2025-07-03 - Version 2 Limited

MSPs Bring the Heat (and the Security) This Summer

Explore the latest Guardz updates, fresh product enhancements, & more.

🗞 In the News

$56M Series B Fuels the Guardz Mission to Empower MSPs

A large group of people wearing matching black Guardz t-shirts pose together in front of a Guardz sign in a brightly lit office space, celebrating their commitment to security and supporting MSPs.

We’ve officially raised $56M in Series B funding, bringing our total to $84M. This is a major step forward in our mission to transform cybersecurity for SMBs and empower MSPs with a unified, AI-native platform
.
This funding accelerates our US expansion, deepens our R&D efforts, and drives the development of our next-gen 24/7 detection and response capabilities, all built to scale secure, resilient businesses.

What’s New in the Platform

We’re excited to bring you new feature updates and improvements to our existing product.

Randomized Timing for Phishing Simulations

By mimicking the unpredictable nature of real-world phishing attacks, randomized email delivery helps MSPs deliver more authentic training experiences to customers, boosting user vigilance and making simulated threats harder to game or ignore. Instead of sending all simulation emails at once, this feature gradually delivers them at random times during business hours, across 70% of the campaign’s duration, creating a more realistic and effective phishing simulation.

A campaign scheduling interface displays start and end dates (July 1–6, 2025)—perfect for a summer launch—and a checked box labeled “Randomize Email Delivery Times,” with highlighted navigation steps at the top.

Advanced Detection for Email Scanning

By analyzing both sender behavior and attachment content, this update gives MSPs sharper insight into sophisticated, email-based threats that typically fly under the radar. With context-aware LLM detection, Guardz now flags unusual senders using historical patterns and scans the contents of text-based attachments, making it easier to catch malicious emails, even when the message body is empty.

A settings panel titled Email Scan displays security options with statuses: Impersonation Detection On, Email Authentication Detection Off, End-user Reported Email Off, and Spam Detection On. AI Enhanced Scanning is highlighted in pink. Perfect for MSPs.

Updated Playbooks for External Scan Issues

By upgrading the External Scan Issues playbooks, this update helps MSPs move faster from detection to resolution, translating technical findings into clear, actionable next steps. With improved guidance and vendor references for the most common risks, including TLS misconfigurations, exposed service databases, vulnerable and outdated technologies, and WordPress-related issues, MSPs can prioritize and remediate with confidence.

A screenshot of a webpage section titled “Initial Steps” and “Recommended Approach - Cloud Provider Solutions,” offering security guidance on securing exposed databases, with links to AWS documentation and MySQL connection security tips.

Now Reporting in 10 Languages

This update helps MSPs strengthen relationships, build trust, and simplify security conversations by offering reports in their customers’ native language. With support for 10 new languages, including French, Spanish, Portuguese (BR), German, and more, Prospecting and Security Business Review reports can now speak your customers’ language, not just yours.

A language selection dropdown is open on a website, showing options like Dutch, French, Portuguese (Brazilian), Spanish, and Italian. In the background, MSPs can see a partially visible form to create a new security report.

Billing Change for Existing Customers

As part of our ongoing commitment to simplicity and transparency, we’re updating our billing model.

The last prorated invoice will be on July 1st. Starting with the August 1st invoice, we’ll move to a fixed snapshot billing approach.

Here’s how it works:
– On the 1st of each month, we’ll take a snapshot of your usage.
– Any usage above your minimum commitment will be added to that month’s invoice.
– We will still bill you upfront for the month based on your minimum commitment and usage.
– No more mid-month proration.

🚀 Where to Find Guardz This July

Event banner for ASCII Edge Ohio, highlighting security-focused green tech icons and lines on a dark background, with the date July 23–24, 2025, in Columbus—a summer event designed for MSPs.

Join Sandy Ritvin and Nicholas Grasso at ASCII Edge Ohio on July 23–24 to experience a cybersecurity platform purpose-built for MSPs: AI-native, fully unified, easy to manage, and protected by 24/7 MDR.

We’re looking forward to connecting with the MSP community.

👨‍💻 On-Demand & Upcoming Webinars

Promotional graphic for a live summer webinar titled “Powering the Future of MSP Success,” focused on MSPs and security, featuring speakers Ariel Stolovich, Sriram Prasad, and Elli Shlomo. Join us Wednesday, July 9th at 12:00 PM EST.

Join Ariel Stolovich, Head of AI at Guardz, Sriram Prasad, Product Marketing Manager at SuperOps, and Elli Shlomo, Head of Security Research at Guardz, for a future-focused session exploring how AI and human intelligence are transforming the MSP model.

Save your spot >

Webinar promo image featuring three speakers—Doni Brass, David Habusha, and Elli Shlomo—along with their titles. The event covers new security features, ITDR launch, walkthrough, and threat insights. Two shield icons are shown.

We were excited to peel back the curtain on our product releases, including the latest Identity Threat Detection and Response (ITDR) capabilities.

In addition to a product walk-through, we discussed the threat hunting and research that fueled these cutting-edge detections, along with examples of how Guardz MDR actively protects MSPs and their clients from these attacks.

Watch on-demand >

🤝 Build the MSP Community and Get Rewarded

Have you heard about our Referral Program and how it can boost your earnings? If you, as an MSP, refer another MSP to our platform, you can earn a $1,000 gift card for every qualified MSP you refer who attends a demo and an additional $2,000 for a signed deal.

