Press Release

Theom integrates with Microsoft Sentinel to secure Data Clouds, and joins the Microsoft Intelligent Security Association (MISA)

Theom’s integration with Microsoft Sentinel and its participation in MISA will allow Sentinel customers to seamlessly apply Theom’s unique AI threat intelligence while using their trusted environment for alerting and remediation. The integration will be showcased by both companies at the upcoming RSA Conference and is already available at the Microsoft Commercial Marketplace. Furthermore, Theom is recognized as a Microsoft Security Excellence Awards finalist for Security Software Innovator.

SAN JOSE – April 11, 2023
News Summary

Theom, a Data Cloud and Lakehouse Security and Governance CompanyTM, today announced its seamless integration with Microsoft Sentinel. As a result, Theom has joined the Microsoft Intelligent Security Association (MISA) to better defend against a world of increasing cyber threats.


“After gaining M12, Microsoft’s venture fund, as an investor last year, we are now excited to strengthen our collaboration by integrating with Microsoft Sentinel and joining MISA,” said Navindra Yadav, Co-founder and CEO of Theom. “Using our integration, our customers can now collect valuable threat intelligence content from inside data clouds and data lakehouses, detect attacks using the MITRE ATT&CK framework, and respond to incidents rapidly with built-in orchestration and automation. We are delighted to be recognized as a finalist for the Microsoft Security Excellence Awards in the Security Software Innovator category.”


“Microsoft Sentinel brings together data, intelligent analytics, and workflows to unify and accelerate threat detection and response across the enterprise. With Microsoft Sentinel Content hub, customers gain access to robust built-in and partner-published content and solutions with the click of a button. We are excited to work with partners like Theom, to develop valuable and innovative content for our users.” said Rob Lefferts, Corporate Vice President, Modern Protection and SOC, Microsoft.


Theom integration with Microsoft Sentinel helps customers secure data clouds and data lakehouses with:

Insider Threat Detection and Prevention

  • Detect phished users and service accounts abusing data and suspend their access.
  • Quarantine data at risk and apply egress controls to stop data leaks.
  • Prioritize data security incidents based on the $ value of data at risk.

Data Access Governance

  • Detect over-provisioned access to data and shrink-wrap permissions continuously.
  • Gain visibility into who has access to what data; what they do with the data.
  • Ensure detection and prevention controls follow the data through the data pipeline.

Ransomware detection, prevention, recovery

  • Detect attacker progression and malicious access to data, using an AI-based detection engine.
  • Track and capture attacker’s encryption keys, even after attackers cover their tracks.

The Theom integration with Microsoft Sentinel is now available at the Microsoft Commercial Marketplace:

At the upcoming RSA Conference in SanFrancisco, both companies will showcase the integration:

  • Microsoft booth #6044N
  • Theom booth #227

Book a meeting to speak with experts from Theom at the RSA Conference, or request a demo now.

About Theom

Theom has created the first data security and governance product to detect active attacks on data clouds and data lakehouses and prevent breaches. Security teams can protect the business through data access governance, insider threat detection and prevention, ransomware recovery, and cyber insurance rightsizing. Theom is the only security product that runs inside data clouds and data lakehouses (no agents, no proxies); from this unique vantage point, security teams gain visibility into sensitive data, can identify and prioritize risks to data, remove over-provisioned access, detect active threats to data using an AI early-warning system, and stop attackers in their tracks. Theom is the first to extend the MITRE ATT&CK framework to data clouds and data lakehouses; security teams can detect attacks early and resolve incidents rapidly using their existing security.


Theom, headquartered in San Jose, CA, is led by an experienced team of security innovators who are backed by leading investors and venture firms including M12, Microsoft's Venture Fund, Ridge Ventures, and more. For more information, visit and follow @TheomSecurity on Twitter and Theom on LinkedIn.


Media Contact:

Nagraj Seshadri

[email protected]