2025 has seen the cloud landscape continue to evolve at an extraordinary pace. As organizations accelerate their AI, analytics, and digital transformation workloads, many of us are experiencing a significant increase in complexity.
Systems are becoming more distributed, with workloads spread across multiple regions, accounts, and vendors. With complexity comes fragmentation, and a sharp rise in risk around cyber threats, identity compromise, and multi-cloud governance, leading many of us to wonder how to maintain visibility across disparate systems as well as how to handle protection, resilience, and recovery at scale.
This is why I was excited to learn about some of the latest announcements and releases from Commvault, announced at SHIFT 2025.
Commvault Cloud Unity - a unified platform designed for the realities of cloud at scale
Most organizations’ AWS environments have grown organically, spanning multiple accounts and regions, with the vast majority using multiple cloud vendors as well as running hosted workloads and data on-premises. This approach allows for the adoption of best-of-breed technologies and services, however the trade-off is that such mixed environments become increasingly difficult to manage and protect.
Commvault Cloud Unity is a major release that unifies data security, cyber recovery, and identity resilience into one AI-enabled platform. It provides a single pane of glass spanning all workloads, regions, and protection policies, across AWS, on-premises, and hybrid environments.
Features of the Commvault Cloud Unity platform:
AI-driven discovery of all AWS workloads across accounts and regions
Commvault Cloud Unity automatically identifies AWS workloads and data across EC2, EKS, RDS, DynamoDB, S3, Lambda-backed services, and more.
Clear visibility into what’s protected (and what isn’t)
One of the biggest challenges is understanding where data is located. What’s protected? What’s under-protected, or not protected at all? In addition to helping you discover your data landscape, Commvault Cloud Unity also provides automated classification and protection policy recommendations.
Synthetic Recovery: Clean, Complete Restorations for AWS Workloads
This is, in my view, one of the most exciting capabilities Commvault has introduced.
AWS estates often include:
- Distributed EC2 workloads
- Massive S3 data lakes
- Numerous databases (RDS, Aurora, DynamoDB)
- Containerized workloads running on EKS
If any part of this is compromised, restoring cleanly can be incredibly complex and nuanced. Previously, you’d have to choose between an older backup that’s clean, or a recent snapshot that might be contaminated. Neither option is great.
Synthetic Recovery changes that completely.
It uses AI to identify compromised blocks or files, remove them automatically, then reassemble them into a synthetically clean recovery point, preserving all clean, recent data. This is incredibly valuable for AWS environments where speed and precision are essential.
No more rolling back to a recovery point from last Tuesday because it’s the only one you trust.
Request a demo of this exciting feature to see it in action!
Threat Scan: Protecting AWS Backups from Hidden Threats
For AWS customers maintaining vast amounts of data in S3 or using snapshot-heavy workflows for EC2 and RDS, this adds vital intelligence to the recovery process.
Threat Scan brings AI-driven scanning of AWS backup datasets, detection of encrypted files, malware, and indicators of compromise, the ability to inspect recovery points before restoring them, proactive identification of risks inside S3 object versions, EC2 snapshots, and more.
With attackers now targeting backups directly, the security of AWS backup data has never been more critical.
Identity Resilience for AWS-Hybrid Environments
AWS customers who rely on Active Directory for authentication, whether that’s through AWS Managed AD or integrated with on-premises AD, will benefit from new identity resilience enhancements, which detect, audit, and reverse malicious identity changes.
Commvault Unity also includes the ability to spot identity anomalies, maintain forensic change logs, roll back malicious AD changes in real time, and even safely test AD recovery inside a cleanroom on AWS. All of this is invaluable for anyone operating a hybrid IAM setup on AWS.
Solving the challenges that AWS customers struggle with the most
Collectively, these announcements represent a major step forward for AWS resilience. They bring clarity where there has been confusion, automation where there has been manual effort, and integrated protection where there have been fragmented tools.
**Commvault Cloud Unity solves the challenges that AWS customers struggle with the most, like data sprawl, inconsistent policies, cyber risk, and complex backup management. **With one secure, automated platform spanning hybrid and multi-cloud environments, organizations benefit from faster recovery, streamlined operations, and complete confidence that their critical data is properly protected and recoverable when it matters most.
Want to Learn More?
Exciting times for Commvault, for AWS, and for those of us responsible for mission critical workloads in the cloud! If you’re interested in hearing more about all of these announcements, you can watch all the sessions from SHIFT 2025 on demand, and request a demo!
Commvault at re:Invent 2025
If you’re heading to AWS re:Invent this year, visit the Commvault team in the Expo Hall at booth #621 to talk cyber recovery and AWS-native resilience, experience some very cool demos, and more!
Top comments (0)