Cohesity Announces Open Availability Of FortKnox


Cohesity announced the general availability of Cohesity FortKnox – a software as a service (SaaS) data isolation and recovery solution, adding to the company’s Data Management as a Service portfolio of offerings that run on Amazon Web Services (AWS).

FortKnox is a modern data isolation solution that can play a critical role in helping organisations minimise the impact of cyber attacks such as ransomware. It is designed to provide an additional layer of off-site protection while dramatically simplifying operations and lowering costs compared to magnetic tape and self-managed data vaults. The SaaS offering also helps enterprises meet the recovery service level agreement (SLA) and regulatory requirements.

FortKnox powers a modern 3-2-1 option fit for the cloud era that effectively balances organisations’ security and agility priorities. The cloud solution allows customers to connect, vault, and recover simply. Vaulted data is kept secure and out of the hands of bad actors via a virtual air gap that is achieved through physical separation and network and management isolation. This clean data can be recovered from the Cohesity-managed cloud vault back to the original source location — or alternate targets, including the public cloud – to support business continuity objectives.

“Cyber resilience is a top business priority for organisations. Providing off-site data isolation through this SaaS offering is another way we are helping customers combat increasingly sophisticated attacks and accelerate recovery while also enabling SecOps and compliance teams to sleep better at night,” said Brian Spanswick, Chief Information Security Officer, Cohesity.

Cohesity FortKnox is designed to help customers:

  • Keep data safe through:
    • Secure connection via a configurable data transfer window, outside of which the data vault is locked
    • Tamper resistance with immutability, object lock to prevent changes of vault policy, and quorum that requires a minimum of two or more people to approve critical actions
    • Operational isolation is achieved with separate Cohesity-managed keys (not accessible to a rogue administrator) and separate workflows for read and write operations
    • Strict access controls including granular role-based access control, multi-factor authentication, and encryption both in-flight and at rest
    • AI-powered anomaly detection, through our Helios platform, helps identify potential indications of emerging ransomware attacks so administrators can take necessary actions to minimise proliferation and impact
  • Connect, vault, and recover — no need to shuttle tapes around, construct a do-it-yourself (DIY) data vault, build out additional storage infrastructure, or devise bespoke recovery processes.
  • In case of a ransomware attack, quickly identify a clean copy of data with confidence and rapidly recover safely to the desired location — on-premises or in the cloud.
  • Move from a CapEx intensive to an OpEx ‘as a service’ model.

Cohesity FortKnox complements Cohesity’s Threat Defence data security architecture. This multi-layered architecture is continually enhanced to help customers stay a step ahead of cybercriminals. It brings together a range of products, services, and capabilities from Cohesity and ecosystem partners to help customers identify threats via AI and ML, protect their data, and rapidly recover in the event of a cyberattack. Cohesity FortKnox is available globally from Cohesity and its partner ecosystem as a subscription-based SaaS offering.