MINFY

Exploring Disaster Recovery On Cloud

 

The traditional way of doing the off-site backup and disaster recovery

To understand the new challenges that cloud backup and disaster recovery present, you need to remember some of the traditional ways of handling backup and disaster recovery. It’s straightforward to remember that organizations with a great backup and disaster recovery plan back up critical workloads frequently and perform recovery drills to ensure that their disaster recovery preparations provide the needed coverage. One aspect of a great backup and disaster recovery plan is moving backed up data off-site to a secure location. Another aspect is having a separate disaster recovery site.

Moving backed up data off-site protects organizations from those events where the location that houses the original workloads itself is lost, such as when a critical site is destroyed by a natural disaster such as a flood during a hurricane. While the original on-premises site may be written off, the data, at a separate location, is still safe.

Traditionally in scenarios where a critical site is lost, a special site, known as a disaster recovery site, is brought online. This disaster recovery site has the necessary infrastructure to host the critical workloads from the original site. The backed-up data at the secure site is recovered to the infrastructure at the disaster recovery site and the organization retains access to critical workloads while the original site is restored to operation.

Getting backed up data off-site has, in the past, involved organizing a courier to come to your site and physically move the backup media from your site to the safe storage facility where the backup media is kept. This process has often been cumbersome and bureaucratically intense. Backup administrators also dreaded the occasional call from reception informing them that the courier hadn’t arrived to do the pickup of the most recent set of backup media before the organization’s doors were shut for the night. For many small businesses, they might simply skip the costs associated with such a service and the IT Pro might simply throw company backup tapes in the trunk of their car and store them at home – talk about compliance, regulatory and security issues!

 

The cloud as a way of moving recovery data off-site

Several factors have come together to make moving data off-site using tapes less common than it used to be. These factors include:

- The cost of shifting data massive amounts of data over the Internet has declined dramatically.

- Broadband speeds continue to increase, making it feasible to shift gigabytes of data every day between an on-premises location and the cloud.

-  The cost of storing vast quantities of data in the cloud has declined dramatically.

- The functionally limitless storage capacity of the cloud, as long as organizations are willing to pay for it.

- The concept of a hybrid cloud is building a lot of momentum. By keeping copies of data on-site as well as in the cloud, you can cover the majority of recoveries on-site from recent copies.

Rather than have to deal with the complexities of ensuring that physical media is physically transported from the organizational location to a secure off-site facility that specializes in storing backup media, recovery data can be transmitted over the organization’s Internet connection and stored in the cloud.

That said, now is the time to lock down remote security measures and take advantage of implementing robust tools. Here are some best practices to reduce remote work security risks, while ensuring the safety of employees, their devices, and corporate systems.

 

Cloud security worries

It’s been said that change can resolve existing challenges only to introduce brand new ones. Shifting from a process where backup media is driven to a special off-site facility by a courier to having data moved off-site to the cloud is the sort of change that brings new challenges and concerns.

Perhaps one of the biggest concerns that organizations have about cloud backup and disaster recovery is that of security. A well-executed data protection plan backs up all the information that an organization might need to restore to ensure that the business can continue operating.

A challenge around backups is that if a nefarious third party gets access to that backed up data, they have access to all of the critical information generated by and owned by the organization. If you look at the advertising around off-site storage of backup data, much of it uses the imagery of something of a cross between a nuclear bunker and a bank vault. This imagery is used because it is designed to reassure organizations that there backed up data is in a secure location, somewhat similar to a bank vault.

With a traditional off-site backup provider, access to the backup tapes involves multiple layers of security. Someone can’t just turn up at the off-site backup provider and request tapes. They must provide appropriate physical identification before someone hands over the tapes. An additional layer of security allows organizations to encrypt the backup media so that the data stored there cannot be accessed by anyone except for a person who has access to the decryption key. Encrypting backed up data means that even if someone at the backup storage facility did manage to steal backup media, they couldn’t recover the data stored on the tape.

The cloud doesn’t provide those obvious external signifiers of security. The imagery around the cloud involves long rows of server racks, rather than Fort Knox style security. Organizations that are unsure of the process might be concerned that someone may be intercepting protected data as it is transmitted from the organizational site to the cloud. These organizations might also be concerned that data stored in the cloud may be accessible to hackers. You will be hard-pressed to find a media article written that “Cloud X successfully protects customer Y’s data,” yet almost every week brings a story of data stored in the cloud being improperly protected and exposed. People naturally worry that by shifting their backed up data to the cloud rather than to a secure storage facility similarly means that their data may end up exposed by malicious third parties should they make a configuration error or other slip.

