{"id":10609,"date":"2026-06-02T10:37:14","date_gmt":"2026-06-02T08:37:14","guid":{"rendered":"https:\/\/partnernews.sophos.com\/en-us\/?p=10609"},"modified":"2026-06-02T10:37:32","modified_gmt":"2026-06-02T08:37:32","slug":"sophos-backup-and-recovery-for-m365-powered-by-rubrik-is-now-available","status":"publish","type":"post","link":"https:\/\/partnernews.sophos.com\/en-us\/2026\/06\/products\/sophos-backup-and-recovery-for-m365-powered-by-rubrik-is-now-available\/","title":{"rendered":"Sophos Backup and Recovery for M365 \u2013 powered by Rubrik is now available"},"content":{"rendered":"<p><strong>A new revenue opportunity for partners serving Microsoft 365 customers.<\/strong><\/p>\n<p>Microsoft 365 is now the dominant productivity platform in the SMB and mid-market segments that most Sophos partners serve. But as M365 adoption has grown, so has a critical and underserved gap: customers assume Microsoft is backing up their data. It isn&#8217;t \u2014 not in any meaningful recovery sense. Native retention tools exist for compliance and legal hold, not for fast restoration after ransomware, accidental deletion, or admin error.<\/p>\n<p>That gap represents a real risk for your customers, and a real opportunity for your practice.<\/p>\n<p>60% of organizations have suffered an M365 account takeover. Ransomware attacks targeting Microsoft 365 have increased 275% year-on-year. Yet most customers running M365 have no dedicated backup in place and no plan for recovering at scale. This is exactly the kind of risk conversation partners are well positioned to have \u2014 and now you have a Sophos-integrated solution to back it up.<\/p>\n<h3>What Sophos Backup and Recovery for M365 Delivers<\/h3>\n<p>Sophos Backup and Recovery for M365 provides air-gapped, immutable backup and fast, granular recovery across all four major M365 workloads:<\/p>\n<ul>\n<li><strong>Exchange Online<\/strong> \u2014 mailboxes, shared mailboxes, folders, and inactive user data<\/li>\n<li><strong>OneDrive<\/strong> \u2014 files, folders, personal sites, and inactive user data<\/li>\n<li><strong>SharePoint<\/strong> \u2014 sites, lists, document libraries, and subsites<\/li>\n<li><strong>Microsoft Teams<\/strong> \u2014 channel posts, chats, files, and Teams structure<\/li>\n<\/ul>\n<p>A single per-user license covers software and storage at a fixed, predictable cost \u2014 no infrastructure to size or manage.<\/p>\n<h3>Withstand Cyber Attack<\/h3>\n<p>Backups are isolated from the customer&#8217;s M365 tenant with a true air gap. WORM-locked immutability, SLA Retention Lock, and Intelligent Data Lock ensure that backup data cannot be destroyed or altered by an attacker \u2014 even one operating with full admin credentials. MFA enforcement, Bring Your Own Key (BYOK) encryption, and Retention Lock with Quorum Authorization close the gaps that make M365 admin credential compromise so damaging during a ransomware event.<\/p>\n<h3>Recover Rapidly<\/h3>\n<p>Recovery speed is where dedicated backup earns its value in an incident. Manually restoring 1,000 users without a dedicated solution takes an average of 14 days. Sophos Backup and Recovery for M365 cuts that to hours. Technicians can search by keyword, email subject, event title, author, or date range; browse point-in-time snapshots; and restore anything from a single email to an entire OneDrive or SharePoint site \u2014 granularly or in bulk.<\/p>\n<h3>Automate Protection and Manage Risk<\/h3>\n<p>Policy-driven automation automatically discovers new users, sites, and Teams as they&#8217;re created and applies backup policies without manual scheduling.<\/p>\n<h3>Why This Matters for Your Partner Practice<\/h3>\n<ol>\n<li><strong>Address a gap that already exists in most of your customer accounts<\/strong><br \/>\nYour existing M365 customers almost certainly do not have dedicated backup in place. This is a warm conversation, not a cold sell \u2014 particularly with customers in regulated industries, those who have experienced a security incident, or those who ask about ransomware recovery. The 60% account takeover statistic and the 14-day manual restore figure are powerful conversation starters.<\/li>\n<li><strong>Simple to position, simple to license<\/strong><br \/>\nSophos Backup and Recovery for M365 is a standalone product available to new and existing customers. It doesn&#8217;t require any other Sophos product to purchase or deploy. One per-user license covers all four workloads with software and storage included, making it easy to quote and easy for customers to understand.It&#8217;s an especially strong fit for:<\/p>\n<ul>\n<li>M365 customers with 200 or more seats<\/li>\n<li>Organizations in regulated industries with long-term retention requirements beyond Microsoft&#8217;s defaults<\/li>\n<li>IT teams with limited staff who need automated protection without operational overhead<\/li>\n<li>Customers who have experienced ransomware or account compromise and now recognize the gap<\/li>\n<\/ul>\n<\/li>\n<li><strong>Integrated with Sophos Central \u2014 no additional console to run<\/strong><br \/>\nFor partners already managing customers in Sophos Central, Sophos Backup and Recovery for M365 sits inside the same console alongside endpoint, email, firewall, and MDR management. Role-based access control and delegated admin permissions are already built in, supporting how MSP teams are typically structured. For partners running Sophos MDR for customers, the integration is particularly powerful. When an MDR analyst identifies a ransomware event or account compromise, the recovery workflow is a natural next step within the same platform \u2014 not a context switch to a separate system.