Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

Veeam ONE Security Features & Cyber Secure Services

Veeam
05/26/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


We are dealing with a wide range of workloads, but if you want to use a task-based and automatic recovery, you need to use a limited number of resources or workloads. Now, let's move on to the next part. Now, let's talk about daily resilience. I think that Beam 1 has become much more user-friendly, so I would like to introduce it. There are dashboards and reports in Beam 1. Dashboards are dashboards where you can see the customized graphs. You can create as many of them as you want. There are a lot of reports, so I think it's better to use reports. You can see a list of Beam backups, a list of results, and there is a report called Protected VM, so you can see it. Until now, if you didn't know the report, you wouldn't have been able to get that far. After all, you can search for it, or you can talk to it in a conversation format. The reports that other members often use are the most popular reports, and they are displayed at the top, so it's very easy to find. I'll show you that later. Alarm. If you use Beam 1, you can set an alarm, but here you can set an alarm to be issued under very specific conditions, and you can see how much it has been issued on the screen. I'd like to introduce the screen later. This is the screen. First of all, I would like to introduce that you can make it Japanese. This was displayed in English, but first of all, you can make it Japanese. Next is Dashboard. Dashboard comes out in this list format, but for the Dashboard that I often use, by adding a star, you can put together only what you want to see. If you open one, this is a backup of Microsoft 365, but this is a list of operations. The list operator is very important, and it's a sample that looks at the report that summarizes the information of who restored what. If there is a suspicious restore, it is dangerous. This person is looking at the CPU usage of vSphere VM. Maybe there's something you're curious about, and you're looking at the dashboard that checks VMware-like data. Another thing is that I was curious about Hyper-V's data store, so I prepared three dashboards and looked at how many storage capacities were left. Another thing is this job calendar. This is also completely integrated into one screen of VM1, so it's very easy to see. The job calendar was displayed on fire at first, but it's easier to see when displayed in numbers. The green part is the picture of today, and the future job schedule appears from there. You can change the scale, and it's easier to see when it's displayed twice. You can see the last three or four days. You can easily analyze it by changing the scale. In fact, that setting is still there, so if you go back to that job calendar, it's not in the demo right now, but you can leave the same screen. This is a report catalog. It was a dashboard before, but this is a report. The point of the report is that it was a little difficult to preview before. But as you can see now, you can actually see the contents of the report in the thumbnail. By doing so, the report you're always looking at is a little red, and that's what you can see in this state. I'll show you some reports. This is a malware detection report. A total of 1,857 scans were done, and you can see that suspicious and infected are few. Next is immutable workload. I'm trying to see what's inside this one, too. The company says, let's make all backups immutable, but it's not all done yet. Only a part is done. Virtual machines, physical machines, only a small percentage are green, so you can see that not all of them are done. This is a backup security compliance. I'm looking at the raw data of the report. This is a filter demo. Here, for example, it's included in the best practice name. I'm going to type in Firewall. Then, in this security compliance analyzer, when you ask if the firewall is set to each backup server, there were about six backup servers, and the path is set. The not is that it can't be implemented, so you can see that the firewall is not set. That's the graph. In this report, I said that this protected VM is often used, but you can select it by applying a filter like this, and now I'm looking at Nutanix HV's protected VMs, and it's bright red, but there are four green backups, and I've taken it in the past. The backup of the schedule hasn't moved, so the whole thing is red. There are 19, but they're not usually taken. The schedule hasn't been gone yet. That's what I saw in the graph. Next, this is Beam Intelligence. This is where the AI responds by asking questions in Japanese. I think it's a recent scan result. I think it's, please display the scan result. Please tell me. Even if there is a break in the display, the AI will judge it, so it will return the answer. Even if you don't know which report it is, it will collect the information, and as a result of the scan, it will check whether there was a suspicion that there were 1,836 reports. The good thing about this AI is that it also expresses recommendations, so it also gives recommendations on what to do. It also gives answers by asking if there is a more serious incident. I don't know what kind of judgment this is, but I don't think the server is down, or that Infected has just been discovered. I think this will be returned in the future. I saw an increase in trends in 6 months, and it will also analyze that. One more thing. Especially. I asked if there was a backup job that took a long time. Then, for example, if you say, please display the top 5, it will come back early. It took a long time because 10 came back, but I think it will come back in no time. Please wait a little longer. You can see what kind of processing the AI is doing. It doesn't really matter here. You can see that the top 5 are displayed in the form of a table, and the top one takes 1 hour and 27 minutes. So, if you look at the report and ask questions related to the red part, you will get some answers. Next. It's an alarm. I will show you