Sold by: Varonis
Deployed on AWS
Free Trial
Vendor Insights
AWS Free Tier
Varonis automatically discovers sensitive data in SaaS repositories, identifies where data is exposed, helps reduce risk by rightsizing privileges, and monitors data for suspicious activity to prevent cyberattacks from taking hold.
4.5
Overview
Stop Data Breaches Automatically. With AI-powered automation, continuously discover and classify critical data, remove exposures, and stop threats in real-time.
Varonis offers security teams a single control point to monitor and protect their SaaS, IaaS, and on-prem environments, including structured and unstructured sensitive data.
Varonis identifies and surfaces where sensitive data lives across your environments and shows you where it's exposed. Varonis helps you reduce risk by understanding and rightsizing privileges, finding and fixing misconfigurations and security gaps, and monitoring for suspicious or inappropriate behavior across SaaS and IaaS platforms.
Automated DSPM for AWS, Box, M365, Google, Salesforce, GitHub, Okta, Zoom, Jira, and Slack.
More than 7,000 enterprises worldwide trust Varonis to keep their data safe.
Varonis tackles hundreds of use cases, making it the ultimate platform to stop data breaches and ensure compliance.
Data classification - Find and classify sensitive data across structured and unstructured data, including PII, PCI, and secrets, across all data stores, including saas, IaaS, and on-prem environments.
Permissions analysis: Easily understand effective permissions to reduce data exposure and compliance gaps, such as ex-contractors and guest users who still have unnecessary access.
Threat detection & response: Monitor data activity and alert on data exfiltration attempts by insiders and malicious actors.
Least privilege automation Safely eliminates data exposure from sharing links, stale permissions, and group memberships.
Automated posture management: Find and fix misconfigurations, org-wide settings problems, and other critical security gaps.
Core use cases:
-Sensitive data discovery and classification -Compliance management -Least privilege automation -Insider risk management -Ransomware prevention -Data security posture management (DSPM) -SaaS security posture management (SSPM) -Cloud security posture management (CSPM) -Proactive incident response
GETTING STARTED
All Varonis products are free to try and come with an engineer-led data risk assessment. The platform can be deployed in minutes and populates insights instantly, giving you a comprehensive look at your data security posture and actionable steps to reduce data exposure.
Request a risk assessment: https://info.varonis.com/en/demo-test-drive . For custom order configuration & volume pricing, please contact aws@varonis.com
Highlights
- Unrivaled visibility into SaaS and IaaS platforms - Varonis applies consistent and highly accurate classification policies across your SaaS and IaaS platforms to identify where sensitive data lives in your environments. Varonis maps and normalizes granular permissions across platforms into a simple CRUDS model - pairing with sensitivity results to show you who has access and where data is exposed org-wide, publicly, and externally.
- Enhanced data security posture management (DSPM) - Surface critical org-wide configuration gaps across your SaaS and IaaS platforms, and fix them with a simple click of a button. Use Varonis' customizable DSPM dashboards to continuously visualize and assess your data security posture and track progress over time. See where there are unnecessary pathways to data and monitor changes to risk over time so you can reduce threats to your sensitive data as your SaaS and IaaS environments evolve.
- Near real-time threat detection - Monitor activity across your SaaS and IaaS platforms to detect suspicious or risky activity to protect your critical data from malicious actors with notifications on abnormal activity, unauthorized access, and risky misconfigurations. Use our highly detailed alerts to jumpstart your investigation and drill down into our granular audit trail of activity to perform cross-cloud forensic investigations.
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(2)
ISO27001
PCIDSS
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Varonis for AWS/S3/RDS IaaS | DSPM coverage for AWS, S3, EC2 and RDS | $750.00 |
Varonis for Box | DSPM coverage for Box | $310.00 |
Varonis for Salesforce | DSPM coverage for Salesforce | $310.00 |
Varonis for Slack | DSPM coverage for Slack | $310.00 |
Varonis for Google Drive | DSPM coverage for Google | $310.00 |
Varonis for Okta | DSPM coverage for Okta | $310.00 |
Varonis for Jira | DSPM coverage for Jira | $310.00 |
Varonis for Github | DSPM coverage for Github | $310.00 |
Varonis for Zoom | DSPM coverage for Zoom | $310.00 |
Varonis for M365 | DSPM coverage for M365 | $400.00 |
Vendor refund policy
Please contact aws@varonis.com
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
We offer premium support for customers with business hours support coverage through global phone contacts, email, and our worldwide community forum.
https://www.varonis.com/support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Varonis
By Obsidian Security, Inc.
By Netskope
Top
10
In Data Security and Governance, Legal & Compliance
Top
10
In Data Security and Governance
Top
100
In Security
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Sensitive Data Discovery and Classification
Automatically identifies and classifies sensitive data including PII, PCI, and secrets across structured and unstructured data stores in SaaS, IaaS, and on-premises environments using AI-powered automation.
