Be it technical failure or natural disaster, backup and disaster recovery solutions are an absolute necessity for organizations of all sizes in 2017. Putting time and effort into finding, implementing and maintaining a good backup and recovery solution should be top priority. When increasingly inevitable data turmoil disrupts your business’ continuity, how will it fare? Don’t thwart your hard work by skimping on one of these 6 backup and disaster recovery best practices.
Plan for a Ransomware Attack
“Sure, companies have security systems in place to catch and prevent the latest ransomware from causing havoc. However, what happens when ransomware is ahead of your own security controls? Disaster Recovery solutions won’t prevent ransomware…but DR solutions will quickly sidestep ransomware after its caused such a ruckus.”
Organizations that protect data with solutions like disaster recovery, and proper backup of critical systems, can be brought back online and continue to operate, regardless of some unknown individuals and their attempts to hijack your wallet and hold your data hostage.
Protecting Virtual Machines From Within the Same Hypervisor.
In a recent blog post, Quorum CEO, John Newsom, likens the hypervisor/VM security relationship to a boat….That’s sinking. Newsom explains,
“There’s a fundamental reason an ocean liner’s lifeboats are on the outside of the ship. The fundamental flaw with most of these products (Virtual Machines) is that they are deployed into and execute from the exact same hypervisor environment that the VMs to protect run within. So if there is a problem with the platform that the protected systems run within, then the recovery system within that same platform will be affected as well.”
Newsome goes on to mention that, not only is this a self sabotaging approach to backup, it’s also an expensive one, citing costs for additional VM licenses and infrastructure to host the DRaaS product local system components.
Provide Adequate Training and Testing
Don’t get lazy: Test systems on a regular basis. IT departments may not test enough and some may never test their solution at all! The testing process is invaluable, and as times change, automation and self-testing tools are alleviating IT from this duty, allowing them to focus on other high-impact initiatives.
Organized training and testing of DR procedures is a necessity. IT will be more confident in their skills when a IT crisis arises. Third-party disaster recovery specialists can help with setting up training (including online options) and running tests so that your plan and your people will be ready to go when needed. Many BDR vendors include this training with purchase of their services.
Keep Cost Expectations In Check
The reality of most organization’s relationship with backup and disaster recovery, is that most scenarios have gaps, and flaws. Most enterprises despite the tools, capabilities, cool features and strategy, have imperfect backup architectures, because the cost of maintaining a 24/7 backup solutions is not realistic, either financially, or what-have-you. Keep your expectations of the way that your solutions integrate, and the cost of operation pragmatic. You may have to settle with a slower backup procedure, and you may be able to backup your data less often than what is not anxiety producing. Whatever your limitations may be, recognize them and work with your vendor, many of which who are ripe with willingness and know-how about solutions that will send you on your way to a more protected, efficient business.
Basically, hardware, or device agnosticism is the capacity for new hardware or software to work with various systems without requiring any special adaptations. Great BDR products are designed to be compatible across most common systems, and once a new product is running, it should be seamless and easy to manage by teams trained on the traditional hardware.
Communication Plan When Systems are Down
In the event of a natural disaster or just plan disaster– if your company’s internet and phones are down, this could throw a major stick-in-the-spokes of business continuity. You must discuss with all employees a plan of action to keep in touch with customers, employees who are off-site, and most importantly, a way to contact emergency services if outgoing lines of communication shut down. A log of the personal cell phone or landline numbers of key personnel may come in handy, keeping in mind confidentiality requests of course, along with personal email addresses of employees, especially if the business runs it’s own email servers. Develop a plan and make these resources available to those who need them in a predetermined location.