Refer an MSP >

About Guardz
Guardz is on a mission to create a safer digital world by empowering Managed Service Providers (MSPs). Their goal is to proactively secure and insure Small and Medium Enterprises (SMEs) against ever-evolving threats while simultaneously creating new revenue streams, all on one unified platform.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

Guardz 2025

Beyond Theory: Real-World MFA Success Stories for MSPs & Small Business

In our last guide, we made the case for a new security paradigm: using an all-in-one platform with native Multi-Factor Authentication (MFA) to deliver enterprise-grade security without the enterprise-level cost. We argued that this integrated approach is the key for Managed Service Providers (MSPs) to profitably secure their Small and Medium Business (SMB) clients.

But claims are easy to make. Proof is what matters.

Your clients, and your own team, need to see how this works in the real world. How does an integrated MFA solution solve tangible business problems? What does the return on investment actually look like?

To answer these questions, this article moves beyond theory and into practice. We will break down real-world success stories using the SOAR Framework (Situation, Objective, Action, Results). These cases illustrate precisely how Thinfinity Workspace’s integrated MFA delivers measurable value, enhanced security, and operational efficiency for the specific challenges faced by SMBs and the MSPs that serve them.

Case Study 1: Securing a HIPAA-Compliant Healthcare Provider

Situation: A small, 50-employee healthcare provider in a rural area was facing the daunting challenge of securing sensitive patient data under strict HIPAA regulations. They operated on a tight IT budget, had no external Identity Provider (IdP), and relied on basic password protection for remote access to their Electronic Health Records (EHR) system. The risk of a data breach was a constant threat, and the pressure of potential compliance audits was immense.

Objective: The provider had three clear goals:

Achieve HIPAA Compliance: Implement strong, auditable authentication for all remote access to Protected Health Information (PHI).
Minimize Costs: Avoid the high recurring subscription fees of third-party MFA and IdP solutions that were beyond their budget.
Ensure User Adoption: The solution had to be simple and intuitive for non-technical clinical staff to use without disrupting patient care workflows.

Action: The provider’s MSP deployed Thinfinity Workspace as a unified solution for remote access and security.

Leveraged Native MFA: They activated Thinfinity’s built-in HOTP/TOTP server, completely eliminating the need for a separate MFA vendor.
Utilized Free Authenticators: Staff were instructed to use the free Google Authenticator app on their existing smartphones, avoiding any new hardware costs.
Simplified Onboarding: The MSP trained the staff on the simple, one-time QR code enrollment process. Thinfinity’s built-in self-service recovery options for lost devices were highlighted to reduce future support burdens.
Implemented Granular Policies: Using Thinfinity’s integrated access controls, they restricted EHR access based on user roles, ensuring the principle of least privilege was enforced.

Results: The outcomes were immediate and impactful:

Full HIPAA Compliance: The provider successfully passed their next security audit, with the MFA implementation specifically cited as a key strength. This was achieved without fines or the cost of external compliance consultants.
Significant Cost Savings: By avoiding third-party MFA licenses (estimated at $4/user/month), the provider saved approximately $2,400 annually.
Reduced IT Overhead: The intuitive user experience and self-service features led to a 30% reduction in support tickets related to remote access and password resets.
Enhanced Security Posture: Since implementation, the organization has reported zero unauthorized access incidents, safeguarding critical patient data and protecting their professional reputation.

Case Study 2: Scaling Profitability for an MSP Serving SMBs

Situation: A growing MSP with 10 SMB clients (averaging 20-30 users each) was caught in a classic operational trap. Their clients needed robust MFA, but couldn’t afford enterprise-level IdP solutions. The MSP was forced to manage a patchwork of different, often clunky, third-party MFA integrations. This complexity was driving up their administrative overhead, eroding their profit margins, and making it difficult to scale their security services.

Objective: The MSP needed to:

Standardize Its Security Stack: Adopt a single, cost-effective, and integrated remote access and MFA solution for all clients.
Slash Operational Complexity: Reduce the administrative time spent managing multiple vendor relationships, integrations, and consoles.
Increase Profitability and Client Satisfaction: Offer a superior, enterprise-grade security service at a price point attractive to SMBs.

Action: The MSP standardized on Thinfinity Workspace as their go-to platform for secure remote access.

Centralized Multi-Tenant Management: They utilized Thinfinity’s architecture to manage all 10 clients from a single, unified interface, applying customized MFA policies for each.
Adopted Native MFA as the Standard: By making Thinfinity’s built-in MFA the default offering, they eliminated the cost and complexity of third-party tools entirely.
Leveraged Existing Ecosystems: For clients using Microsoft 365, they recommended the free Microsoft Authenticator app, ensuring a seamless experience.
Tailored Security with Conditional Access: They used Thinfinity’s policy engine to apply stricter MFA requirements for clients in regulated industries like finance, creating tiered security offerings.

Results: The business impact for the MSP was transformative:

40% Reduction in Operational Costs: By eliminating multiple MFA subscriptions and slashing integration time, the MSP dramatically lowered their cost of service delivery.
50% Faster Client Onboarding: With a pre-integrated, templated solution, the MSP could deploy a new client with secure remote access and MFA in half the time, accelerating revenue generation.
95% Client Satisfaction Rate: Clients were thrilled to receive a more secure, seamless, and affordable solution. The MSP became a strategic partner rather than just another IT vendor.
Demonstrable Security Value: The MSP’s security logs showed Thinfinity’s MFA had actively blocked several phishing-based login attempts across their client base, providing concrete proof of the solution’s effectiveness.

