Sold by: Varonis
Deployed on AWS
Free Trial
Vendor Insights
AWS Free Tier
Varonis automatically discovers sensitive data in SaaS repositories, identifies where data is exposed, helps reduce risk by rightsizing privileges, and monitors data for suspicious activity to prevent cyberattacks from taking hold.
4.4
Overview
Stop Data Breaches Automatically. With AI-powered automation, continuously discover and classify critical data, remove exposures, and stop threats in real-time.
Varonis offers security teams a single control point to monitor and protect their SaaS, IaaS, and on-prem environments, including structured and unstructured sensitive data.
Varonis identifies and surfaces where sensitive data lives across your environments and shows you where it's exposed. Varonis helps you reduce risk by understanding and rightsizing privileges, finding and fixing misconfigurations and security gaps, and monitoring for suspicious or inappropriate behavior across SaaS and IaaS platforms.
Automated DSPM for AWS, Box, M365, Google, Salesforce, GitHub, Okta, Zoom, Jira, and Slack.
More than 7,000 enterprises worldwide trust Varonis to keep their data safe.
Varonis tackles hundreds of use cases, making it the ultimate platform to stop data breaches and ensure compliance.
Data classification - Find and classify sensitive data across structured and unstructured data, including PII, PCI, and secrets, across all data stores, including saas, IaaS, and on-prem environments.
Permissions analysis: Easily understand effective permissions to reduce data exposure and compliance gaps, such as ex-contractors and guest users who still have unnecessary access.
Threat detection & response: Monitor data activity and alert on data exfiltration attempts by insiders and malicious actors.
Least privilege automation Safely eliminates data exposure from sharing links, stale permissions, and group memberships.
Automated posture management: Find and fix misconfigurations, org-wide settings problems, and other critical security gaps.
Core use cases:
-Sensitive data discovery and classification -Compliance management -Least privilege automation -Insider risk management -Ransomware prevention -Data security posture management (DSPM) -SaaS security posture management (SSPM) -Cloud security posture management (CSPM) -Proactive incident response
GETTING STARTED
All Varonis products are free to try and come with an engineer-led data risk assessment. The platform can be deployed in minutes and populates insights instantly, giving you a comprehensive look at your data security posture and actionable steps to reduce data exposure.
Request a risk assessment: https://info.varonis.com/en/demo-test-drive . For custom order configuration & volume pricing, please contact aws@varonis.com
Highlights
- Unrivaled visibility into SaaS and IaaS platforms - Varonis applies consistent and highly accurate classification policies across your SaaS and IaaS platforms to identify where sensitive data lives in your environments. Varonis maps and normalizes granular permissions across platforms into a simple CRUDS model - pairing with sensitivity results to show you who has access and where data is exposed org-wide, publicly, and externally.
- Enhanced data security posture management (DSPM) - Surface critical org-wide configuration gaps across your SaaS and IaaS platforms, and fix them with a simple click of a button. Use Varonis' customizable DSPM dashboards to continuously visualize and assess your data security posture and track progress over time. See where there are unnecessary pathways to data and monitor changes to risk over time so you can reduce threats to your sensitive data as your SaaS and IaaS environments evolve.
- Near real-time threat detection - Monitor activity across your SaaS and IaaS platforms to detect suspicious or risky activity to protect your critical data from malicious actors with notifications on abnormal activity, unauthorized access, and risky misconfigurations. Use our highly detailed alerts to jumpstart your investigation and drill down into our granular audit trail of activity to perform cross-cloud forensic investigations.
