Cyera’s V30 Release and Latest Innovations: AI Security, Remediation, Classification, and Control

AI is reshaping how we work, and how we secure data. Sensitive data now flows faster, through more systems, with less oversight. Security teams are expected to keep up without slowing the business down. 

Cyera’s latest release meets this moment head-on. It strengthens the platform’s ability to protect data across cloud and on-prem environments and brings intelligent control to the AI tools that access it.

These innovations introduce real-time protection, deeper data context, and built-in automation. From governing AI to remediating Microsoft 365 exposures, these updates give teams the clarity and control they need to move fast and stay secure.

‍

AI Guardian

Introducing AI Guardian

Get Instant Visibility and Control Over AI Usage

AI adoption is exploding, but data and AI governance hasn’t kept pace. Most teams don’t know what AI tools are in use, what data they can access, or how it’s protected. Cyera changes that with AI Guardian. The first end-to-end solution for securing AI with complete data visibility. It protects any AI system, from public tools to internal models, across data at rest and in motion.

AI Guardian brings two new solutions into the Cyera platform: AI-SPM and AI Runtime Protection.

AI Security Posture Management (AI-SPM)

With AI-SPM, you can inventory every AI system (e.g. copilots, public models, internal tools) and see what data they touch. Cyera maps access, flags sensitivity, traces lineage, and reveals regulatory risk. 

For example, when a marketing team links a chatbot to customer data that includes sensitive financial details, Cyera identifies this risk and can take enforcement steps like masking or revoking access to reduce risks.

AI Runtime Protection

AI Runtime Protection stops sensitive data from reaching unmanaged AI models in real time or unauthorized access of sensitive data through internal AI tools within the organization . Cyera monitors AI use as it happens and enforces policies automatically.

For example, if a sales rep pastes sensitive chat logs into an AI assistant, Cyera intercepts the content, blocks the transfer, alerts the owner, and suggests redaction, all before exposure happens.

Cyera’s AI Runtime Protection can even step in when a user tries to trick an AI assistant into revealing its hidden instructions—what's known as a prompt injection. Cyera detects the attempt in real time, flagging the behavior, recognizing the sensitive personal data involved, and automatically escalating the incident for investigation, preventing potential misuse before any harm is done.

Together, AI Guardian closes the AI data security gap, governing access and inference in one flow.

AI-SPM is in private beta and AI Runtime Protection is available for early access. Contact your Cyera representative today to learn more!

‍

Omni AI Assistant

Meet Your Omni AI Assistant

Conversational AI Chat to Quickly Uncover Data Risk 

Security teams face a constant flood of alerts, many of which lack clear context or prioritization. An unnoticed misconfiguration today can become a full blown breach tomorrow. What if your analysts could leverage a natural language AI assistant to query risk, rapidly locate exposures, and focus efforts on the highest impact threats?

The Challenge of Context and Speed

Most security tools generate alerts without explaining why a finding matters or what to do next. Teams spend hours digging through logs, spreadsheets, and siloed dashboards just to answer basic questions: Which datasets are exposed? Who can access them? How urgent is the risk? By the time an analyst identifies a critical exposure, threat actors may already be exploiting it.

Introducing Omni AI

Omni AI is the chatbot interface built on Cyera’s data security platform that lets security teams ask natural language questions about live risk metrics and get instant, prioritized answers. It combines real-time data indexing with LLMs to deliver:

• Instant risk summaries: Ask “Which exposed data poses the highest risk right now?” and receive a ranked list with exposure details and risk factors. Natural language queries remove barriers to insights. Analysts skip manual triage and go straight to the most critical findings.
• Drill down with follow ups: Query “Show me the top five misconfigured cloud buckets by data sensitivity. You can even ask broader questions like: “What are my best opportunities to reduce risk with the least effort?” No more writing custom search queries or constructing complex filters.
• Actionable context: Each response includes links to the underlying risk findings in Cyera, so you can take remediation steps without switching tools. And because Cyera indexes data risk across environments, you have a single point of contact in Omni AI for all your insights.

