyber security company,” said Bipul Sinha, CEO of Rubrik, during a recent interview with Computer Weekly. “We focus on data security for governments and businesses around the world to recover from ransomware and other data security threats.”

Elaborating, Sinha said that while the traditional cyber security players focus on prevention, detection and investigation of attacks from an infrastructure and cloud security perspective, “Rubrik is on the data security path, which is the other half of cyber security, from resilience and observability to recovery”.

“The combination of infrastructure security and data security is what every business needs to have full zero-trust security,” he said, referring to the concept of treating all users and data equally when applying security controls.

Tailwinds for growth

The focus on data security to address ransomware threats and the need to protect data on cloud and edge environments have been tailwinds for Rubrik and others such as Veeam in the backup and recovery software market.

Rubrik, for one, is seeing significant growth with almost 4,000 customers globally. Its annual recurring revenue is growing at over 100% while its customer retention rate stands at over 99%, Sinha claimed.

“Our customers are sticking with us to protect their data, whether the data lives in the enterprise or in SaaS [software-as-a-service] apps,” Sinha said. “We secure data everywhere and the vision of Rubrik is to protect a hybrid cloud environment across the world.”

The growth story is similar in Asia, particularly in Southeast Asia, which has been a hotbed for ransomware, said Kamal Brar, Rubrik’s vice-president and general manager for Asia-Pacific and Japan, noting that data protection regulations have also helped to spur its growth in the region.

“Companies now have to focus on data security and data protection whereas in the past, from a regulatory or governance standpoint, this was an area of weakness,” he said. “Even governments have now said it’s important to secure citizen data, including health-related information.”

About a third of Rubrik’s engineering investments are in Asia, which Brar said is “not just a critical part of our growth – it’s a critical part of the company’s success”.

Backup systems as last line of defence

Backup systems today must include threat detection and threat hunting capabilities, according to Chandra Mukhyala, senior director analyst at Gartner.

“They are the last line of defence when production systems get compromised. They are also the catch-all repository that maintains secure copies of all the critical applications and data.

“The combination of legacy applications, lack of functional security in applications, and insufficient investment into security operations can easily result in production systems getting compromised.

“While prevention is better than cure, we need fool-proof recovery systems and that is why backup systems must be able to hunt for and detect an attack, identify the last good ‘clean’ copy of data and provide fast recovery,” he told Computer Weekly.

To detect potential ransomware attacks, Rubrik and other similar vendors in the market typically apply machine learning algorithms to snapshots of backup data as opposed to accessing production data, thus avoiding any performance impact to production data.

At the recent Rubrik Forward 2022 conference in San Diego, Rubrik unveiled a new data observability engine powered by machine learning capabilities to identify data that might have been compromised.

It also launched a data security command centre to help organisations assess whether data is safe and capable of being recovered from a cyber attack.

As a testament to its confidence in its capabilities, Rubrik announced a $5m ransomware recovery warranty late last year to assure its customers that their data would be recoverable, regardless of cyber incidents or natural disasters.

The warranty covers expenses related to data recovery and restoration should Rubrik be unable to recover data in the aftermath of a ransomware attack. Sinha said none of Rubrik’s customers have claimed against the warranty so far.

These days, Rubrik engages more with chief information security officers (CISOs) and chief risk officers to understand what sorts of capabilities they need in the future.

“We are now building products to serve that need because as ransomware becomes more pervasive with attacks going unchecked, customers have more regulatory requirements to do mass recovery,” Sinha said.

“Can you ensure that I understand the extent of my attack? Because when an attack happens, it could take a long time to recover systems that your business may not exist. And how do you ensure that bad content is not going to be part of the scope of the attack?

“These are the kinds of things we focus on, and we have the core engineering capabilities. We are working with our customers, particularly on security side, to understand the rapidly evolving security landscape and building solutions for it.”

Read more about data protection

Read more on Data protection, backup and archiving

SearchCIO
SearchSecurity
SearchNetworking
SearchDataCenter
SearchDataManagement
Close