What’s New in Varonis: January 2025

This month, Varonis released new updates to help organizations enforce least privilege in AWS, reduce the M365 blast radius, and improve search management.

Our new functionality includes:

• Recommendations to right size AWS access policies
• New automated remediation policies in M365
• Monitoring shared Exchange Online mailboxes
• Improved search management
• New Varonis customer training certifications and labs

Discover what's new in this quick two-minute video or continue reading for all the details.

Recommendations to right size over-permissive AWS access policies

Varonis now offers recommendations for adjusting overly permissive AWS access policies. This feature automatically analyzes built-in and user-defined policies, recommending changes to right-size permissions based on actual usage. This approach simplifies managing access levels in complex AWS access policies, helping you effortlessly enforce least privilege without compromising functionality.

For example, if users assigned to a policy actively use its IAM:* actions but have not used the EC2:* permissions in the past 90 days, Varonis will recommend removing the EC2:* permissions from the policy.

You can view the suggestions in the new “Recommendations” tab found on each policy. To see a consolidated view of all overly permissive policies, navigate to the “Monitored Entitlement” report and select either “Customer Managed Over Permissive Policies” or “AWS Managed Over Permissive Policies.”

To apply the updates, simply copy the new recommended policy and paste it into your AWS IAM management console.

New automated remediation policies to remove inactive external M365 users

Varonis now provides automated remediation policies to remove inactive guest and non-org users in M365. 

The new automated remediation policies include the ability to:

• Remove direct permissions for inactive guest users after 365 days
• Remove memberships of inactive non-org users after 365 days

Configure these policies to run continuously or at predefined intervals to automatically remediate external data exposure and enforce least privilege. 

Monitor shared Exchange Online mailboxes.

Varonis now enables the monitoring of shared mailboxes in Exchange Online, providing full visibility of mailbox activity across your organization.

To configure this deployment, open the “Monitored Mailboxes” tab in the Varonis Management Console. In the "Monitored Mailboxes" section, select the new "Mailbox by Rule" option. This will automatically detect and monitor mailboxes based on the selected rule.

The monitored mailboxes are divided by type: user mailbox and shared mailbox.

Improved search management

Within the Varonis platform, admins can now view and manage all scheduled and saved searches created by users. 

This provides admins with full visibility and enables them to more easily: 

• Edit the search settings
• Change the search owner
• Delete the search

New Varonis customer training certifications and hands-on labs

Varonis now offers more customer training certifications and hands-on labs. The new certification portfolio provides users with complementary options to customize their learning journey based on their interests.

The Varonis certification portfolio includes:

• Improved course materials and interactive modules to accelerate foundational learning 
• Flexible learning options for basic and advanced exams 

Additionally, hands-on training labs are now available to provide customers with practical experience to reinforce their knowledge of Varonis. Customers can use these labs to test real-life scenarios, allowing them to maximize the benefits of Varonis without the worry of disrupting their own environment.

Learn more about the updated learning paths and hands-on labs here. 

Keep up with the latest Varonis product releases. 

To see Varonis’ latest releases in action and get a sneak peek of our 2025 roadmap, join us for our customer-exclusive What’s New in Varonis live session on Thursday, March 20, at 11 a.m. ET, or request a demo today.