How It Works in Practice

Let’s say a SOC detects unusual access patterns in a file repository. Rather than manually correlating logs and asset inventories, an analyst can open Omni AI and type a question:

“Which datastores containing regulated customer data have public permissions now?”

Within seconds Omni AI returns a list of exposures, highlights the risk score for each datastore, and shows the last modification date for permissions. You can also ask the assistant for detailed reports about critical items such as data retention.

Omni AI is in private beta today. Interested in learning more? Reach out to your Cyera representative. 

‍

M365 Remediation

Microsoft 365 Remediation Enhancements

Visibility Isn’t Enough: Cyera Now Delivers Built-In Remediation for Microsoft 365 Data Risks

In cybersecurity, visibility has long been the goal. Knowing where your sensitive data lives, who has access to it, and how it’s used is critical. But visibility without the power to act can leave security teams stuck, watching risk pile up with no scalable way to resolve it.

Cyera changes this, delivering data security actionability with native remediation of public and organization-wide sharing in Microsoft 365.

Risk Hides in Plain Sight in Microsoft 365

Microsoft 365 makes file sharing fast and easy. In just a few clicks, users can select “Anyone with the link” or “People in your organization” to share files broadly across teams, departments, or even externally.

But that ease introduces risk. For example:

• A hiring manager uploads salary data to SharePoint and shares it with “People in your organization,” exposing sensitive HR files company-wide.
• A finance lead sends a spreadsheet to external auditors using “Anyone with the link,” then forgets to revoke access after the project ends.
• A marketing deck with customer contact information is stored in a public Sharepoint folder.

In each case, sensitive data is exposed without clear intent, and security teams often don’t even know it’s happening. But just seeing the risk is not enough. 

Revoke Public Access Instantly, Not Just Alert On It

Cyera enables security teams to take direct, in-platform remediation actions on Microsoft 365 files shared publicly via “Anyone with the link.” Instead of just alerting, Cyera gives you control to clean up sensitive exposures at scale.

Key capabilities include the ability to:

• Identify public sharing links across SharePoint, OneDrive, and Teams
• Automatically detect exposures using AI-native classification and policy enforcement
• See owner, sensitivity, sharing scope, and whether it’s direct or indirect access
• Revoke public access with a single click, or in bulk
• Maintain a complete audit trail of all remediation actions

For example, a financial analyst shares a sensitive forecast spreadsheet with external partners but forgets to disable access. In this scenario, Cyera helps by:

• Flagging the file as both publicly shared and containing sensitive financial data
• Surfacing complete file context automatically
• Enabling one-click revocation of public access
• Logging the action for reporting and compliance

Restrict Organization-Wide Access Without Disrupting Business

Cyera also addresses risks where Microsoft 365 files or folders are shared with the entire organization, exposing sensitive data more broadly than intended. Security teams can reduce access without interrupting legitimate workflows.

Key capabilities include the ability to:

• Detect org-wide sharing across SharePoint, OneDrive, and Teams
• Classify sensitive content and identify inherited sharing configurations
• Reveal file or folder structure, access paths, and sensitivity levels
• Revoke access selectively or in bulk while preserving access for authorized users
• Track and report all changes with full audit logs

For example, an HR folder is shared with the entire company, exposing employee salary data. Here, Cyera can quickly:

• Flag the folder based on default policies for sensitive data
• Show inherited access and identifies who can see the content
• Enable access to be restricted to only the HR team
• Ensure all actions are logged for audit and compliance

Why This Matters: The Shift From Awareness to Resolution

Most security tools do one thing well: surface problems. But the reality is, surface-level visibility without integrated remediation is no longer enough.

Here’s why:

• The volume of data is too large to manage via manual investigation and ticketing alone.
• Attackers exploit access misconfigurations quickly and at scale.
• Auditors demand proof not just of awareness but of active control.

By embedding remediation into the same platform that identifies the issue, Cyera helps teams close the loop faster and with greater confidence. Just review, act, and move on.

Actionability Is the New Security Imperative

Modern data security isn’t just about detection. It’s about resolution. And resolution requires more than exporting reports or opening tickets. It requires the ability to intervene directly and securely, in real time.