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(3)
ISO27001
SOC2
PCIDSS
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Varonis for AWS/S3/RDS IaaS | DSPM coverage for AWS, S3, EC2 and RDS | $750.00 |
Varonis for Box | DSPM coverage for Box | $310.00 |
Varonis for Salesforce | DSPM coverage for Salesforce | $310.00 |
Varonis for Slack | DSPM coverage for Slack | $310.00 |
Varonis for Google Drive | DSPM coverage for Google | $310.00 |
Varonis for Okta | DSPM coverage for Okta | $310.00 |
Varonis for Jira | DSPM coverage for Jira | $310.00 |
Varonis for Github | DSPM coverage for Github | $310.00 |
Varonis for Zoom | DSPM coverage for Zoom | $310.00 |
Varonis for M365 | DSPM coverage for M365 | $400.00 |
Vendor refund policy
Please contact aws@varonis.com
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
We offer premium support for customers with business hours support coverage through global phone contacts, email, and our worldwide community forum.
https://www.varonis.com/support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Varonis
By Obsidian Security, Inc.
By Netskope
Top
10
In Data Security and Governance, Legal & Compliance
Top
10
In Data Security and Governance
Top
100
In Security
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Sensitive Data Discovery and Classification
Automatically identifies and classifies sensitive data including PII, PCI, and secrets across structured and unstructured data stores in SaaS, IaaS, and on-premises environments using AI-powered automation.
Permissions Analysis and Least Privilege Automation
Maps and normalizes granular permissions across platforms into a CRUDS model to identify excessive access, eliminate stale permissions, and automatically reduce data exposure from sharing links and group memberships.
Data Security Posture Management
Continuously discovers and surfaces critical configuration gaps across SaaS and IaaS platforms with customizable dashboards to visualize security posture, track progress over time, and identify unnecessary data access pathways.
Real-Time Threat Detection and Monitoring
Monitors data activity across SaaS and IaaS environments to detect suspicious behavior, unauthorized access attempts, and data exfiltration by insiders and malicious actors with granular audit trail capabilities.
Multi-Platform Coverage
Provides automated data security and posture management across AWS, Box, Microsoft 365, Google, Salesforce, GitHub, Okta, Zoom, Jira, and Slack platforms from a single control point.
Identity Threat Detection
Active threat detection and neutralization for SaaS identities with spearphishing blocking and incident response capabilities
Third-Party Integration Risk Management
Discovery and governance of third-party integrations across SaaS applications with risk assessment and mitigation
Data Movement Governance
Monitoring and control of data movement between SaaS applications with visibility into data flows
Application Posture Management
Automated compliance enforcement, privilege reduction, and configuration drift prevention across SaaS platforms
Unified SaaS Security Platform
Integrated platform combining identity security, data governance, and application posture management in a single modular solution
Cloud Access Security Broker
Unified cloud access security broker (CASB) functionality providing visibility and control over access to managed and unmanaged cloud services with conditional, granular policy enforcement.
Secure Web Gateway
Next generation secure web gateway (SWG) capabilities delivering comprehensive threat protection for cloud and web services with context-aware access control.
Data Loss Prevention
Data-at-rest and data-in-motion inspection with DLP violation detection, malware scanning in cloud storage, and data exfiltration prevention to unmanaged cloud infrastructure.
Cloud Infrastructure Monitoring
Continuous security assessment monitoring of cloud infrastructure for risky misconfigurations including data exposure across AWS and other cloud providers with inventory and configuration visibility.
Compliance and Remediation Automation
Pre-defined compliance profiles aligned with CIS, PCI, and NIST standards, advanced RBAC, scheduled reporting, alert notifications, exception handling, and automated remediation capabilities accessible via REST APIs.
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
-
-
-
No security profile
No security profile
Standard contract
No
No
Customer reviews
Retail
Accurate Sensitive Data Detection, but Pricing Can Strain Larger Budgets
Reviewed on Jan 28, 2026
Review provided by G2
What do you like best about the product?
Varonis has come a long way from 15 years ago when I was using it to detect credit numbers. It is easy to roll out and their detection mechanisms are very accurate. Varonis helps manage and monitor non-structured data to determine if documents contain sensitive data and need to be moved to provide better protection.
What do you dislike about the product?
I feel Varonis is a bit expensive, and if you have a large footprint, it may put some added stress on your budget.