Permissions Analysis and Least Privilege Automation
Maps and normalizes granular permissions across platforms into a CRUDS model to identify excessive access, eliminate stale permissions, and automatically reduce data exposure from sharing links and group memberships.
Data Security Posture Management
Continuously discovers and surfaces critical configuration gaps across SaaS and IaaS platforms with customizable dashboards to visualize security posture, track progress over time, and identify unnecessary data access pathways.
Real-Time Threat Detection and Monitoring
Monitors data activity across SaaS and IaaS environments to detect suspicious behavior, unauthorized access attempts, and data exfiltration by insiders and malicious actors with granular audit trail capabilities.
Multi-Platform Coverage
Provides automated data security and posture management across AWS, Box, Microsoft 365, Google, Salesforce, GitHub, Okta, Zoom, Jira, and Slack platforms from a single control point.
Identity Threat Detection
Active threat detection and neutralization for SaaS identities with spearphishing blocking and incident response capabilities
Third-Party Integration Risk Management
Discovery and governance of third-party integrations across SaaS applications with risk assessment and mitigation
Data Movement Governance
Monitoring and control of data movement between SaaS applications with visibility into data flows
Application Posture Management
Automated compliance enforcement, privilege reduction, and configuration drift prevention across SaaS platforms
Unified SaaS Security Platform
Integrated platform combining identity security, data governance, and application posture management in a single modular solution
Cloud Access Security Broker
Unified cloud access security broker (CASB) functionality providing visibility and control over access to managed and unmanaged cloud services with conditional, granular policy enforcement.
Secure Web Gateway
Next generation secure web gateway (SWG) capabilities delivering comprehensive threat protection for cloud and web services with context-aware access control.
Data Loss Prevention
Data-at-rest and data-in-motion inspection with DLP violation detection, malware scanning in cloud storage, and data exfiltration prevention to unmanaged cloud infrastructure.
Cloud Infrastructure Monitoring
Continuous security assessment monitoring of cloud infrastructure for risky misconfigurations including data exposure across AWS and other cloud providers with inventory and configuration visibility.
Compliance and Remediation Automation
Pre-defined compliance profiles aligned with CIS, PCI, and NIST standards, advanced RBAC, scheduled reporting, alert notifications, exception handling, and automated remediation capabilities accessible via REST APIs.
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
-
-
-
-
No security profile
No security profile
Standard contract
No
No
Customer reviews
Jeff B.
Great for Securing, Monitoring, and Reporting on Data
Reviewed on May 08, 2026
Review provided by G2
What do you like best about the product?
Great solution for securing, monitoring, and reporting on data.
What do you dislike about the product?
Varonis is very helpful with setup and maintenance, but you still need someone that can be very familiar with it to get full value from it.
What problems is the product solving and how is that benefiting you?
We use it to lock down permissions on data, monitor data access, and position our data for use with AI down the road.
Construction
Easy-to-Read Tables, Simple Navigation, and Excellent Support
Reviewed on May 08, 2026
Review provided by G2
What do you like best about the product?
Very easy to read and understand the varying tables. Navigation is simple and effective and Support is excellent
What do you dislike about the product?
It is often quite slow and I've opened a couple cases regarding latency. Any fixes seem to be temporary
What problems is the product solving and how is that benefiting you?
It helps me gain visibility into my environment, understanding of what's going on, and ability to automate remediations
Seelan C.
Easy-to-Use Dashboard with Clear Data Visibility
Reviewed on May 07, 2026
Review provided by G2
What do you like best about the product?
The platform is easy to use, and it provides clear visibility into the organization’s data through a simple, easy-to-understand dashboard.
What do you dislike about the product?
I haven’t had any reason to dislike Varonis so far. I’m a big fan!
What problems is the product solving and how is that benefiting you?
The platform has given us strong visibility into our unstructured data environment and helped us identify and reduce data exposure risks across the organization.
One of the biggest advantages was how quickly we were able to realize value after deployment. The SaaS platform was straightforward to implement, and the dashboards and reporting capabilities made it easy for our teams to start identifying stale data, excessive permissions, and privacy risks almost immediately.
Varonis has also been instrumental in supporting our privacy and security initiatives by helping us classify sensitive data at scale and improve governance over access to critical information. The automation and alerting capabilities significantly reduced the manual effort required for investigations and monitoring.
What stands out most is the depth of insight the platform provides and the partnership approach from the Varonis team throughout the engagement.
Overall, Varonis has become a key component of our data security and privacy program, and I would highly recommend it to organizations looking to strengthen visibility and control over sensitive
One of the biggest advantages was how quickly we were able to realize value after deployment. The SaaS platform was straightforward to implement, and the dashboards and reporting capabilities made it easy for our teams to start identifying stale data, excessive permissions, and privacy risks almost immediately.