Cyera’s vision is to make every data risk immediately actionable, across cloud, SaaS, and on-prem environments. Because when you secure the data and fix the exposure, that’s when security truly works.

Try It Now

Microsoft 365 remediation is available today to all Cyera customers using SharePoint, OneDrive, or Teams.

If you're ready to go beyond visibility and take real action on your data risks, get in touch to see Cyera in action. Visibility helps you see the problem. Actionability helps you solve it. 

With Cyera, you get both.

‍

Age-Based Context

Age-Based Data Context and Controls

Automatically Identify and Enforce Controls Based on Data Subject Ages

Data protection laws are getting sharper about one thing: context matters. Especially when it comes to age. Whether it’s obtaining parental consent or applying data minimization for underage users, knowing if a data subject is a child, teen, or adult is no longer optional. Cyera now gives security and privacy teams that context. Automatically. 

Adding Age to the Privacy Equation

Until now, most organizations have data about their customers’ birthdates, but turning that into regulatory action requires manual effort or external logic. Cyera’s new Age Group Data Context closes that gap. It categorizes individuals into four distinct groups based on context: Children (under 13), Young Teens (13-15), Older Teens (16-17), or Adults (18 and above). This unlocks precise classification and governance decisions that align with legal obligations.

Age Group joins Cyera’s existing Data Context capabilities, which already include Data Subject Roles (such as employee, provider, or customer) and Data Subject Residency (which identifies the jurisdiction that applies to a record). Together, these provide a more complete picture of privacy risk, one that aligns with modern regulatory frameworks across geographies.

From PI to SPI: Elevating Sensitivity Based on Age

Let’s say your team scans customer databases and discovers a column of birthdates. Historically, Cyera would label that column as Personal Information (PI). Now, if the system determines that some of those records belong to individuals under 13, that classification can automatically be elevated to Sensitive Personal Information (SPI), which have distinct privacy requirements.

This small shift has big implications:

• HIPAA, PHIPA, PIPEDA: All emphasize special protections around minors’ health information. Identifying a data subject’s age supports proper handling and access controls.
• GLBA: Requires safeguarding consumer financial data, with heightened sensitivity for minors in certain contexts (e.g., student loan data).
• LGPD: Requires specific consent mechanisms for processing children's data under 12.

One Use Case, Many Risks Avoided

Different security and consent policies apply to customers depending on age, and those rules can’t be enforced if you can’t reliably categorize the records. With Age Group context, you can now detect when minors are in a dataset, elevate risk classification, and initiate controls like encryption, access restrictions, or even policy-based deletion. 

Automating Regulatory Precision

Regulations are nuanced, and so is data. The burden on security and privacy teams isn’t just to protect information, but to apply the right protections based on who the data belongs to. Age Group Data Context enables:

• Automated classification upgrades when a birthdate indicates a minor
• Compliance triggers tied to age-specific policies
• More accurate reporting for audits or Data Protection Impact Assessments (DPIAs)
• Support for proactive risk reduction and breach impact analysis

The Future is Context-Aware Data Security

As privacy regulations evolve, compliance will depend less on static labels and more on dynamic context. Cyera is committed to building toward that future. Data Subject Age Group Context is another step in helping organizations shift from blanket controls to targeted, meaningful protections based on who the data actually describes.

Want to see how it works? Request a demo to explore how Cyera can help you automate age-based controls and reduce regulatory risk.

‍

New Languages

Portuguese and Spanish Classification Support

First English and French, Now Classification and Context for Portuguese and Spanish

Language matters in data security. Identifiers like CPF in Brazil or CURP in Mexico, when stored in documents or databases, are critical for compliance with local privacy laws. Yet many security tools struggle to accurately classify data in languages other than English.

Cyera eliminates that gap. With this release, our platform now understands and classifies sensitive data written in Portuguese and Spanish. Whether it’s an email attachment containing a Spanish national ID, or an HR database field with Brazilian health numbers, Cyera sees it, understands it, and classifies it accurately.

Learned, Granular, Multi-Level Classification

Cyera doesn’t just translate data. It learns from it. Our multilingual classification captures the nuances of how information is written, structured, and regulated across Spanish and Portuguese environments, without requiring manual setup.

