TINTON FALLS, N.J., March 23, 2026 /PRNewswire/ — Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, announced an expanded integration with Microsoft Security aimed at enhancing customers’ cyber resilience operations. This new collaboration utilizes Microsoft Sentinel, Microsoft Security Copilot, and the Commvault Cloud platform to streamline resilience operations (ResOps) and provide real-time data insights, enabling organizations to swiftly transition from threat identification to the validation and restoration of clean data.
The integration seeks to foster coordinated workflows between security and recovery teams. Security alerts generated from Commvault Cloud are fed into the Microsoft Sentinel data lake, where security operations center (SOC) analysts can enrich these incidents with partner intelligence to assess the impact and validate the scope. Looking ahead, these insights are expected to drive automated, policy-based recovery workflows, thereby expediting and orchestrating clean recovery.
Key features of this integration include a modernized Microsoft Sentinel connector and Commvault’s Investigation Agent in Security Copilot. The updated connector streams alerts and signals from Commvault Cloud Threat Scan and Risk Analysis, covering malware detections, backup anomalies, and sensitive data exposure, into Microsoft Sentinel in real time. This enhances security teams’ visibility into backup-related risks while integrating backup telemetry with broader threat intelligence, allowing organizations to identify ransomware patterns earlier.
Commvault’s Investigation Agent, designed for cyber recovery investigations, autonomously analyzes suspicious activities and employs Commvault’s recovery-layer intelligence to ascertain scope, including impacted hosts and anomalous encryption patterns. By correlating these findings with broader Microsoft security signals, the agent minimizes the need for manual coordination between security and backup teams, thereby reducing mean time to clean recovery (MTCR).
“This isn’t just an integration – it’s a blueprint for the future of agentic ResOps,” remarked Michelle Graff, Senior Vice President of Global Channels and Partnerships at Commvault. “As attacks continue to evolve, siloed approaches don’t work. Seconds matter. By uniting and automating critical workflows, Commvault and Microsoft are introducing a modern approach that can shrink the time between detection and recovery, improve collaboration between IT and security teams, and maintain enterprises in a state of continuous resiliency.”
Krishna Kumar Parthasarathy, Corporate Vice President of the Sentinel Platform at Microsoft Security, emphasized the growing need to merge AI-enabled intelligence with automated recovery in today’s threat landscape. “The combination of Microsoft’s Security Copilot, Microsoft Sentinel, and Commvault’s Threat Scan and Risk Analysis offers enterprises a unified approach that can transform ResOps,” he stated.
The updated Microsoft Sentinel connector and Investigation Agent in Security Copilot are currently in early access, with general availability anticipated this summer. Commvault continues to position itself as a prominent player in the realm of unified resilience, providing customers with a robust platform that integrates data security, identity resilience, and cyber recovery.
In an environment marked by rapidly evolving threats, organizations are increasingly relying on integrated solutions like those offered by Commvault and Microsoft. This partnership not only highlights the shift towards more collaborative cybersecurity practices but also underscores the importance of efficiency and speed in responding to threats. As businesses navigate the complexities of digital security, advancements like these could prove essential in safeguarding their operations.
See also
Anthropic’s Claims of AI-Driven Cyberattacks Raise Industry Skepticism
Anthropic Reports AI-Driven Cyberattack Linked to Chinese Espionage
Quantum Computing Threatens Current Cryptography, Experts Seek Solutions
Anthropic’s Claude AI exploited in significant cyber-espionage operation
AI Poisoning Attacks Surge 40%: Businesses Face Growing Cybersecurity Risks
