Data protection is a category of the information technology market with a growing number of competitors who, it is already symptomatic, agree in their willingness to cooperate: with each other and with the even more numerous security specialists. The leader in that category is, according to analysts, Commvault, with five decades of experience behind it. In November it announced a qualitative leap that it will promote in the Spanish market in the coming days: it evolves from its original profession in order to be recognized as a data resilience company; The nuance matters because it is the new way of data protection.
Commvault’s change of axis is timely because it precedes the application of DORA (Digital Operational Resilience Act), a European directive that companies domiciled in the EU must comply from January 2025. César Cid, Commvault’s technology director for the south from Europe, says he has read a disturbing study: “60% of companies acknowledge not having complete visibility of where their data resides, which is more serious when it is critical in nature for their businesses. Because if you don’t know where they are, how can you protect and manage them?”
On the surface, Commvault’s task would be the same: plant traps in any application and in any system, turning those assets into decoys that attract digital criminals; They are light and do not require maintenance as is the case with the so-called “canaries” that are required to deploy other “canary” systems. According to Cid, it responds like this to infiltration attempts through lateral movements, which abuse an outdated patch to hide: “We can assure that with our platform they will not succeed because, as soon as they touch it, a red alert will go off. This shows that we are not a cybersecurity company but one of cyber resilience. And instead of wanting to be the only player, we maintain connections and integration with third parties, starting with the most important ones.”
Cyber ??resilience is a market need in which Cid detects three major trends. “One is the hybrid cloud: it is necessary to move from one to the other and it is rare for a company to have a single cloud provider; Commvault can accompany it to support the load wherever it is.” According to IDC, 89% of companies have adopted a multicloud scheme. The second is artificial intelligence, which malicious actors use to create malware to launch attacks; The only reliable way to combat the negative impact of AI is by using AI: “Anyone who thinks that polymorphic attacks created by AI, with the capacity to attack hundreds of sites at the same time, can be stopped with human means is lost.”
The third is ransomware, the ransom demand to release data that has fallen captive to digital crime: “The cost of paralyzing a system is terrible,” says Cid, “because 21 days on average pass between receiving the message and the moment it is that the systems can work again.” He evokes other eloquent figures: the time in which a threat is asleep waiting for the moment to attack is 204 days, in practice a working year. Or that the question is not limited to paying the ransom or not: 75% of companies that have suffered an episode of ransomware suffer another one in less than a year, even if they paid the previous time.
The new cyber resilience platform – Commvault Cloud powered by Metallic AI – combines data protection with security, intelligence and recovery capacity. Data can be restored quickly and on a massive scale; Thanks to embedded AI, recovery can be automated and predicted, summarizes César Cid.