Case Study 3: Securing an Air-Gapped Manufacturing Environment

Situation: A medium-sized manufacturing firm with 100 employees relied on critical control systems that were “air-gapped” (isolated from the internet) for security and data sovereignty reasons. This created a major MFA challenge: cloud-based IdPs were not an option. Their reliance on single-factor passwords for internal access left their proprietary designs and operational data vulnerable to insider threats.

Objective: The firm needed to:

Deploy a Fully Offline MFA Solution: The system had to function without any external cloud connectivity.
Control Costs: They wanted to avoid the high cost of purchasing and managing physical hardware tokens for all 100 users.
Strengthen Internal Access Controls: They needed to protect sensitive intellectual property from unauthorized internal access.

Action: The firm’s IT team implemented Thinfinity Workspace on-premises.

Activated Offline Native MFA: They deployed Thinfinity’s solution with its internal HOTP/TOTP server, which requires no internet connection to function.
Avoided Hardware Costs: Employees used free authenticator apps on company-issued (or personal) smartphones, which did not need to be online to generate the time-based codes.
Integrated with Group Policies: They used Thinfinity’s deep integration with Windows Group Policies to enforce strict, role-based access to the manufacturing control systems.
Ensured Rapid Rollout: With an intuitive QR code setup and minimal training required, the entire workforce was enrolled in under two weeks without needing expensive external consultants.

Results: The project was a resounding success:

100% Offline MFA Deployed: The firm successfully secured its air-gapped environment, meeting all internal security and data sovereignty requirements.
$10,000+ First-Year Savings: By avoiding the cost of hardware tokens (est. $50/user) and the recurring fees of a specialized on-prem MFA server, the company saved a significant portion of its IT budget.
80% Reduction in Unauthorized Access Attempts: Internal security logs showed a dramatic drop in attempts to access restricted systems, proving the effectiveness of the MFA layer.
Improved Operational Efficiency: The fast, smooth implementation meant there was no disruption to manufacturing operations.

Summary of Results: The Power of an Integrated Approach

These cases, viewed through the SOAR framework, highlight a clear and consistent pattern of success.

Case	Situation Summary	Key Objective	Primary Action	Notable Result
Healthcare Provider	HIPAA compliance & budget issues	Achieve compliance, keep costs low	Deployed native MFA with Google Authenticator	Saved $2,400/year, 30% fewer support tickets
MSP for SMBs	Complex, costly integrations	Standardize security, reduce overhead	Centralized MFA management via Thinfinity	40% operational cost cut, 50% faster client onboarding
Manufacturing Firm	Air-gapped systems, outdated security	Deploy offline MFA, control costs	Used offline native MFA deployment	Saved +$10,000 in hardware, 80% fewer access attempts

Conclusion: The Proof is in the Results

For MSPs serving the SMB market, choosing the right technology stack is a strategic decision that directly impacts profitability, scalability, and client satisfaction. As these real-world success stories demonstrate, an integrated security platform like Thinfinity Workspace is not just an alternative—it’s a competitive advantage.

By eliminating the cost and complexity of third-party IdPs, you can deliver a more secure, more streamlined, and more affordable service. This allows you to win more deals, increase your margins, and build a more resilient and profitable managed services business.

About Cybele Software Inc.
We help organizations extend the life and value of their software. Whether they are looking to improve and empower remote work or turn their business-critical legacy apps into modern SaaS, our software enables customers to focus on what’s most important: expanding and evolving their business.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

Cybele 2025

Veeam Alternative

While Veeam is a dominant force in the backup and recovery market, there are several reasons why an administrator or business owner might choose Storware Backup and Recovery as an alternative. Storware often appeals to organizations with specific technical environments, budget considerations, or a preference for certain licensing models.

Here are some potential reasons to choose Storware over Veeam:

Agentless Approach: Storware’s agentless backup offers significant advantages over agent-based solutions primarily due to its simplified deployment, reduced overhead, and enhanced security. Without the need to install and manage agents on individual virtual machines or servers, agentless systems minimize resource consumption on production machines, eliminate the complexities of agent compatibility issues and upgrades, and reduce potential attack vectors. This streamlined approach leads to faster deployment, easier scalability, and a lower total cost of ownership, making it a more efficient and less intrusive method for protecting diverse IT environments. However it’s worth to mention that Storware also offers agent for file-level backup for Linux, Windows and MacOS.
Strong Support for Open-Source and Diverse Hypervisors: Storware has a strong focus on supporting a wide range of open-source and less common hypervisors, including Red Hat Virtualization (oVirt/RHV), Oracle Linux Virtualization Manager (OLVM), Proxmox VE, OpenStack, and Citrix XenServer, in addition to VMware and Hyper-V. If an organization heavily relies on these platforms, Storware might offer more comprehensive and integrated protection compared to Veeam, which traditionally has had a stronger focus on VMware and Hyper-V.
Flexible and Potentially More Cost-Effective Licensing: Storware offers various licensing models, including per VM, per Terabyte, and a universal license. This flexibility can be particularly attractive to businesses that need to tailor their licensing based on their specific infrastructure and growth patterns. While Veeam also offers different editions and licensing options, some organizations might find Storware’s models more cost-effective, especially in environments with a mix of platforms or specific scaling needs.
Focus on Specific Niches and Workloads: Storware has developed expertise in protecting specific workloads and environments, such as certain databases, containers (Kubernetes, OpenShift), and cloud platforms (AWS EC2, Google Cloud Platform, Azure Cloud, Microsoft 365). For businesses with a significant focus on these particular areas, Storware’s specialized features and integrations might provide a more optimized backup and recovery solution.
Potential for Simplicity in Certain Environments: While Veeam is known for its feature richness, its extensive capabilities can sometimes lead to complexity in deployment and management, particularly for smaller IT teams. Depending on the specific infrastructure and the required feature set, some administrators might find Storware’s interface and architecture more straightforward and easier to manage.
Vendor Lock-in Avoidance: For organizations committed to open-source technologies and avoiding vendor lock-in, Storware, with its strong support for open platforms, aligns better with this strategy.

