Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Data recovery is key

Issue 6 2022 Information Security, Infrastructure

By Kate Mollett, regional director, Commvault Africa.


Kate Mollett.

Ransomware attacks are on the rise, and the payout for a successful breach is growing as data becomes more valuable. The potential of falling victim to ransomware is escalating, and such an occurrence could end up costing billions in downtime and recovery.

As we become more firmly entrenched in the cloud, it is imperative to evaluate not only the measures that have been put into place to prevent an attack, but also the tools and protocols that have been implemented to help a business recover. Given the current economic climate and threat landscape, a successful ransomware attack is a strong possibility. Is your backup strategy in a position to help or hinder the recovery?

A proactive strategy for data

One thing that has become clear is that businesses need a strategy, and a less reactive approach toward data management has numerous benefits. As a result, many organisations are embracing the NIST cybersecurity framework, which offers a more proactive approach to data protection. This framework offers a solid basis for data management with data protection at its heart.

The steps outlined by NIST are as follows: identify cybersecurity risks; protect data and systems from attack; detect suspicious activities and anomalies; respond to limit the negative impact; and recover data, systems and operations. Having the right systems and processes in place remains essential, but when all else fails, recovering from attacks is the last line of defence and can mitigate the widespread impact of breaches.

Future-proofing data backup and recovery

Data Management as a Service (DMaaS) offers a simple, cloud-native solution to help organisations not only protect their data and comply with data privacy legislation, but also recover data in the event of a ransomware attack. This includes various elements that have become intrinsic in a cloud world. Firstly, DMaaS delivers backup for a variety of SaaS applications, whether on-premises, in the cloud or a mixture. It also offers hybrid cloud data protection, including virtual machines, containers and both structured and unstructured data, as well as cloud storage data protection.

Another element to look for, especially in today’s remote working environment, is endpoint data protection for laptops and desktops, as well as Active Directory backup. These aspects will cover all of the elements of the modern, data-driven workforce. The benefit of DMaaS, aside from predictable cost and ease of management, is that it unifies data protection and management into a single solution with a single pane-of-glass view to simplify complexity and control costs. This helps to eliminate siloes, manage risk and safeguard data availability.

Comprehensive ransomware protection

A comprehensive approach to data protection is critical in mitigating the risk of ransomware attacks, and is made up of three pillars: protect, detect and recover. Protection insulates data from successful breaches, including ransomware, as well as internal malicious attacks. Detection works to spot and identify attacks and includes tools to mitigate the impact of a breach. Recovery is the fast and reliable restoration of data and services to minimise downtime and business impact.

A multi-layered security approach with Backup-as-a-Service (BaaS) solutions can incorporate data from a variety of sources, including on-premises workloads, cloud workloads, endpoints and SaaS applications. This data can then be encrypted both in flight and at rest, and isolated via a virtual air gap, with early threat detection such as anomaly detection, trends and insights, user behaviours and honeypots.

An important element to consider is the inclusion of next-generation best practices such as multi-factor authentication, zero-trust access controls and immutable data backups. It is also imperative to have robust controls to prevent threats and also ensure data is recoverable from both deletion and attack. The goal is to achieve a hardened, enterprise-grade security model to limit data loss and deliver rapid recovery.

Back to business

In a data-driven world, knowledge is power. With advanced security tools and insights, organisations are empowered to evaluate and continuously improve their backup security posture, gain real-time visibility into critical events, anomalous activities and vulnerabilities, and make informed decisions to meet and exceed recovery time and recovery point objectives. The goal of any data protection solution should be to quickly recover to the point before the breach or compromise, to get back to business as usual quickly and mitigate the risk and cost of downtime.




Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
There is a SaaS for everything, but at what cost, especially to SMEs?
Editor's Choice Information Security Security Services & Risk Management
Relying on SaaS platforms presents significant cybersecurity risks as the number of providers in your landscape increases, expanding your attack surface. It is important to assess the strength of the SaaS providers in your chain.

Read more...
Addressing today’s mining challenges: cyber risks beyond IT
Editor's Choice Information Security Mining (Industry)
Despite the mining industry’s operational technology systems being vulnerable to cyberattacks, many decision-makers still see these threats as purely an IT issue, even though a breach could potentially disrupt mining operations.

Read more...
Get proactive with cybersecurity
Information Security
The ability to respond effectively to a cybersecurity breach is critical, but the missing piece of the puzzle is a thorough, proactive evaluation to ascertain weaknesses and identify any hidden threats.

Read more...
How to effectively share household devices
Smart Home Automation Information Security
Sharing electronic devices within a household is unavoidable. South African teens spend over eight hours per day online, making device sharing among family members commonplace. Fortunately, there are methods to guarantee safe usage for everyone.

Read more...
Western Digital reveals new solutions
Products & Solutions News & Events Infrastructure
Western Digital unveiled new solutions and technology demonstrations at the Future of Memory and Storage Conference 2024. The innovations cater to diverse market segments, from hyperscale cloud to automotive and consumer storage.

Read more...
How to securely manage your digital footprint
Information Security Training & Education
Managing your online presence is critical to safeguarding your privacy and security. It is imperative to take a proactive approach, including using robust cybersecurity best practices.

Read more...
The state of code security in 2024
Information Security
The 2024 State of Code Security survey reveals that organisations have continued to shore up application security defences over the last year, according to OpenText Premier Partner iOCO Application Management.

Read more...
What is the level of safety and integrity of the software supply chain?
Information Security IoT & Automation
Organisations are embracing AppSec practices and focusing on their software security posture. However, they highlight that insufficient funding and security resources, plus a disconnect between developers and security teams, remain major roadblocks.

Read more...
Cybercriminals target financial service providers to get at sensitive client data
Information Security
According to Ryan van de Coolwijk, Product Head for cyber at iTOO Special Risks, hackers target financial service providers because they hold sensitive client information that unauthorised individuals could use for fraudulent activities.

Read more...











SMART Security Business Directory



Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.