<\/li>\n<li><strong>Strengthen your cybersecurity story beyond the perimeter<\/strong><br \/>\nCustomers and insurers increasingly expect cyber resilience to include recovery capability, not just prevention. Backup is now a standard question in cyber insurance applications. Offering Sophos M365 Backup and Recovery alongside your existing Sophos security stack gives you a more complete answer to the resilience conversation \u2014 and a stronger QBR narrative around the operational maturity you&#8217;re delivering.<\/li>\n<li><strong>Multi-geo storage supports data residency requirements<\/strong><br \/>\nData can be stored in the region of the customer&#8217;s choice, supporting data residency requirements for customers operating in the EU, UK, APAC, and other regions where local data sovereignty matters.<\/li>\n<\/ol>\n<h3>Use Cases to Lead With<\/h3>\n<p>The most effective customer conversations start with a specific scenario rather than a capability list. These six use cases are the ones most likely to resonate:<\/p>\n<ul>\n<li><strong>Ransomware Recovery<\/strong> \u2014 Restore clean versions of SharePoint, OneDrive, and mailbox data after an attack. Air-gapped, immutable backups remain intact even when admin credentials are compromised.<\/li>\n<li><strong>Accidental Deletion<\/strong> \u2014 Recover emails, files, and Teams content instantly, even after Microsoft&#8217;s recycle bin has expired. One of the most frequent IT support requests \u2014 and one of the easiest wins to demonstrate.<\/li>\n<li><strong>Malicious Insider Damage<\/strong> \u2014 Immutable backups remain recoverable regardless of what an insider deletes, corrupts, or tampers with in retention policies.<\/li>\n<li><strong>Compliance and Long-Term Retention<\/strong> \u2014 Meet GDPR, HIPAA, and other requirements with retention policies extending well beyond Microsoft&#8217;s defaults. Particularly relevant for healthcare, finance, and legal sector customers.<\/li>\n<li><strong>Large-Scale Corruption and Misconfiguration<\/strong> \u2014 Restore entire sites or mailboxes to a known-good state after sync failures, mass overwrites, or administrative errors.<\/li>\n<li><strong>Business Continuity and Disaster Recovery<\/strong> \u2014 Zone-redundant storage and automated failover keep M365 data accessible and recoverable during data centre failures and regional outages.<\/li>\n<\/ul>\n<h3>Availability and Next Steps<\/h3>\n<p>Sophos Backup and Recovery for M365 is available now. It is a standalone product \u2014 no other Sophos product is required, though it works best as part of a broader Sophos portfolio.<\/p>\n<p>Visit the Sophos Partner Portal for <a style=\"font-size: 1em;\" href=\"https:\/\/portal.sophos.com\/#custom\/module?ctm=Pricing%20and\" target=\"_blank\" rel=\"noopener\"><strong>pricing<\/strong><\/a>, <strong style=\"font-size: 1em;\"><a href=\"https:\/\/portal.sophos.com\/#search?text=&amp;ismetro=true&amp;nametab=backup%20and%20recovery%20for%20m365&amp;tabid=153\" target=\"_blank\" rel=\"noopener\">sales resources <\/a><\/strong>and <a style=\"font-size: 1em;\" href=\"https:\/\/portal.sophos.com\/#search?text=&amp;ismetro=true&amp;nametab=backup%20and%20recovery%20for%20m365&amp;tabid=153\" target=\"_blank\" rel=\"noopener\"><strong>product collateral<\/strong><\/a><span style=\"font-size: 1em;\"> \u2014 available now for use in customer conversations.<\/span><\/p>\n<p>If you need assistance, please reach your Sophos channel account manager or local distributor to discuss positioning in your current customer accounts.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Sophos Backup and Recovery for M365 is now generally available \u2014 giving partners a purpose-built, fully integrated backup and recovery solution to add to their M365 portfolio.<\/p>\n","protected":false},"author":11,"featured_media":10615,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[2],"tags":[365,367],"coauthors":[64],"class_list":["post-10609","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-products","tag-microsoft","tag-sophos-backup-and-recovery-for-m365"],"jetpack_featured_media_url":"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2026\/05\/featured-image-sophos-backup-and-recovery-for-m365-1600x960px.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts\/10609","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/comments?post=10609"}],"version-history":[{"count":5,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts\/10609\/revisions"}],"predecessor-version":[{"id":10624,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts\/10609\/revisions\/10624"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/media\/10615"}],"wp:attachment":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/media?parent=10609"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/categories?post=10609"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/tags?post=10609"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/coauthors?post=10609"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}