It’s important to note that the best choice between Storware and Veeam depends heavily on an organization’s specific requirements, existing infrastructure, budget, technical expertise, and long-term data protection strategy. Veeam remains a leading solution with a broad feature set, strong market presence, and extensive support for common platforms. However, Storware presents a compelling alternative, particularly for businesses with diverse hypervisor environments, specific workload protection needs, or a preference for flexible licensing and open-source compatibility.

Feature / Functionality	Storware Backup and Recovery	Veeam Data Platform	Notes for Admins and Business Owners
Supported Platforms (Hypervisors)	Strong support for a wide range including VMware vSphere, Microsoft Hyper-V, Nutanix AHV, Red Hat Virtualization (RHV/oVirt), Oracle Linux Virtualization Manager (OLVM), Proxmox VE, OpenStack, XCP-ng, Virtuozzo, Zadara, VergeOS, and more.	Broad support including VMware vSphere, Microsoft Hyper-V, Nutanix AHV, Red Hat Virtualization, Oracle Linux VM, and Proxmox.	Storware often has a deeper or earlier support for a wider array of open-source and less common hypervisors, which is key for organizations using these platforms. Veeam has comprehensive support for the major players.
Supported Platforms (Cloud)	Supports backup of instances in Amazon EC2, Google Cloud Platform, Azure Cloud, and Microsoft 365.	Extensive support for AWS, Azure, and Google Cloud Platform VMs, databases (RDS, SQL Database, Cloud SQL), object storage, and Microsoft 365/Salesforce data protection.	Both offer cloud backup capabilities, but Veeam generally has broader and deeper integration with major public cloud providers and SaaS applications like Salesforce.
Supported Platforms (Physical)	Supports Windows, MacOS and Linux physical servers and endpoints (laptops/desktops).	Supports Windows, Linux, macOS, Unix physical servers, and NAS devices.	Both cover essential physical server backups. Veeam’s support for Unix, as well as comprehensive NAS backup, might be a differentiator for some environments.
Supported Platforms (Applications)	Offers application-consistent backups with scripting options and potentially more direct support for certain open-source databases or applications depending on integrations (Microsoft Exchange, SharePoint, Active Directory, SQL Server, Oracle, PostgreSQL, MongoDB, and more).	Provides application-aware processing for Microsoft Exchange, SharePoint, Active Directory, SQL Server, Oracle, SAP HANA, PostgreSQL, MongoDB, ensuring transactional consistency.	Both vendors have an extensive list of supported business-critical applications with dedicated recovery options. Storware’s approach might be more flexible for less common applications via scripting.
Backup Types	Supports Full, Incremental, Synthetic Full, and Incremental Forever backups.	Supports Full, Incremental, Reverse Incremental, and Synthetic Full backups, along with backup copy jobs.	Both offer standard backup types. The choice often depends on the preferred backup strategy and storage targets.
Recovery Options	Offers Full VM restore, File-Level Restore (via mounting backups), Instant Restore (for supported hypervisors), Individual Disk Recovery, and Recovery Plans for automated DR.	Provides Instant VM Recovery, Granular file-level recovery, Application item recovery (Exchange, SharePoint, AD, SQL), Full system restore, Bare Metal Recovery, and Orchestrated Recovery Plans.	Both provide essential recovery options. Veeam’s application-item recovery is a significant strength. Storware’s ability to mount backups for file-level restore is also a valuable feature.
Replication Capabilities	Supports disaster recovery scenarios often leveraging replicated file systems or built-in backup provider mechanisms for offsite copies and recovery in a secondary datacenter. Does not typically offer native hypervisor-level replication like Veeam.	Offers image-based VM replication to an offsite location or cloud, creating ready-to-use VM replicas for fast failover with configurable failover points.	Veeam has a strong native replication capability for hypervisors, which is a key component of many DR strategies. Storware focuses more on using backup copies at a secondary site for recovery.
Deduplication and Compression	Provides built-in data deduplication (often using technologies like VDO) and compression to reduce storage consumption. Can also leverage deduplication features of backup destinations (e.g., Dell EMC Data Domain).	Offers built-in data deduplication and compression. Has strong integration with leading deduplicating storage appliances for enhanced data reduction ratios.	Both solutions offer data reduction techniques. The effectiveness can depend on the data type and the integration with specific storage hardware.
Immutability / Ransomware Protection	Offers immutable backups to protect against ransomware by making backup data unchangeable, often leveraging WORM (Write Once, Read Many) storage and integrates with secure cloud storage options.	Provides multiple options for immutable backups, including leveraging object storage immutability features and dedicated immutable backup repositories, as a key part of their cyber resilience strategy.	Both vendors recognize the importance of immutability for ransomware protection and offer ways to achieve this, often using cloud or specific storage features.
Centralized Management	Provides a web-based central management portal (HTML5) for managing backups across supported environments. Offers a CLI and Open API for automation and integration.	Offers a web-based management console (Veeam Backup Enterprise Manager) for centralized management of multiple Veeam Backup & Replication installations, especially for distributed environments.	Both offer centralized management interfaces. The best fit depends on the scale and complexity of the environment and the need for multi-site management.
Cloud Integration (Backup Target)	Supports storing backups directly to various object storage providers compatible with S3, Google Cloud Storage, Microsoft Azure Blob Storage, and OpenStack Swift.	Supports using cloud object storage (AWS S3, Azure Blob, Google Cloud Storage) as backup repositories, including features like the Capacity Tier and Archive Tier for cost-effective long-term retention.	Both allow using cloud object storage as a backup target, which is a common and cost-effective approach for offsite copies and archiving.
Ease of Use	Often described as having an intuitive interface, particularly for managing the platforms it specializes in.	Generally considered easy to deploy and use, with a user-friendly interface, although its extensive features can introduce complexity in larger deployments.	Perceived ease of use can be subjective and depend on the administrator’s familiarity with the specific platforms being protected. Storware might be simpler in its niche areas.