The reality is that, if properly implemented, protected data can be protected by encryption before it even leaves the company’s network, it can also be encrypted in transit to the cloud and at rest while it is stored in the cloud. The key to ensuring that protected data remains secure is to partner with an organization that is experienced in securely shifting and storing protected data in the cloud.

 

Managing and monitoring cloud backup and disaster recovery

Organizations are often looking for solutions that integrate into their existing products or work in a similar manner. A solution that requires administrators to immerse themselves in a new way of thinking, as well as a completely new toolset, isn’t going to work as well as a solution that is an extension of an organization’s current administrative tools.

The best cloud backup and disaster recovery tools use a “single pane of glass” to allow backup administrators to perform all important tasks related to backing up data from on-premises servers to the cloud, as well as recovering data when necessary, either from an on-premises store of protected data or from data stored in the cloud.

Recovery scenarios are often stressful, and the last thing that backup administrators need when they are under duress is a user interface that is so complex that it makes the startup procedure for a nuclear submarine appear intuitive.

Also, while under duress, it is critical that the IT administrator has confidence that the backup is recoverable. Many automated backup and replica testing technologies exist to frequently test backups within an isolated environment to ensure their recoverability in those difficult, pressure-packed situations.

An effective cloud backup and disaster recovery solution require meaningful monitoring and telemetry functionality. It will include a console that provides information about the success and or failure of backup jobs, detailed data about the amount of data backed up, the amount of data that can be backed up, retention information, and everything else an organization might need to know about their cloud-based backup and disaster recovery solution.

A great solution will tell you about problems as they occur and should provide actionable guidance towards remediation. It’s important to be able to see the state of the solution at any point in time, rather than having to wait for a report to be emailed through informing you whether or not a backup or recovery operation has completed successfully. This provides an IT administrator with the ability to be proactive in correcting issues, as opposed to reacting in more common pressure situations.

 

Taking advantage of Disaster-Recovery-as-a-Service

Disaster-Recovery-As-a-Service (DRaaS) provides an alternative to the traditional model of recovering data to an on-premises server in the case of failure. With DRaaS, when a hardware failure occurs that requires a server be recovered entirely, instead of performing the recovery to another server on-premises, you can instead recover that workload so that it runs in the cloud. DRaaS is ideal for small businesses looking to get their data off-site without the cost and complexity of building or maintaining a second infrastructure, but it is also becoming more appealing to larger enterprises because it is becoming increasingly cost-effective.

DRaaS allows customers to failover an on-premises infrastructure to a multi-tenant cloud environment. Organizations pay for the infrastructure in the cloud as they use it, as opposed to the cost of maintaining a remote DR site with hardware that replicates the on-premises infrastructure.

In the past, DRaaS was relatively simple for small organizations with a simple, straightforward network infrastructure – because it was relatively easy to recreate a simple infrastructure in a cloud environment. Today, DRaaS capabilities have evolved to the point where complicated network infrastructures can be replicated in the cloud. Rather than having one or two important servers failover to the cloud, all of the workloads in a large site can run in the cloud until normal operations are established. While this makes DRaaS more effective for more complicated infrastructures, it passes some of the networking complexities and challenges to the service providers. Some solutions in the market today are designed to remove these networking challenges, eliminating networking complexity from the service provider.

The advantage of DRaaS over a traditional DR site is that organizations don’t need to maintain a remote DR facility, with all the expenses associated with maintaining idle server hardware that needs to closely mirror the on-premises environment just in case something terrible happens and the original on-premises site can no longer be used.

Instead with DRaaS, the DR site infrastructure and workloads exist in the cloud only as long as they need to. The moment they are not needed, they can be removed and no longer will incur charges.

Another advantage of DRaaS over a traditional DR site is that as all the protected workload data is already stored in the cloud, restoring the virtual DR site is a far faster operation than recovering a traditional physical DR site would be. All that needs to happen is for the protected data to be moved from one part of the cloud provider’s infrastructure to another, instead of having to be transmitted down an Internet connection to the physical DR site.

Minfy Technologies is well versed in setting up Disaster Recovery Sites on AWS leveraging RTO and RPO recovery strategies to ensure full resiliency of our client’s assets.

Contact us to explore more of the cloud!

Reach out to us for unclouded answers

Minfy has a repository of learnings, competencies and an enviable track record of meeting customer needs. Advice and service, solutions and responsiveness work in tandem. Begin your cloud journey, accelerate it or optimise your cloud assets. Experience business impact.

This website stores cookie on your computer. These cookies are used to collect information about how you interact with our website and allow us to remember you. We use this information in order to improve and customize your browsing experience and for analytics and metrics about our visitors both on this website and other media. To find out more about the cookies we use, see our Privacy Policy. If you decline, your information won’t be tracked when you visit this website. A single cookie will be used in your browser to remember your preference not to be tracked.