InterMat Job Board

Does a VPN protect against viruses?

Posted about 2 weeks ago by maxdantont

Business continuity plan: The best solution against cyber attacks

Since no company is 100% cybersecurity-proof, implementing a business continuity plan is the most effective Having a robust Backup and Disaster Recovery strategy is the most effective antidote to not putting the company's future at risk.

Making reliable backups that ensure access to corporate data, applications and web services is a lifesaver for protecting the day-to-day operations of the business from the many cyber-threats that currently beset them. If a cyber attack is suffered, it is possible to 'turn on' again and recover the affected resources.

In addition, article 32 of the RGPD as well as other standards such as ISO 27001 calls for the use of technological solutions to "restore the availability and access to personal data quickly in the event of a physical or technical incident". Again Cybersecurity and GDPR are connected.

How to define a correct Backup and Disaster Recovery strategy

The first step in implementing a business continuity plan is to define it. The definition of the Backup and Disaster Recovery strategy of each company has to be adjusted to its needs, taking into account fundamental issues such as:

- Retention needs: long, medium, short term (according to the type of business and the regulations that govern it).
- RTO (Recovery Time Objective): Assumable period of time to put the infrastructure back into operation after a shutdown or loss of information.
- RPO (Recovery Point Objective): How much data can be lost without affecting the optimal functioning of the business.
- IT environment and role of each: physical, virtualized, in the cloud.
- Type of existing malware protection.
- Consider backing up not only data, but entire machines and business applications.
- Convenience of making intelligent backups (only copies of the modified items) to optimize storage and expenses in space and communication lines.

What is the best Backup and Disaster Recovery solution?

The answers to the questions above will give the key to decide which backup and contingency plan is the best. The wide variety of both physical and cloud storage resource types available today has opened up a lot of scope when deploying Backup and Disaster Recovery infrastructures.

If you are looking for advice on how to implement an efficient and cost-effective business continuity plan, a highly recommended approach would be this: deploying a physical structure on-site, setting up a vpn (visit to choose the best VPN service) an external one (either physical on-premise or in the Cloud) and a third one (Cloud or physical) with storage resources based on a different technology than the one used in the other two locations, ensuring the recovery of information as a Disaster Recovery strategy. For example, if you have previously made a backup to disk, here you can choose tapes.

What are BaaS and DRaaS services?

The tasks of backup, replication, recovery, and restoration are essential for the 'health' of the company, but they do not involve processes that provide differentiated value to companies and are very tedious to do. That's why investing in internal resources to carry them out is not very attractive. This has the danger that they are not taken as seriously as they should be.

That's why more and more organizations are betting on both hiring external services from specialists to manage these operations and taking these processes to the Cloud. This is what Backup as a Service (BaaS) and Disaster Recovery as a Service (DRaaS) offer.

BaaS and DRaaS services free companies from these tasks in a simple and cost-effective way. But the challenge is to choose a reliable provider, capable of safeguarding the entire IT environment (physical, virtual, cloud) and comply with the provisions of the GDPR or other standards such as ISO 27001, COBIT, PCI ...

In order to ensure an effective cloud-based continuity plan, it is not enough to hire IaaS (Infrastructure as a Service) storage. It is necessary to apply a service layer of an expert in managed ICT services that monitors such important issues as integration with the rest of the corporate resources, bandwidth quality, routing and firewall functionalities, anti-malware and encryption measures offered, guaranteeing agile access to applications if the backup center is launched, etc.