Before making a decision, administrators and business owners should carefully evaluate their needs, compare the features and capabilities of both solutions in the context of their environment, consider the total cost of ownership (including licensing, support, and management), and ideally, test both solutions to determine which one best fits their requirements.

About Storware
Storware is a backup software producer with over 10 years of experience in the backup world. Storware Backup and Recovery is an enterprise-grade, agent-less solution that caters to various data environments. It supports virtual machines, containers, storage providers, Microsoft 365, and applications running on-premises or in the cloud. Thanks to its small footprint, seamless integration into your existing IT infrastructure, storage, or enterprise backup providers is effortless.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

Storware 2025

The Modern Evolution of IGA: Insights from the Frontlines

In today’s digital-first world, the way we manage identities has never been more critical. As hybrid workforces expand and regulations tighten, organizations are increasingly looking to modernize their Identity Governance and Administration (IGA) systems—not just to stay compliant, but to stay secure and agile.

Recently, I had an interview with a seasoned identity expert from a global retail manufacturing giant who joined the conversation to unpack the evolution of IGA, share real-world challenges, and explore where the industry is heading next.

Here are the top takeaways from that insightful discussion.
‍
‍

‍What Is IGA and Why Does It Matter Today?

Identity Governance and Administration (IGA) isn’t new. Traditionally, it’s been focused on provisioning access, handling joiners/movers/leavers, and enforcing separation of duties. Where Identity and Access Management (IAM) covers the broader picture of who has access to what, IGA zeroes in on how that access is granted, monitored, and revoked.

Historically, IGA was reserved for large enterprises with deep pockets. But events like the Enron scandal pushed IGA into the spotlight, making it essential for compliance and corporate accountability. Today, identity governance must support not only employees but also dynamic workforces, contractors, and even non-human identities across sprawling digital ecosystems.

‍

Where Traditional IGA Falls Short

Despite its benefits, legacy IGA systems often struggle with real-world complexity:

Fragmented Stakeholders: HR, IT, security, and compliance teams all rely on IGA, but often have conflicting priorities.
Slow Deprovisioning: Many organizations excel at onboarding new users but lag at removing access when roles change or users leave.
Inconsistent Ownership: IGA often floats between departments—sometimes under the CSO, other times under GRC or IT—making it difficult to drive a cohesive strategy.
Signal-to-Noise Overload: As IGA systems evolve toward Identity Threat Detection and Response (ITDR), the challenge becomes separating meaningful signals from massive volumes of data.

‍

How IGA Is Modernizing

The good news? IGA is undergoing a major transformation.

‍

1. Cloud-First, Agile Architectures

Cloud-native IGA platforms have matured significantly. Ten years ago, they were lightweight and limited. Today, they often outpace their on-prem counterparts in speed, features, and ease of adoption. Organizations can now test features in private previews and toggle capabilities with the flip of a switch—an impossible feat in traditional setups.

‍

2. Security-First Integration

Modern IGA is becoming more intertwined with ITDR and threat prevention. This includes signals from endpoint detection, phishing-resistant MFA such as passkeys and hardware tokens, and behavioral analytics. However, challenges persist—especially in stitching together data from different vendors without standardized orchestration tools.

‍

3. Adaptive, Fine-Grained Access Controls

The move from static policies to adaptive, context-aware permissions is a game-changer. Attribute- and policy-based access controls (ABAC/PBAC) enable organizations to grant just-in-time, least-privilege access that adapts to changing conditions. Think: access that aligns with peer groups, behavior norms, or real-time risk scores.

‍

4. AI-Powered Efficiency

AI is taking center stage in automating onboarding, role modeling, and access certification. Rather than relying on exhaustive manual interviews to determine who needs what, AI can analyze historical data and suggest policies based on similar roles or behaviors, freeing up valuable analyst time and reducing risk.