What problems is the product solving and how is that benefiting you?
Within our PII environment, we needed to better identify where associates were storing data and what PII data that were keeping in different types of documents.
Mechanical or Industrial Engineering
Varonis: Powerful Data Security with Automated Discovery, Classification, and Fast Support
Reviewed on Jan 27, 2026
Review provided by G2
What do you like best about the product?
We’ve been using Varonis for a ove a year in our mid-size environment, and find its it’s one of the strongest tools we have for data security. What function s stands out most are how easily it is to automatically discovers and classifies sensitive data across our environment (we use it on prem and in the cloud) and flags risks before they become issues and it's use in investigative processes. It has significantly reduced the amount of manual investigation required and has materially lowered our overall exposure.
Ease of Use:
Pretty good once you get past the initial learning curve. The dashboards are clean, the visuals are intuitive, and you don’t need to be a power user to get meaningful insights. Also the onboading team will walk you through the process. 8/10
Ease of Implementation:
Implementation will takes a few weeks, especially when scanning large data sets, but the documentation and professional services support make it manageable. Starting small and expanding gradually worked well for us and avoided a painful “big bang” rollout. 7/10
Customer Support:
Excellent. Response times are quick, and the support team is knowledgeable and genuinely invested in helping you succeed. It feels more like working with a partner than a vendor. 10/10
Frequency of Use:
Daily. Between alerts, dashboards, and reporting, it’s fully embedded into our security and operations workflow.
Number of Features:
Very feature-rich without feeling bloated. Data classification, access remediation, threat detection, and automated cleanup all work together well. We’ve seen a noticeable reduction in our attack surface. 9/10
Ease of Integration:
Integrates cleanly with Active Directory, AWS, and our SIEM. The available connectors and APIs are straightforward, and we didn’t run into major integration challenges. 8/10
Ease of Use:
Pretty good once you get past the initial learning curve. The dashboards are clean, the visuals are intuitive, and you don’t need to be a power user to get meaningful insights. Also the onboading team will walk you through the process. 8/10
Ease of Implementation:
Implementation will takes a few weeks, especially when scanning large data sets, but the documentation and professional services support make it manageable. Starting small and expanding gradually worked well for us and avoided a painful “big bang” rollout. 7/10
Customer Support:
Excellent. Response times are quick, and the support team is knowledgeable and genuinely invested in helping you succeed. It feels more like working with a partner than a vendor. 10/10
Frequency of Use:
Daily. Between alerts, dashboards, and reporting, it’s fully embedded into our security and operations workflow.
Number of Features:
Very feature-rich without feeling bloated. Data classification, access remediation, threat detection, and automated cleanup all work together well. We’ve seen a noticeable reduction in our attack surface. 9/10
Ease of Integration:
Integrates cleanly with Active Directory, AWS, and our SIEM. The available connectors and APIs are straightforward, and we didn’t run into major integration challenges. 8/10
What do you dislike about the product?
The setup process is not something that happens at once. You'll configure the application, integrate it, and then it scans the data. Depending on the size of your data set, this scanning can take a few hours, days or a week or more. This wasn't an issue, and the process went clean, but you'll have others (Management, etc) hoping to see immediate results. You'll see more and more data appear on the dashboard each day, but you'll need to let them know that the scan will take some time.
What problems is the product solving and how is that benefiting you?
One place to monitor alerts and events on my on-prem and cloud based data. We have setup rules that we were not able to do within our SIEM for alerts, and Varonis also allows you to configure automated responses (such as endpoint disconnect, removal of shares, or disabling of user account). We needed a classification system, but I use it more for security and monitoring than I would have expected.
Jorge G.
High Visibility and Exceptional Support
Reviewed on Dec 01, 2025
Review provided by G2
What do you like best about the product?