the alarm screen. There are a lot of alarms here. You can see what kind of alarms are displayed in a row. There is an increase in trends. There is a part of this map. Normally, the world map is written like this. I don't think it's very easy to use, but it can also be expanded and reduced. This is now displayed in America. In a certain area, in North America, there is an alarm that has already been resolved. In the south, there is a place that has not been resolved yet, so I think it has orange. If you set this map properly in Japan, it will show you the location where the beam server is, such as East and West, so I think it has become much easier to use. If you expand or reduce it and save it as it is, it will be displayed like this next time, so I think it's very convenient. Analysis assist. As you can see now, I think you saw that AI is used and various reports come out. There are two things I would like to introduce here. There is a part called manual filtering, and there has been a business view in Beam 1 for a long time, and you can group data on Beam 1 by saying, this is data center 1, or this is a company. By using it, you can see a summary report of the data you have collected. There is one such function. One is that the popular reports I mentioned earlier are now being displayed, so even if you don't usually look at Beam 1, you can see the reports that other people are looking at. I will show you this in the demo. Go to the report catalog. Various reports are coming out now, but I think you can see that there is a flame mark on the thumbnail. Then you can see which is the popular report. I was looking for Protected VM now, but if you type in Protected VM, you can see that there are 9 reports just for Protect, and if you filter out the popular one, it comes to number 1. This is a good graph for previewing the results of the backup, so it is a report that is often used. If you look at the contents of this, you can see when the latest backup of each machine in the Protected VM Ware is. This is only one line, but how many generations of backups have been taken? You can also see if the job has been successful. I think this is a report that is often used. In addition, as a new feature, this Data Resilience Daily Summary is coming out, and reports that report alerts and errors are also coming out daily. I just talked about Beam 1. At the beginning, there was a story about working with Microsoft Sentinel. This is a story about working with Recon Scanner. Other than that, in the seam link, for example, Parowald, CloudStrike, Splunk, and Sophos have a beam screen on the other side of the screen, so you can flow in the data of the beam there and manage the beam on the screen of CloudStrike Falcon. That kind of mechanism has been completed with various manufacturers. This is the last item. The last item is VCS, Beam Cyber Secure. In VCS, there is VCS Foundation and VCS Premium. I've introduced a lot of things like Beam 1 and the scan function, but this is a function. Please operate it. On the other hand, the Beam Cyber Secure program and the setting method, there is a security evaluation for each vending machine on the left. This is a service where the security person in charge supports the beam as a service. VCS has a foundation and a premium. When it comes to premium, there is also a Beam advisory service, a technical account manager, and an incident response service run by Cobwear. This is a service that includes an incident retainer that complements a cryptographed item even if it is really on malware. At the end, it says up to $5 million, but it is also possible to attach ransomware insurance, which is like cyber insurance, to the service of Beam. It has become such that you can provide the latest version of the Beam security program. In Japan, the incident response is not used as a retainer service. I don't think there is much culture to use it. There are many customers who consider the foundation later. In the foundation, there is no incident retainer, but the design and setting up to the last minute is a one-year subscription program, and it is such a program that you can do it well while mixing in-house exercises. In addition, the maturity model checklist of the company that the end user has signed a contract with and the assessment are included in abundance. You can see how much the security settings of your company have improved compared to the beginning of the year, and you can see what is missing. For example, there is no immutable, there is no scan, and there is no training. You can see those things right away, so I hope you can think of it as a service that stores those things. Also, even if it is a foundation, you can use Kobuya's service as a ticket. It is written as a rapid incident escalation at the bottom left. For customers who join the foundation, even if Kobuya's service is not premium, when something happens, you can get involved in the incident response service. It's like a ticket, and you can use the service one time at a time. I think there are probably other VCS sessions and seminars, so I hope you can listen to them again. This is the last slide. Since Beam 1 has evolved considerably, it has become easier to understand the security settings and the scan results. This is my honest impression of V13. You can also ask questions in a conversational way to the AI, so I think this will get better and better. By doing so, if you look at Beam 1, you will be able to discover the orange and red parts immediately. Just by looking at it, there are new discoveries, and I think that the theme of improving the operation has become a configuration that can be found immediately. Thank you for your consideration. Using Beam 1, using scan, there was a feature called Beam Orchestrator that automatically restored, but most of the other parts can be used in the Advanced License Edition, so I think it's very reasonable. If you want to do security settings or ransomware measures, if you use Advanced, you can use most of the functions I introduced today, so I hope you will try it. This is the end of the seminar.