‍

What’s Next: From People to Bots

The identity leader from the retail manufacturing company shared a clear vision of what’s ahead:

Expanding Beyond Employees: Extending IGA to cover business partners and vendors, not just full-time staff.
Managing Non-Human Identities (NHIs): From service accounts to AI agents, organizations must bring these entities under governance.
Combatting Shadow IT/AI: Just like shadow IT introduced risks a decade ago, unsanctioned AI tools are the next blind spot. IGA must adapt.
Orchestration of ITDR: As identity signals become more diverse, orchestration platforms that unify those signals will become critical.

‍

Community + Collaboration = Better Security

One of the best ways to keep up with this rapidly evolving landscape? Community.

From industry conferences like Gartner IAM and EIC to informal meetups like Identity Beers, connecting with peers helps professionals learn what’s working, what’s not, and where innovation is headed. Our guest emphasized that even a single conversation can replace weeks of research or pilot testing.

‍

Final Thoughts

IGA is no longer a “nice-to-have” compliance tool. It’s a strategic enabler of security, productivity, and digital agility. The organizations that embrace modern, flexible, and AI-driven identity governance are best positioned to thrive in today’s dynamic threat landscape.

Whether you’re just starting your IGA journey or looking to modernize an existing program, the time to act is now.

‍

Stay safe, stay informed, and keep your identities governed.

About Segura®
Segura® strive to ensure the sovereignty of companies over actions and privileged information. To this end, we work against data theft through traceability of administrator actions on networks, servers, databases and a multitude of devices. In addition, we pursue compliance with auditing requirements and the most demanding standards, including PCI DSS, Sarbanes-Oxley, ISO 27001 and HIPAA.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

Segura 2025

Storware Backup and Recovery 7.3 – Check out what’s new

edm e-newsletter 2025

The Role of Artificial Intelligence in ITSM Incident Management

To meet increasingly complex needs, organizations’ technological infrastructure tends to expand to handle a particularly heavy workload.

For this reason, having a robust Incident Management framework, capable of managing a growing number of users and operations daily, allows operational teams to maintain a resilient IT environment.

Today, artificial intelligence supports the incident management process in all its phases, from incident detection to response and root cause identification.

In particular, AI applications automate tasks such as incident categorization and prioritization, enhancing and speeding them up through advanced technologies like machine learning and natural language processing (NLP).

In this article, we will explore how AI-driven incident management is much more efficient than manual management, which often results in delays and classification errors.

What is Incident Management?

Incident management is the structured process that identifies, records, analyzes, and resolves IT incidents. Effective incident management is essential to minimize downtime, provide timely responses, maintain IT service continuity, and ensure smooth service delivery.

Incidents, in this context, refer to unplanned interruptions or degraded IT services, such as system crashes, performance slowdowns, or issues that affect user productivity.

If well-organized and supported by appropriate tools, the incident management process allows IT teams to systematically and efficiently address these interruptions.

Key activities in an incident management process include:

Incident Detection and Logging: Recognizing and documenting the problem.
Categorization and Prioritization: Classifying the incident and determining its urgency and business impact, then directing it to the most appropriate team for investigation.
Resolution and Closure: Implementing a solution and closing the incident.
Review (if necessary): Analyzing incidents to prevent future occurrences.

The primary goal of this process is to restore normal service operations as quickly as possible, ensuring quality and minimizing the business impact of incidents.

2025 Gartner®Market Guide for ITSM Platforms

Get the latest ITSM insights! Explore AI, automation, workflows, and more—plus expert vendor analysis to meet your business goals. Download the report now!

DOWNLOAD NOW

Traditional Incident Management Process vs. AI-Driven Incident Management

Traditional incident management methods in IT operations can be time-consuming and prone to inefficiencies, whereas AI-driven incident management leverages technology to optimize various aspects of the process.

Traditional ITSM platforms rely heavily on human intervention: operators manually categorize incidents based on their understanding of the issue. This approach is prone to errors, such as misclassification, inconsistent prioritization, and delays.

AI incident management uses artificial intelligence technologies, like machine learning and NLP, to automate and optimize incident-related processes in ITSM platforms.

An AI system can collect vast amounts of historical data on all events, including third-party data, and analyze it in real time to make more accurate decisions, surpassing manual methods in both speed and accuracy.

How AI Transforms Incident Prioritization

Incident prioritization establishes the order in which incidents must be addressed.

Correct prioritization based on urgency and business impact gives precedence to high-impact incidents. Failing to prioritize correctly can lead to prolonged downtime, harming business operations.

AI-based incident prioritization transforms the entire process.

By instantly analyzing data streams from multiple sources and leveraging machine learning algorithms, AI reduces the need for manual intervention and ensures unprecedented precision and consistency.

Let’s clarify the difference between a traditional incident management process and an AI-driven one by examining three critical areas.

Incident Identification

Traditional IM: Different teams overseeing and resolving incidents collaborate to identify the cause but often lack complete visibility of key events, leading to diagnostic delays.
AI-Driven IM: AI automatically categorizes events and traces the incident to its source, providing immediate clarity and speeding up the resolution process.

Task Assignment

Traditional IM: A responsible technician manually reviews the incident and assigns necessary tasks, often guiding team members on how to address the issue.
AI-Driven IM: AI provides a real-time map of incidents with grouped alerts (clusters), simplifying task assignment.

Root Cause Analysis (RCA)

Traditional IM: Teams manually analyze incidents to determine the root cause, which is time-consuming and reactive.
AI-Driven IM: AI traces incidents back to their root cause and predicts potential future issues, making RCA faster and more proactive.

