Enterprise Architect
NetApp has announced that its new version of ONTAP will take data protection to a new level with an Anti-Ransomware Suite. NetApp Anti-Ransomware Suite replaces the data protection and security bundles while also delivering ONTAP Autonomous Anti-Ransomware and a 1-year subscription to Cloud Insights with Cloud Secure.
With NetApp Anti-Ransomware Suite, ONTAP users benefit from complementary technologies that address data security threats because it positions Cloud Insights with ONTAP Autonomous Ransomware Protection.
What You Get With NetApp Anti-Ransomware Suite
NetApp Anti-Ransomware Suite offers a comprehensive and robust approach to data protection that combines all the data resiliency weapons in the NetApp arsenal. Anti-Ransomware is licensed as an optional suite of software — some existing and some new to ONTAP 9.10.1 – which encompasses the tools necessary to protect against, detect, and recover from ransomware attacks.
Included in the Suite are:
- Autonomous Ransomware Protection
- 1-Year Subscription for Cloud Insights/Cloud Secure
- SnapLock for indelible data protection
- SnapMirror, the most trusted replication software
- Multi-Key Management for advanced data encryption
- AIQ/AIQUM with new anti-ransomware monitoring
- SnapCenter for creating application-consistent recovery points
- FPolicy to monitor and enforce policies on your file data
NetApp Anti-Ransomware Suite is available for all ONTAP software editions.
Autonomous Ransomware Protection
Autonomous Ransomware Protection is new with ONTAP 9.10 as part of the Anti-Ransomware Suite. With Autonomous Ransomware Protection, ONTAP 9.10 users can take advantage of file system analytics and a file activity entropy calculator for real-time threat detection.
When Autonomous Ransomware Protection detects ransomware, it alerts the administrator of the attack. This alert triggers an automatic snapshot that minimizes damage and simplifies recovery.
Top-Level Anti-Ransomware Security
NetApp Anti-Ransomware gives organizations all the tools they need to take the most aggressive approach to fighting ransomware. Users can follow the NIST Cybersecurity Framework:
Identify by evaluating your data protection and security posture and classifying the type of data, location, and permissions.
Protect by keeping malicious data from being written to disk, creating granular, immutable copies to evade infection, and preventing data deletion with indelible data copies.
Detect by monitoring user behavior for suspicious activity and detecting storage behavior anomalies.
Respond by initiating NetApp Snapshot copies if an attack is identified and blocking malicious user accounts.
Recover by restoring data in minutes and bringing applications back online, as well as applying intelligent forensics to identify the source of the threat.
NetApp Cyber Resiliency Solutions
NetApp Anti-Ransomware Suite NetApp helps users protect their data effectively through active management, monitoring, and remediation using a 3-pronged approach.
Infrastructure Services
Best practices management is accomplished through assessments, management, and setup. Infrastructure Services include:
- Flex Professional Services for managed service to monitor user behavior to detect anomalies and potential ransomware attacks
- Active IQ Digital Advisor with prescriptive wellness checks and best practice settings to support proper ransomware detection
Infrastructure Monitoring
Intelligent monitoring and detection can be accomplished across hybrid cloud environments using anomaly and threat detection, identification, and reporting. Infrastructure Monitoring includes
- Cloud Insights/Secure to monitor user behavior to detect anomalies and prevent ransomware attacks through user account blocking and Snapshot recovery point creation
- Cloud Data Sense to automatically discover, map, and classify your data and identify access permissions
- Active IQ Unified Manager for available infrastructure monitoring across hybrid cloud
Infrastructure Management
The foundation of a data-centric approach begins with where the data resides. Infrastructure Management provides disaster prevention and recovery tools, including:
- Snapshot for immutable data copies to prevent threats of ransomware encryption
- SnapLock for indelible, read-only copies to prevent deletion of backup copies and to provide a logical air gap
- SnapMirror for efficient replication of data to secondary ONTAP or object storage
- SnapRestore for Snapshot copy restoration for accelerated data recovery
- FPolicy for file access monitoring and detection
- Autonomous Ransomware Protection for machine learning-based ransomware detection focused on file system anomalies
More Information:
As a NetApp Star partner, Mainline delivers enterprise storage solutions that are efficient, reliable, and cost-effective. Our top-level partnership assures clients that we maintain the stringent Star partner certification requirements across the NetApp storage family of products, plus we are backed by a strong relationship with the NetApp team. For more information on how we can help you, contact your Mainline Account Representative directly, or reach out to us here with any questions.