Rubrik is broadening its interpretation of backups and security to include identity protection. The company’s new Identity Resilience feature aims to cover identities alongside data, recognizing that identity compromise is a significant attack vector. The goal is to minimize downtime by protecting both human and non-human identities within complex identity infrastructures that are consistently targeted by hackers.
Identity systems, used by nearly all large organizations, include users, endpoints, agents, service accounts, processes, and applications. When compromised, these systems provide attackers with access to critical data and credentials while hindering recovery efforts after a cyberattack. According to Mike Tornincasa, Chief Business Officer at Rubrik, “Identity systems are not only complex and hard to manage, but they have also become the primary gateway for attackers aiming to access an organization’s valuable data.”
Key Statistics and Threats
A recent CISA report highlights that 90% of cyberattacks on critical infrastructure begin with an identity compromise, often leading to privilege escalation and lateral movement toward valuable business data. These threats evolve gradually, emphasizing the need to understand changes in privileges or access patterns over time.
Rubrik’s Solution
Rubrik’s Identity Resilience is designed to provide continuous visibility into identity changes using time series data, enabling earlier detection of suspicious activity. The solution aims to identify, monitor, and protect critical, sensitive, and active identities, including non-human identities (NHIs) such as machines using service accounts and access tokens. Key features include:
- Hybrid protection for Active Directory (AD) and Entra ID with automated recovery workflows
- Comprehensive risk analysis for human and non-human identities with a unified view of identity providers
- Complete identity and data context linking identity-based information to sensitive data, privileges, and activity
Holistic Approach to Cyber Resilience
Rubrik argues that identity management, identity protection, and data security are often treated as separate products managed by different teams. In contrast, the company aims to combine these capabilities to offer a holistic view of identity and data. This approach is complemented by strategic partnerships, such as those with CrowdStrike and Cisco, to enhance overall security posture.
By providing a comprehensive and integrated approach to identity and data security, Rubrik’s Identity Resilience aims to help organizations defend against attacks earlier and recover systems faster. The solution simplifies complex recovery processes, such as AD recovery which can involve up to 22 manual steps, into user-friendly workflows. This consolidation dramatically reduces complexity and recovery time, enhancing an organization’s overall cyber resilience.