Advantages of AI in Incident Categorization and Prioritization

AI incident management offers a transformative approach that significantly improves speed, accuracy, and efficiency.

Leveraging machine learning algorithms and historical data, AI can automate routine tasks, allowing IT teams to focus on critical issues and simplify overall workflows. Let’s delve deeper.

Speed

AI can instantly analyze incoming incidents, categorize them using predefined algorithms, and prioritize them based on urgency and impact. For example, if a server crashes during business hours, the system automatically assigns the highest priority to the event, ensuring it is addressed first.

The ability to make faster decisions accelerates the entire resolution process, leading to shorter incident life cycles and quicker service restoration.

Accuracy

In manual incident management, incorrect categorization or prioritization can delay problem resolution or assign the wrong team. AI minimizes this risk by identifying recurring patterns based on historical data.

For example, if an incident is incorrectly categorized as low-priority in a manual process, it may be overlooked, resulting in prolonged downtime.

With AI, this risk is significantly reduced, as the system can recognize similar past incidents and assign them correctly from the start, ensuring resources are allocated efficiently and incidents are handled promptly.

Efficiency

AI not only increases the speed and accuracy of incident management but also significantly improves efficiency by automating repetitive tasks.

In traditional settings, IT teams spend a lot of time manually categorizing and prioritizing incidents, wasting resources, especially during peak periods. By automating these tasks, AI allows IT teams to focus on more complex strategic issues that require specifically human skills.

For instance, instead of spending time categorizing numerous routine help desk tickets, IT staff can work on system upgrades or resolving critical problems.

In summary, integrating AI into incident categorization and prioritization processes is a game-changer for modern IT service management.

Best Practices for Implementing AI in Incident Management

Organizations aiming to successfully integrate AI solutions into their incident management workflows should adopt strategies that significantly enhance the effectiveness and impact of the AI applications implemented.

Below are some best practices that can help optimize AI integration.

Identify Key Areas for Improvement: Focus on areas where manual categorization and prioritization are time-consuming or error-prone.
Leverage Historical Data: AI solutions perform better when trained on accurate historical data. The data must be clean, well-structured, and complete to improve system effectiveness.
Monitor Performance: Ensure AI applications adapt to new data and changing business needs. Regular feedback cycles can improve accuracy and performance over time.
Adopt Incident Management Software: Choose specific software designed to simplify and make incident management processes more efficient.

The last point is particularly important. Today, support agents have access to tools that provide a comprehensive end-to-end view of all IT services, from infrastructure to endpoints, allowing them to proactively resolve problems before they impact the business.

The Future of AI Incident Management: Overcoming Challenges and Seizing Opportunities

While AI undoubtedly brings significant improvements, organizations may face some challenges during implementation. A primary hurdle is data quality, which must be structured and high-quality. Another critical issue is employees’ adoption of AI-based tools, as they may harbor doubts and uncertainties about the increasing role of automation.

As AI technologies evolve, the prospect of fully autonomous AI incident management becomes increasingly likely: AI systems seem destined to manage most of the incident lifecycle, from detection to resolution, without human intervention.

Soon, AI may even enable IT teams to anticipate incidents before they occur, using patterns and trends to predict potential system failures.

In conclusion, AI-driven incident management is transforming how ITSM platforms handle incident categorization and prioritization, leading to improvements in speed, accuracy, and efficiency.

2025 Gartner®Market Guide for ITSM Platforms

Get the latest ITSM insights! Explore AI, automation, workflows, and more—plus expert vendor analysis to meet your business goals. Download the report now!

DOWNLOAD NOW

About EasyVista
EasyVista is a leading IT software provider delivering comprehensive IT solutions, including service management, remote support, IT monitoring, and self-healing technologies. We empower companies to embrace a customer-focused, proactive, and predictive approach to IT service, support, and operations. EasyVista is dedicated to understanding and exceeding customer expectations, ensuring seamless and superior IT experiences. Today, EasyVista supports over 3,000 companies worldwide in accelerating digital transformation, enhancing employee productivity, reducing operating costs, and boosting satisfaction for both employees and customers across various industries, including financial services, healthcare, education, and manufacturing.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

EasyVista 2025

CentOS Stream 10: New and Notable Changes

CentOS Stream 10 is based on Fedora 40 and came out in December of 2024, months ahead of the GA release of RHEL 10. Named “Coughlan” after Tom Coughlan, one the contributors to the CentOS project who passed away in 2023, CentOS Stream 10 includes several significant updates and improvements.

In this blog, our expert explores the key changes and new features in CentOS Stream 10 and offers considerations for enterprise teams considering the rolling release distro for production workloads.

A Quick Recap on the CentOS Stream Project

CentOS Stream has an interesting history, with some notable developments in the past few years. After announcing in 2020 that CentOS Linux would be discontinued in favor of focusing on CentOS Stream, last year Red Hat ruffled more feathers by announcing that CentOS Stream would become the sole repository for RHEL source code. CentOS Stream 8, the first release, reached end of life in May 2024; CentOS Stream 9 has been out since 2021.

On June 6, 2024, the CentOS Project posted links to the CentOS Stream 10 compose images, install ISOs, and container images with the following message: “Please note the compose is still taking shape. Packages are still being added and even removed at this point. Not all packages are fully onboarded to gating, so just some updates are landing. Packages are being moved between repositories. Comps groups are being updated…” Developers were encouraged to test and share feedback.