I greatly appreciate the ease of use of the Varonis Data Security Platform, as its environment is quite interactive and provides a clear visualization, which significantly facilitates the operation of the platform. Additionally, the ease of integration is excellent, as the tool offers a detailed step-by-step guide on how to integrate with various environments, which greatly simplifies the process. Customer support is also a strong point for me, being extremely interactive; conversations flow quickly and objectively, demonstrating the efficiency and readiness of the support team in resolving the issues presented.
What do you dislike about the product?
During the time of use, what made it most difficult was the removal of some features without prior notice. We had some automations and reports configured in the environment, and due to changes in the platform, they were removed.
What problems is the product solving and how is that benefiting you?
The Varonis Data Security Platform solved the lack of visibility in Active Directory and File Server, allowing you to configure remediations for breaches in the environment.
SureshKumar
Has improved data visibility and protection while enabling automated compliance monitoring
Reviewed on Nov 06, 2025
Review provided by PeerSpot
What is our primary use case?
My main use case for Varonis Platform is for data classification on the user's machine, specifically for data visibility and protection.
A quick, specific example of how I use Varonis Platform for data classification and protection on users' machines is related to identifying and classifying sensitive data in one of the organizations, such as PR data or financial information, and monitoring user activities, including abnormal activities and risky behaviors.
Varonis Platform doesn't just classify and monitor the data; it also helps us understand user behavior, such as when users download or access large files of sensitive data, or share the same data outside the organization, allowing us to see real-time activities and take immediate action.
How has it helped my organization?
Varonis Platform has positively impacted my organization by providing clarity regarding data and permissions. Initially, we faced many issues related to data awareness among users. After implementing this solution, both the organization and users gained a clear understanding of managing sensitive and non-sensitive data, improving visibility, security, and compliance.
Using Varonis Platform for data classification has saved us time. With 1,000 users previously unsure about what files could be shared outside the organization, categorizing data enabled users to differentiate between public and sensitive data easily, thus saving time for both users and managers.
What is most valuable?
Varonis Platform offers multiple features for data protection, such as data discovery and classification. We can identify, discover, and classify sensitive data effectively, which is crucial given the DPDP law in India and GDPR. The platform also excels in access and exposure tracking, enabling us to monitor users, permissions, and reduce access to sensitive files. Additionally, it includes UEBA for behavior analytics and threat detection, making it valuable for compliance and audit readiness.
Varonis Platform has helped our organization primarily for DPDP compliance, although I currently don't have a specific example related to GDPR or HIPAA.
A unique feature of Varonis Platform that stands out to me is that, in the current market, it is one of the best data classification solutions available. Compared to others such as Forcepoint, Varonis Platform is agent-based and AI-driven for detection and response, identifying data based on its content and context, and it includes automated remediation and lifecycle automation, making it a leading product in the market.
What needs improvement?
While Varonis Platform is powerful, the initial data scanning and indexing can take significant time in large environments. However, this is not an issue in mid-level organizations.
I suggest enhancing tighter integration with third-party solutions, such as SIEM or SOAR platforms, for smoother incident response workflows. Standard compliance-related reports specifically tailored for the DPDP Act would also be beneficial.
I chose nine out of ten because, while it is an excellent solution, I would have given it a perfect score if there were standard reports for the DPDP Act and if the console were less complicated.
For how long have I used the solution?
I have been using Varonis Platform for around 1.6 years.
What do I think about the stability of the solution?
Varonis Platform is stable.
What do I think about the scalability of the solution?
Varonis Platform is highly rated for scalability. It operates effectively within our mid-sized organization and is adaptable as our data needs grow, supporting hybrid environments for future use.
How are customer service and support?
Customer support for Varonis Platform is very good. I would rate the customer support for Varonis Platform at nine out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Before using Varonis Platform, we utilized the Titus data classification solution, specifically Forcepoint's solution, which was traditional and lacked many features and visibility, prompting our switch to Varonis Platform.
After using Forcepoint's data classification, we directly switched to Varonis Platform without evaluating other options.
How was the initial setup?
