Introducing Varonis for Databricks

Today, we’re excited to announce that Varonis has extended its industry-leading Data Security Platform to Databricks. Now, Databricks customers can secure their sensitive data at scale with deep visibility, proactive remediation, and active threat detection.

Over 10,000 organizations use Databricks to manage business-critical data for everything from business intelligence to data science and AI initiatives. This business-critical data is increasingly valuable and vulnerable in the AI era.

Last year, more than 80 percent of data breaches involved cloud data. This year, data exfiltration is the No. 1 consequence of cyberattacks. Bad actors typically bypass endpoint and infrastructure security to steal data using stolen credentials and methods like phishing and password sprays.

The targeted campaign against Snowflake customers is a prime example of this trend. With compromised credentials in hand, bad actors exploited posture lapses, like un-enforced MFA and stale permissions, to carry out numerous attacks.

Today, Databricks customers must safeguard their business-critical data. In this blog, we’ll discuss the importance of a data-centric approach to cybersecurity and how Varonis helps secure your sensitive Databricks data by:

Identifying sensitive data
Analyzing risk and exposure
Detecting active threats
Accelerating investigations and remediation

Varonis for Databricks

Varonis provides a unified platform that simplifies security across your environment, using a data-centric approach for data platforms and providing unmatched Databricks visibility. Varonis identifies where sensitive information lives, controls exposure, monitors suspicious activity, and alerts you to risks.

Identify sensitive data.

To secure your sensitive Databricks data, you must first know where it resides, what it is, and whether it’s at risk. Varonis provides deep visibility into sensitive data in Databricks, accurately discovering and classifying sensitive information, down to table and column level, in real-time. Varonis creates a complete, up-to-date picture of your data in the context of its sensitivity, concentration, and exposure.

With this comprehensive understanding of your sensitive Databricks data, you can see exactly where your sensitive data resides, who has access to it, and whether it is at risk. Our extensive library of built-in classifiers categorizes sensitive and regulated data, including PII, financial data, intellectual property, and AI training data.

Varonis integrates visibility of your Databricks data within the broader context of your entire data environment. With this single pane of glass view, you can easily identify where your sensitive data is at risk and if there are any gaps in your security posture.

Analyze risk and exposure.

With a deep understanding of the interconnection between identities, permissions, and data, Varonis enables you to actively remediate issues in Databricks, including identity-based attacks that often lead to a data breach.

Varonis creates an inventory of the identities, groups, shares, databases, schemas, tables, and columns in Databricks and presents it in an easy-to-parse CRUDS model (create, read, update, delete, and share).

With this information, Varonis can identify risks like sensitive data shared externally, shadow admin accounts, and configurations that deviate from best practices or are misconfigured.

Detect active threats.

Varonis uses predictive, behavior-based threat models to proactively detect threats, including sharing sensitive data and abnormal logins to suspicious admin activity. High-fidelity alerts inform you of potential threats before they become breaches.

Using machine learning to build baselines for every unique user and device in your environment, hundreds of expert-built threat models alert you to unusual access activity, permissions changes, data transfers, and more.

Accelerate investigations and remediation.

A granular cross-cloud audit trail of events makes it simple to understand how your data is being used and by whom so you can easily investigate threats, including lateral movement, across Databricks and your entire cloud environment. Conduct advanced forensics investigations on suspicious or admin activity with an enriched and filterable activity log and take the pain out of regulatory audits.

Unified data security

Don’t settle for siloed solutions that provide partial visibility.

Varonis offers a unified Data Security Platform for all your critical data. Our platform helps your team easily monitor and improve your organization’s Databricks data security posture, minimize sensitive data risk, and defend against the threat of data breach.

Ready to secure your most sensitive Databricks data and improve your security posture?

Try Varonis for free and request a demo today.

What should I do now?

Below are three ways you can continue your journey to reduce data risk at your company:

Schedule a demo with us to see Varonis in action. We'll personalize the session to your org's data security needs and answer any questions.

See a sample of our Data Risk Assessment and learn the risks that could be lingering in your environment. Varonis' DRA is completely free and offers a clear path to automated remediation.

Follow us on LinkedIn, YouTube, and X (Twitter) for bite-sized insights on all things data security, including DSPM, threat detection, AI security, and more.

Nolan Necoechea Nolan Necoechea is a product marketing strategist at Varonis. He has spent more than a decade working with data and AI innovators.