To do this, Cyera applies a multi-level classification model:

• Element-level: Detects fields like names, credentials, or government IDs in native languages, recognizing patterns specific to Spanish and Portuguese formats.
• Object-level: Assesses entire files or records based on aggregate sensitivity and context, from tax forms to health records.
• Metadata and contextual classification: Identifies whether data relates to an employee, customer, minor, or other data subject type and applies the right compliance signals.

Cyera also learns new classifications automatically, adapting to how your organization names and structures data. No regex. No tagging. No rules. The result is classification that’s accurate, region-aware, and ready out of the box. Less configuration. More context. And support that grows with your data.

Built for Global Scale

This update is part of our mandate to support global operations. We’ve built the underlying model expansion to ensure consistent multilingual classification across your entire data estate. That means you can:

• Run uniform policies across multinational operations, no matter where the data lives or how it’s written
• Support GRC programs with greater regional alignment, ensuring that sensitive data is discovered and governed under the right jurisdictional rules
• Scale operationally by removing the need for region-specific regex tuning or policy rewriting

For global enterprises, this translates to faster onboarding in new markets, lower risk of non-compliance, and reduced security overhead.

Real-World Benefits

Let’s say your organization is headquartered in the US, but recently acquired a media company in Mexico. That company stores user-generated content, customer emails, and billing records in Spanish across a legacy file share and a cloud database. Within hours of deploying Cyera, you can:

• Automatically classify data in Spanish
• Flag data stored in the wrong region or exposed to over-permissive access
• Apply appropriate local data protection policies, without building custom rule sets

Now multiply that across multiple teams, languages, and business units. This is how multilingual classification accelerates security, compliance, and governance at scale.

One Platform, Global Coverage

Spanish and Portuguese join Cyera’s growing list of supported languages, including recent additions like French. And this is just the beginning. We’re committed to helping global enterprises discover and protect sensitive data in the language it was created. 

So, if you’re expanding into Latin America, navigating cross-border compliance, or working to unify data protection worldwide, Cyera now makes it easier to do so with confidence.

Ready to see multilingual classification in action? Request a demo and discover how Cyera helps you secure the data wherever it lives, in any language.

‍

Integrations Marketplace

All-New Integrations Marketplace

Seamlessly Connect, Automate, and Strengthen Your Entire Security Ecosystem

To make integration effortless, Cyera is introducing centralized integration management, your one-stop hub for seamless security connectivity. Instead of jumping between platforms, you now have a single place to onboard integrations, manage access, and troubleshoot issues. 

This powerful functionality ensures that organizations can easily connect Cyera to their existing security stack while maintaining full control over their integrations.

Why This Matters

Managing integrations shouldn’t be a burden; it should be a catalyst for stronger security. 

With centralized integration management, you can:

• Empower Teams: Equip data owners with the ability to handle security issues directly through their preferred ticketing and communication tools.
• Supercharge Security Intelligence: Feed Cyera’s accurate and actionable classifications into your SIEM, data catalog, and other critical systems.
• Enhance Your Security Posture: Utilize bi-directional integrations to strengthen your entire security ecosystem.
• Simplify Management: Use centralized integration management to onboard and monitor integrations with ease.

Security today isn’t just about having the right tools, it’s about making them work together seamlessly. Cyera’s powerful integrations enhance your security ecosystem, ensuring that data protection is proactive, intelligent, and efficient.

The Power of Cyera’s Integrations

A well-integrated security stack isn’t just convenient, it’s transformative. Cyera’s integrations provide three core advantages that elevate security operations:

• Democratizing Remediation: By integrating with ticketing systems, email notifications, and instant messaging apps, Cyera enables data owners to remediate security issues independently. This reduces bottlenecks, accelerates resolution times, and distributes responsibility across the organization.

"The moment a risk is detected is the moment to act. Our partnership with Cyera turns that moment into action by automatically triggering Tines workflows from real-time risk signals so teams can resolve issues faster, shrink their exposure window, and strengthen their security posture.” 
‍
Charlie Ardagh, Head of Partnerships, Tines

Tines’ workflow and AI orchestration platform enables businesses to operate more effectively, mitigate risk, reduce tech debt, and do the work that matters most.  