Varonis has also been instrumental in supporting our privacy and security initiatives by helping us classify sensitive data at scale and improve governance over access to critical information. The automation and alerting capabilities significantly reduced the manual effort required for investigations and monitoring.
What stands out most is the depth of insight the platform provides and the partnership approach from the Varonis team throughout the engagement.
Overall, Varonis has become a key component of our data security and privacy program, and I would highly recommend it to organizations looking to strengthen visibility and control over sensitive
Daniel M.
Effortless Security Management and Responsive Support
Reviewed on May 06, 2026
Review provided by G2
What do you like best about the product?
I like how easy it is to discover data that has too much access, which allows us to see who's viewing sensitive information and restrict it if needed. I'm really thankful for their 24/7 response, which helps us when we notice someone accessing too many files by automatically disabling or resetting passwords. The initial setup was very easy.
What do you dislike about the product?
I am completely satisfied with the product
What problems is the product solving and how is that benefiting you?
I use Varonis Data Security Platform to see what files contain PHI and PII, verify access, and restrict unnecessary access, which simplifies managing sensitive information. I like how easy it is to discover data with too much access and manage responses like resetting passwords automatically.
Lovekesh Malik
Data security posture has improved and platform manages access and behavior analytics effectively
Reviewed on Mar 24, 2026
Review provided by PeerSpot
What is our primary use case?
I mainly use Varonis Platform to identify the overall security posture of an organization from a data security point of view. When you want to understand where exactly the critical data resides, it functions as a discovery tool. From an initial point, you can see where exactly the data resides. With that capability, it can also allow you to put a restriction if there is an open base. Overall, if you want to check your data from an initial point of view, Varonis Platform is the best use case you can consider.
What is most valuable?
The functions of Varonis Platform that I appreciate the most include the data transport engine, which is something I haven't seen in other DSPM tools. This engine allows you to move your stale data to an archive location in an automated solution that requires nothing from you. It is pre-filled and happens in the background, moving your data whenever required. This functionality has been coded into the platform itself.
I do use the data classification feature in Varonis Platform, and it is indeed useful because of the dictionaries, pre-built features, and custom classifiers it has, which is commendable. It also gives you the capability to write regex if you wanted. In comparison to Purview , I would rate it in second place, with Purview� being the top one.
My opinion about the ML-based threat detection capabilities in Varonis Platform is that it doesn't have its own ML. What they did was integrate with Co-pilot as an extended feature. From the organization's perspective, organizations can simply do the scanning and everything from Co-pilot itself rather than going to the tool itself. From an AI use case, the threat intelligence covers more gaps and can detect an anomaly from a user perspective. If a person has regularly been using a particular folder, it detects those patterns. Earlier, an analyst would have had to write those rules, but now AI and ML in the system can actually detect those anomalies.
User behavior analytics in Varonis Platform is helpful for my company's security posture. UBA is an excellent feature and a classic example of integrating AI with the data security posture. There would be many actions done from a user end that you cannot treat manually. The AI capability and user behavior analytics understand how exactly a user is working on a day-to-day basis and how it normally goes. If there is anything abnormal, it should trigger an alert or an automated response action, which Varonis Platform has this capability inside the data alert module.
What needs improvement?
The potential areas of improvement I see for Varonis Platform are that it doesn't have a SIEM or SOAR console where you can see your incidents or a native style incident case management where you can see all your incidents and do the tracking of all those things. The endpoint part is also missing in Varonis Platform. It cannot inspect the DLP things. For example, when somebody is trying to print something, Varonis Platform cannot block that action. That is also one major use case that I see is missing from Varonis Platform.
For how long have I used the solution?
I have been working with the solution for about seven years.
How are customer service and support?
I would rate the technical support from the vendor between six and seven. I rate the technical support at this level because there are times when people are not skillful enough to understand the issue. You need to speak to them again and again and let them know about the process and what exactly the issue is. Then they understand and conduct what I would call an inside connect investigation. They do a lot of investigation and then come back to us. This takes a lot of time. The matter of how much time it will take is something I wish was faster, as sometimes you need a quick response. However, I do get my resolution every time.
How was the initial setup?
Varonis Platform's initial setup is simple because whatever the requirements are for implementing a solution inside an organization, all those features are enabled. A service account is required to navigate through the platform, which I believe is ultimately the same for each tool for their agent to run on. The setup is not complicated.
What other advice do I have?
The main benefits for me as an end user of Varonis Platform include its excellent performance from a security point of view. There is also a very good feature in its capability for basic IAM features where you can manage the ownership and file permissions. Earlier, you had to go into that particular folder to manage it, but now from Varonis Platform, you only have to go inside the console and see where exactly the open areas are and conduct those IAM activities rather than using a classical IAM tool such as Active Directory or an intranet. This means all you can do is just access it from Varonis Platform, which is a classical benefit I have received. I rate this product as an eight overall.