For decades, the exercise of commercial enterprise continuity/Disaster Catastrophe Recovery (BC/DR) within the IT industry has been relegated to the domain area of data center infrastructure, be it physical or virtual.
In the current scenario, developing traits have transformed IT Service Continuity technology solutions and operational practices to extend into the sector of hybrid and public clouds.
Business organizations around the world preserve to expand and increase their adoption of virtualization, with the adoption of hybrid cloud.
Hybrid Cloud has been adopted for mission-critical and commercially business-essential vital applications running via third-party hosted SaaS and PaaS platforms began many years ago. The thought-provoking queries we pose in this blog is – Does data (as a primitive) warrant less safeguarding or protection by businesses when dwelling on SaaS or PaaS?
The solutions to that query may be as severe as the number of SaaS and PaaS providers that exist nowadays. A few might argue that well-established (X-aaS) providers like Salesforce, Google (Apps) and Microsoft (Office 365), are not only accountable underneath agreement to safeguard tenant data, but additionally have the approach by using which to assure that safeguarding.
Others may debate that when analyzing the high-quality print of any given provider’s Service Level Agreement (SLA) and/or terms and conditions, there is hardly a clause underneath data assurance or data protection that guarantees the integrity and recoverability of customer data.
Also, providing a kind of indemnification in case that data were inadvertently misplaced/lost or corrupted.
Somewhere wedged among these views lie the virtues of protection, security, and compliance.
To permit us to examine the task in more detail, first, we should make an important distinction. Issues & problems of data availability and access that happen – brought on due to service outages for example — and administrators have to be sufficiently savvy enough to select those providers that have the best quality track record as well as the best performance feature set for their companies or teams, be it around offline caching, latency or other parameters.
Data integrity is another issue altogether. In a 2013 report from The Aberdeen Group, it was claimed that 32% of corporations had the skilled lack of critical data in the cloud, 64% of which become due to user mistakes. Precisely, data integrity looks like a much larger problem, one that is potentially tougher-to-resolve.
3 Examples: Salesforce, Office365 and Google Apps
In a recent research report, Gartner has gone on record to suggest third-party backup tools as good complements to the main companies’ own solutions – potentially solving both the data availability and data integrity challenges.
For Salesforce, for example, Gartner highlights additional capability as an added advantage of usage third-party solutions that specializes in automation with ease.
However, this does not deal with a vital finding: Salesforce claims a four-hour restoration recovery point objective (RPO) and a 12-hour restoration recovery time objective (RTO), which may be too long for few.
For Office365, more managed, control and flexibility are touted as the key function. Gartner claims that Microsoft’s approach is a chunk inconsistent among the special offering & services, and so manage, control and flexibility – particularly, the ability to set same comparable policies & rules for distinctive services – become useful capabilities while offered through external solutions.
4 Tips & Guidelines
Here are some fine practices while using third-party BC/DR solutions for PaaS/SaaS:
1) Ease and speed of use: Data is business-critical, and as such, it needs to be safely stored at only some clicks away. Otherwise, it may cost to business.
2) Customization: Whether you’re choosing on backup frequency, a pre-determined archival platform, or which users in your enterprise require secured online data. Customization is at the core of third-party solutions.
3) Safety and security: Trusting a provider along with your data implies looking & searching out for providers that have ISO certifications, like HIPAA-compliant, and preferably also follow regional or national data privacy laws into consideration while supplying youa options of backup locations.
4) Cost-effectiveness: The bulk of on-premises BC/DR costs lie in hardware and its preservation & maintenance. In case your external provider uses huge-scale public cloud resources for backup, it implies that for once, you can depend on a pay-as-you-go, utility model and introduce significant enormous inefficiencies.
Precisely, our suggestion is to keep away complacency concerning to safeguarding and preservation of your commercial business-critical data, whether you use PaaS/SaaS or not. It’s not common-sense risk hedging – with an added layer of tangible technical benefits – to use a mix of models, likes on-premises and the general public cloud, and PaaS/SaaS backup and third-party backup.
At the end of the day, your commercial business enterprise needs to keep running no matter the composition of your IT landscape panorama and application services.