Fast forward six months: CentOS Stream 10 was released on December 12, 2024, and will be actively supported for roughly five years, until RHEL 10 enters its maintenance phase.

Back to top

CentOS Stream vs. CentOS Linux

The main difference between CentOS Stream and CentOS Linux is that CentOS Stream is upstream of RHEL, with packages planned for upcoming releases, and CentOS Linux is a rebuild of the current RHEL release.

Another key difference is how updates are made in the two distributions. For CentOS Linux, new minor versions consist of large batches of updates, with smaller updates between versions. Rather than batch updates, packages in CentOS Stream are updated as they are ready, in a continuous stream, and there are no minor versions.

Before all versions reached end of life, CentOS Linux had a community support lifecycle of ten years, like RHEL and many other Enterprise Linux distributions. CentOS Stream has a shorter lifecycle of five years, with EOL based on when the corresponding RHEL release leaves Full Support and enters its Maintenance Phase (security updates only).

Back to top

How Long Will CentOS Stream 9 Be Supported?

CentOS Stream 9 will be supported until May 31, 2027, when RHEL 9 leaves Full Support.

Back to top

CentOS Stream 10 Release Date

CentOS Stream is upstream of RHEL and was released on December 12, 2024.

Back to top

Notable Changes in CentOS Stream 10

Kernel: CentOS Stream 10 ships with linux kernel 6.12, rather than 5.14 that CentOS Stream 9 used.
Programming language support/compilers: CentOS Stream 10 has GCC 14.2.1 (instead of GCC 11.5), and Python 3.12 (instead of Python 3.9).
CPU compatibility and capabilities: The v3 microarchitecture level is required to install.
Performance: Phoronix ran some benchmarks, and a thorough comparison of performance is available here. That is for Arm64 instead of x86_64, but should still be comparable.
Removals:
- Xorg is no longer included. Wayland is the default display stack, and Xwayland is available as a compatibility layer.
- Some graphical desktop applications, such as GIMP, LibreOffice, and Inkscape, have been removed. These will be run using Flatpak instead.
- Secureboot does not currently work. It is blocked on a shim review.
- Redis has been replaced with Valkey (a Redis fork).

Back to top

Using CentOS Stream in Production

There is some debate over whether enterprises should use CentOS Stream in production. Some say the rolling release model makes it too unstable and that it’s more of a ” beta testing ground” for features, or a preview of the next version of RHEL (though not everything in Stream may make it into RHEL). Red Hat explicitly says that CentOS Stream “is not designed for production use in enterprise environments” and recommends using RHEL as a CentOS alternative.

However, depending on your use case, using CentOS Stream for production workloads may not present any issues. Some teams like that Stream gives them access to bug fixes and new features before they become available in RHEL. The notion that CentOS Stream is fundamentally less stable or reliable than RHEL is not really accurate, as everything in Stream undergoes QA and testing, and has been accepted for the next minor RHEL release before being merged into Stream.

The main difference between RHEL and CentOS Stream comes down to commercial support and services that RHEL provides to its paying subscribers.

Still, a lot depends on your particular use case and infrastructure to determine whether or not CentOS Stream is the right fit. If you’re unsure, talk to an OpenLogic Enterprise Architect about your environment — our team of experienced Linux experts can provide unbiased guidance.

Back to top

CentOS Stream 10 Migration and Upgrade Considerations

As usual, you will want to test thoroughly before upgrading important systems. The new kernel version may not support older hardware, and with x86_64-v3 coming in the future, some older hardware may not work at all. Information about glibc-hwcaps can be found here. RHEL 9 did the same with x86_64-v2 and a simple test under Proxmox using x86-64-v2-AES produced a kernel panic during just an install, but x86-64-v3 succeeded. This still seems to be the case.

With a new kernel, glibc, gcc, Python, and other changes, some existing software may not have library versions available to run the older version. Containers or VMs could mitigate the problem, however.

Back to top

What to Expect from Future CentOS Stream Releases

In future CentOS Stream releases, you can expect continuous upgrades of packages, with new versions, security patches, and performance improvements. Future releases may introduce new features, such as updated kernels, newer versions of programming languages, and support for emerging hardware or software trends.

Back to top

Final Thoughts

CentOS Stream 10 proved to be an accurate preview of RHEL 10 — the first major release in four years. As to whether CentOS Stream 10 is a viable alternative to CentOS Linux or the best Linux distro for your organization, I recommend checking out this CentOS Stream checklist for guidance or downloading the Decision Maker’s Guide to Enterprise Linux, which compares 20 different distros in terms of security, stability, use cases, and support.

It’s always a good idea to have technical support for your mission-critical workloads, and ideally, to work with experts who have full stack expertise to troubleshoot issues with updates and integrations. If you decide to use a FOSS Linux OS, it’s wise to pair it with commercial support from OpenLogic so you always have immediate access to Enterprise Architects.

About Perforce
The best run DevOps teams in the world choose Perforce. Perforce products are purpose-built to develop, build and maintain high-stakes applications. Companies can finally manage complexity, achieve speed without compromise, improve security and compliance, and run their DevOps toolchains with full integrity. With a global footprint spanning more than 80 countries and including over 75% of the Fortune 100, Perforce is trusted by the world’s leading brands to deliver solutions to even the toughest challenges. Accelerate technology delivery, with no shortcuts.

About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

OpenLogic 2025