I monitor the effectiveness of Varonis Platform using its built-in dashboard and weekly risk reports that display data exposures, alert volumes, and remediation progress.
What about the implementation team?
Varonis Platform integrates with other security tools easily since it just requires APIs. For instance, we can forward Varonis Platform logs directly to our SIEM solution, integrate Active Directory for permission tracking, and also link it with cloud storage platforms such as O365, SharePoint , and OneDrive.
What was our ROI?
I have seen a return on investment mainly through time savings and improved security for sensitive data, making it a valuable investment.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup costs, and licensing for Varonis Platform has been good, with competitive costs. I believe it offers one of the best solutions available at this price point.
What other advice do I have?
I suggest enhancing tighter integration with third-party solutions, such as SIEM or SOAR platforms, for smoother incident response workflows. Standard compliance-related reports specifically tailored for the DPDP Act would also be beneficial.
I rate Varonis Platform at nine out of ten. Organizations serious about protecting their data should definitely consider Varonis Platform.
Fekri Hached
Has improved data visibility and classification while supporting proactive security workflows
Reviewed on Oct 16, 2025
Review provided by PeerSpot
What is our primary use case?
The main use case for Varonis Platform is data security, data labeling, and data classification, as we have integrated it with Microsoft Purview , which facilitates the labeling side, and it also enhances data security.
I can give a quick, specific example of how we use Varonis Platform for data labeling or security in our organization. We had all of our files with good permissions, but we needed to classify them into confidential, sensitive, and public categories to ensure nothing malicious was happening and that no one was sharing anything that they shouldn't be, which is very important for implementing AI in the future.
What is most valuable?
In my experience, the best features that Varonis Platform offers are data labeling, data classification, along with all the integrations and its easy-to-use platform. They have a really good setup, and their sales team and technical service are reliable; they hold monthly, weekly, and quarterly reviews, and they respond quickly to anything we need, which is not common among platforms.
Varonis Platform has a big variety of integrations, and they continuously work on new updates and integrations, such as ChatGPT Enterprise and Zoom, ensuring that they meet any new needs that customers have, maintaining a roadmap for features that they constantly bring out.
Since implementing Varonis Platform, we have noticed positive impacts in our organization. People are more careful when they go abroad, we have greater visibility, and it's very important for compliance to ensure we follow compliance rules, as we have some good reporting and the out-of-hours MDR service.
What needs improvement?
I would appreciate some improvements in reporting, specifically in PDF exports, although I think they are always working on new features.
It would be beneficial if the reporting in Varonis Platform could use PDFs instead of Excel for better graphs, as the dashboards are really good, and it would be nice to have simplified dashboards in PDF for business reporting purposes.
For how long have I used the solution?
We have been using Varonis Platform for just over a year.
How are customer service and support?
They have a really good setup, and their sales team and technical service are reliable; they hold monthly, weekly, and quarterly reviews, and they respond quickly to anything we need, which is not common among platforms.
How would you rate customer service and support?
Positive
What about the implementation team?
For others looking into using Varonis Platform, my advice is that in terms of data security and everything associated with data, they are very good, and I think it's worth trialing. Their technical team excels in implementation, setup, documentation, and guiding you through the process while advising on what you need.
What other advice do I have?
I wouldn't say audits are easier with Varonis Platform, but given that we're regulated by the FCA, we have rules to follow, and it's much easier now with the dashboards and everything we have integrated to ensure we always adhere to these regulations, especially regarding sensitive client data and to ensure no malicious activity or ransomware occurs, particularly because we integrated it with Microsoft Defender, which locks these devices straight away.
Varonis Platform is deployed in our organization with their dashboard in the public cloud, but we have all of their systems installed on-prem, which means it's mostly public.
We use Azure for our public cloud deployment.
We did not purchase Varonis Platform through the Azure marketplace, but rather through a third-party provider.
Our company has a business relationship with this vendor as a reseller; they are all resellers.
On a scale of 1-10, I rate Varonis Platform a 9.