Over 60,000 people descended on Las Vegas this last week for AWS re:Invent, one of the flagship global tech conferences of the year.

The event attracts Cloud Architects, Developers and Engineers, Data and AI professionals, IT leaders, including a fair share of CISOs and their teams.

While there are no official numbers, there is a guess that almost 10,000 of the attendees are security professionals

There are an estimated over 100 security vendors exhibiting at AWS re:Invent 2025, out of a total of over 1,000 exhibitors as well as over 80 security focused sessions during the conference.

With an estimated 16% of attendees in the security space and 10% of exhibitors showing their security forward wares, its fair to say that Security, Identity and Compliance are important themes on the minds of the attendees.

The Concept of Unified Cyber Resilience

The term unified cyber resilience refers to an organization’s ability to seamlessly integrate all aspects of cybersecurity, business continuity, and risk management into a single, cohesive strategy. The core idea is to move beyond a fragmented approach with siloed tools and teams to a holistic, automated platform that ensures the business can anticipate, withstand, recover from, and adapt to adverse cyber events with minimal disruption.

Cyber resilience acknowledges that breaches are inevitable (the “airbags and seatbelt” for when a crash occurs). Teams working from this mindset and playbook believe a unified strategy ensures that all components, including people, processes, and technology, work in concert rather than in isolated silos.  Their ultimate goal is to maintain critical operations during a cyberattack or system failure.  This same playbook puts forth the concept of unification.  Relying on disparate, disconnected point solutions creates security blind spots and slows down defense efforts.  Instead, the go forward thinking lies in increased visibility, automated response and simplified management.

Cyber Resilience & Commvault

As a business strategy we see Commvault presenting itself as the “gold standard” in unified cyber resilience, offering a comprehensive platform that leverages AI to protect and recover data across complex, multi-cloud environments with the release of Commvault Cloud Unity Platform which unifies separate operations across cloud, SaaS, on-premises, and hybrid environments. This aims to eliminate the complexity of using multiple siloed point products for security and recovery.

The platform’s focus is on unifying data protection, governance, and intelligence, particularly with advanced AI-driven and identity resilience features like expanded Active Directory threat detection and rapid recovery, is seen as crucial for enterprise needs in the face of escalating cyber threats. This could drive customer wins, especially in compliance-focused sectors.

Cloud Unity’s approach is to bridge on-premises appliances with a cloud control plane and unify the control plane aligns with the broader trend of enterprises seeking vendor consolidation to reduce operational complexity and streamline their data management and security.

The platform’s ability to handle on-prem, cloud, and SaaS workloads, coupled with simplified interfaces and a competitive total cost of risk (TCR), makes it particularly appealing to midmarket organizations that often lack extensive resources

Commvault’s Strategy

Organizations that store their data across various locations (on-premises data centers, edge locations, and multiple cloud providers like AWS and Microsoft Azure) are a key target, as the platform unifies protection and recovery across these disparate environments.

A few other gems in Commvault’s strategy include:

Rapid & Clean Cyber Recovery Cleanroom Recovery: A secure, isolated cloud-based environment (on AWS) for testing recovery plans and restoring clean data free from malware.

• Synthetic Recovery: An AI-powered solution to surgically remove compromised data during the recovery process.
• Cloud Rewind: Automating the cloud application rebuild process and restoring clean data efficiently.
• Identity Resilience: Commvault is expanding its identity resilience portfolio to detect, audit, and roll back threats in identity systems like Active Directory (AD), a critical component often overlooked in traditional data protection.

Commvault’s Road to Identity Resilience

The Identity Resilience market, often referred to as the broader digital identity solutions market, was valued at approximately $36.19 billion in 2024 and is projected to reach $153.63 billion by 2032 according to Fortune Business Insights. Those numbers represent more that 4x growth in 8 years.  Clearly, this market is starting at the early adoption end of its maturity curve.

Digital identity resilience is the ability of an identity and access management (IAM) system to withstand, respond to, and recover from cyberattacks, ensuring continuity of operations and protecting identity data. It is a key component of overall digital resilience, focusing on the proactive and reactive measures needed to make identity information harder to steal, abuse, and easier to recover if compromised.

The primary drivers of the Identity Resilience market stem from the proliferation of digital identities (especially non-human AI agents: think Agentic AI) the escalation of identity-driven cyberattacks, the shift from pure prevention to rapid recovery strategies, and the increasing complexity of modern IT environments.

A Deloitte analysis categorizes organizations into different stages of digital identity adoption, from “unaddressed” to “realized”. It suggests that while many are in the “planned” or “in progress” stages, only a few traditional companies are closing in on the “realized” (fully resilient) stage, whereas most new “digital first” companies operate with these systems from inception.

Commvault has lots of CISO conversation starters in its back pocket but Identity Resilience is not a conversation every organization is having—yet.  Identity resilience acts as a critical enabler of overall business resilience by ensuring the security and availability of the systems that control who can access what and I believe it’s a conversation that CISOs and CIOs want to have with a vendor that can raise their hand on the topic like Commvault can.