• Enhancing Security Intelligence:  Cyera’s industry-leading data classification engine enriches your data catalog, SIEM, and other security systems with the most precise and insightful classifications available. This ensures that security teams have the best possible intelligence to act on.

• ‍Bi-Directional Integration for a Stronger Ecosystem: Cyera doesn’t just integrate, it enhances. By synchronizing with identity management, backup software, and other security tools, our bi-directional integrations improve automation, visibility, and control across your environment, ensuring a more cohesive security strategy.

“This best-in-class integration between Cohesity and Cyera enables organizations to strengthen their data security posture by combining intelligent data discovery with robust, secure data management. Together, we close the gap between visibility and control over sensitive data so customers can proactively reduce risk, simplify compliance, and recover with confidence. It’s a powerful step forward in helping organizations build a comprehensive and effective cyber resilience strategy.”

Sheetal Venkatesh, VP of Product Management, Cohesity. 

Trusted by over 13,600 enterprises, including 85 of the Fortune 100, Cohesity helps organizations strengthen their resilience and protect data across on-prem, cloud, and edge environments while unlocking insights through generative AI.

Building a Security Ecosystem That Works for You

Your security stack should work for you, not the other way around. By removing friction from the integration process, we’re making it easier for teams to build and maintain a strong, adaptable security posture.

This is just the beginning. At Cyera, we’re committed to helping security teams move faster, stay ahead of threats, and work with confidence. Because when security operations run smoothly, businesses can thrive.

Ready to Take Control of Your Integrations?

If you’re ready to explore how Cyera can streamline your security operations, get a live demo today.

‍

Innovations Summary

Innovation Highlights at a Glance

AI Guardian: Secure AI Usage, End-to-End

Cyera’s AI Guardian is the industry’s first complete solution for AI Security, bringing AI Security Posture Management (AI-SPM) and AI Runtime Protection together. 

• AI-SPM inventories every AI system (copilots, LLMs, internal tools) and maps their data exposure, lineage, and risk.
• AI Runtime Protection enforces policies in real time to prevent prompt injection, data leakage, and misuse before it happens.

Omni AI: Conversational Access to Data Risk

Omni AI is Cyera’s new conversational interface that lets analysts ask natural language questions like:

• “Which exposed data poses the highest risk right now?”
• “What data retention risks am I facing today?”

Built on real-time risk indexing and LLMs, Omni AI instantly surfaces prioritized answers with links to remediation workflows. No complex queries required.

Built-In Remediation for Microsoft 365 Risks

Cyera supports native remediation of public and org-wide file sharing in Microsoft 365. With this capability, security teams can:

• See who’s shared what across SharePoint, OneDrive, and Teams
• Automatically flag overexposed files using AI-native classification
• Revoke public or internal access at scale, directly in the platform
• Maintain a complete audit trail for compliance and reporting

Age-Based Data Context for Classification Precision

Cyera supports Age Group Data Context, automatically categorizing data subjects as Children, Teens, or Adults and applying:

• Elevated sensitivity classifications (e.g. from PI to SPI)
• Targeted compliance triggers
• More accurate audit and impact analysis

Multilingual Classification: Now with Spanish and Portuguese

Cyera supports data classification in Spanish and Portuguese, joining English and French. With multi-level, context-aware models, Cyera identifies:

• Structured and unstructured sensitive elements (e.g. CPF, CURP)
• Regulatory attributes tied to residency and role
• Data subject context for accurate governance decisions

All-New Integration Marketplace

Cyera’s new Integration Marketplace makes it easy to plug into your existing security stack. The new interface removes friction from the integration setup process, enabling:

• Centralized onboarding and integration management
• Bi-directional data flows to enrich your security ecosystem

The Future of Data Security Is Intelligent and Actionable

These updates reflect our commitment to helping security teams do more than detect risk. They can act on it in real time, across cloud, SaaS, and on-prem environments.

Want to see these capabilities in action? Request a demo to explore how Cyera helps you protect your data, secure your AI usage, and streamline your security operations with confidence.

‍