TL;DR

  • Veeam ONE now features Japanese language support, AI-powered natural language queries, and enhanced reporting with visual thumbnails and automatic surfacing of popular reports based on usage patterns.
  • Security-focused capabilities include malware detection reporting, immutability compliance tracking, backup security compliance analysis, and integrations with major SOC platforms like Microsoft Sentinel, CrowdStrike, and Splunk.
  • Veeam Cyber Secure services offer two tiers: Foundation (security assessment, design support, maturity evaluation) and Premium (adds incident response retainer, technical account manager, and up to $5M ransomware insurance).
  • Most security features demonstrated, including Veeam ONE monitoring, scanning, and compliance reporting, are available in the Advanced license edition, making comprehensive security capabilities accessible without requiring the highest tier licensing.

Veeam ONE Monitoring and Reporting Enhancements

This session demonstrates the significantly improved user experience in Veeam ONE, now featuring Japanese language support and AI-powered intelligence capabilities. The platform offers customizable dashboards for monitoring backup operations, job calendars, and infrastructure health across VMware, Hyper-V, and Microsoft 365 environments. A comprehensive report catalog provides visual thumbnails for quick identification, with popular reports automatically surfaced based on usage patterns. Key reports include malware detection summaries, immutability compliance tracking, backup security compliance analysis, and protected VM status monitoring. The new Veeam Intelligence feature enables natural language queries in Japanese, allowing administrators to ask questions like "show me recent scan results" or "which backup jobs took the longest" and receive AI-generated answers with actionable recommendations.

Security Compliance and Threat Detection Capabilities

The presentation highlights Veeam ONE's security-focused reporting capabilities, including detailed malware detection reports showing scan results across the environment and immutable workload compliance tracking to verify backup protection status. The backup security compliance analyzer evaluates configurations against best practices, such as firewall settings on backup servers, and identifies gaps in security posture. Integration with major SOC platforms including Microsoft Sentinel, Palo Alto, CrowdStrike Falcon, Splunk, and Sophos enables centralized security monitoring and incident response workflows. These integrations allow security teams to manage Veeam data protection within their existing security operations platforms, streamlining threat detection and response processes.

Veeam Cyber Secure Service Programs

Veeam offers two tiers of managed security services: VCS Foundation and VCS Premium. The Foundation tier provides security assessment, design guidance, configuration support, and maturity model evaluation through a one-year subscription program. It includes rapid incident escalation access to Coveware's incident response services on a per-incident ticket basis. The Premium tier adds dedicated technical account managers, Veeam advisory services, and a comprehensive incident response retainer run by Coveware, including up to $5 million in ransomware insurance coverage. While the Premium incident retainer model is less common in Japan, the Foundation tier has gained traction among customers seeking structured security improvement programs with ongoing assessment and support.

Chapters

0:00 - Introduction and Automated Recovery Overview
0:27 - Daily Resilience and Veeam ONE Capabilities
2:16 - Dashboard Customization and Job Calendar
4:39 - Report Catalog and Thumbnail Previews
7:36 - Veeam Intelligence AI-Powered Queries
10:32 - Alarm Management and Geographic Visualization
11:42 - Analysis Assist and Popular Reports
14:20 - SOC Platform Integrations
14:57 - Veeam Cyber Secure Service Tiers
18:54 - Summary and Licensing Recommendations

Key Quotes

1:52 "If you use Beam 1, you can set an alarm, but here you can set an alarm to be issued under very specific conditions, and you can see how much it has been issued on the screen."
7:40 "This is Beam Intelligence. This is where the AI responds by asking questions in Japanese."
8:25 "The good thing about this AI is that it also expresses recommendations, so it also gives recommendations on what to do."
14:30 "In the seam link, for example, Parowald, CloudStrike, Splunk, and Sophos have a beam screen on the other side of the screen, so you can flow in the data of the beam there and manage the beam on the screen of CloudStrike Falcon."
16:20 "At the end, it says up to $5 million, but it is also possible to attach ransomware insurance, which is like cyber insurance, to the service of Beam."
19:58 "Most of the other parts can be used in the Advanced License Edition, so I think it's very reasonable."

Categories:
  • » Data Protection » Backup & Recovery
  • » Data Protection
Channels:
News:
Events:
Tags:
  • Data Protection
  • Security Operations
  • Compliance & Governance
  • Technical Deep Dive
  • Demo
  • Veeam ONE monitoring and reporting
  • AI-powered backup intelligence
  • Security compliance analysis
  • Malware detection and scanning
  • Immutability compliance tracking
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: Veeam ONE Security Features & Cyber Secure Services

              Upcoming Webinar Calendar

              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting a Championship-Worthy Security Team for Unmatched Defense
                https://www.truthinit.com/index.php/channel/2025/crafting-a-championship-worthy-security-team-for-unmatched-defense/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-safeguarding-ai-accessible-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies for Effective Data Privacy and Protection
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-for-effective-data-privacy-and-protection/
              • 07/22/2026
                01:00 PM
                07/22/2026
                Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue
                https://www.truthinit.com/index.php/channel/2029/insights-from-attackers-during-the-fifa-world-cup-a-human-dialogue/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 07/29/2026
                01:00 PM
                07/29/2026
                Ask Your Cloud Anything: Unlocking Governance Silos in your Environments
                https://www.truthinit.com/index.php/channel/2048/ask-your-cloud-anything-unlocking-governance-silos-in-your-environments/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                14

                Crafting a Championship-Worthy Security Team for Unmatched Defense

                07/14/202601:00 PM ET
                • Jul
                  14

                  Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data

                  07/14/202602:00 PM ET
                  • Jul
                    21

                    Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                    07/21/202604:00 AM ET
                    • Jul
                      22

                      Insights and Strategies for Effective Data Privacy and Protection

                      07/22/202606:30 AM ET
                      • Jul
                        22

                        Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue

                        07/22/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version