Let’s work together
Want to discuss potential opportunities? Pick the most suitable way to contact us.
Book a call+370 5 2 780 400
info@ba.lt
Disruptions of IT systems are inevitable in any company. Factors such as human error, natural disasters, or malicious cyberattacks disrupt companies’ applications that can result in financial losses, reputation damage, or compliance breach.
IDC states the annual cost of systems downtime in 2020 was between $1.25B to $2.5B. Such figures indicate how important it is to have disaster recovery as an essential component of companies’ business continuity strategy. Understanding the core concepts of disaster recovery, the differences between disaster recovery and backup, and best practices for planning and implementing disaster recovery can help to void huge losses.
This blog will explore the benefits of using the public cloud as a recovery site for on-premises and cloud-based applications. In many cases, cloud-based recovery both lowers’ costs and improves resilience.
Before developing a disaster recovery plan, it is important to understand what disaster recovery is and how it differs from backup.
Some companies mistake backup for disaster recovery. But as they may discover after a severe IT disruption, having a copy of data (backup) does not mean you can keep your business running (disaster recovery).
Backup is the process of making a copy (or multiple copies) of data to protect against data loss. Backup solutions keep extra copies of data locally and in a remote location, or both, so that it can be recovered if any data is lost or corrupted. Local backups can be restored more quickly than remote backups, but remote backups have the advantage of increased resilience due to geographic redundancy.
Disaster recovery refers to the plan and processes for quickly re-establishing access to applications, data, and IT resources when a disruption occurs. This plan might involve switching over to a redundant set of servers and storage systems (also known as failing over to a secondary or recovery site) until your source servers are functional again. Switching to a secondary site is not done automatically but is instead performed based on an explicit decision of an authorised team.
The main differences between backup and disaster recovery:
Backup and disaster recovery are not mutually exclusive. Business requirements may ask companies to apply a combination of these solutions, depending on the resilience requirements of each application. In terms of similarities, both backup and disaster recovery solutions maintain copies of historical data that may have changed in the source server. Often they are referred to as “snapshots” or “point-in-time copies”.
The main difference is that backup solutions can restore a previous version of data if it was incorrectly modified or corrupted on the source server. Meanwhile, disaster recovery solutions can launch copies of applications in an operational state.
In addition, disaster recovery solutions can launch applications from a previous point in time, which allows a successful recovery if the latest state of the source application prevents normal operation. Database corruption, ransomware data encryption, and incorrect software configuration also fall under this category.
When deciding whether an application needs a backup or disaster recovery solution, consider the following differences:
A well-planned and implemented disaster recovery solution helps mitigate the damage that a disaster can cause, including direct and indirect financial loss.
The impact of direct financial loss is most relevant for applications that are critical for revenue-generating processes. For example, free external-facing IT systems that are provided to your customer. It also can be an internal IT system that processes data required for revenue generation. Indirect financial loss may occur when your customers abandon your solution and switch to a competing product because your service was unavailable for a significant amount of time.
Reputational damage. Downtime caused by unexpected IT disruptions significantly harms your company’s reputation. You can lose trusted provider status in a day while gaining it back might require years. A recovery plan that can be executed efficiently in the short term can help avoid irreversible damage to a company’s corporate image.
Failure to abide by compliance standards. Compliance standards, including System and Organization Controls (SOC), Payment Card Industry (PCI), and the Health Insurance Portability and Accountability Act (HIPAA), require a disaster recovery solution to be in place. Some even add specific requirements, such as minimal physical distance between the source adsnd recovery sites.
It is important to remember that a disaster’s negative impact is not equivalent to all applications. Conducting a business impact analysis for each application will help to quantify the business impact of a disruption to each application. When calculating the business impact, consider application downtime’s consequences on internal and external customers. Furthermore, consider the cost, reputation, and compliance effects on your business.
The business impact of a disaster may differ depending on time. For example, a disruption of the payment system will likely have a higher impact during the seasonal retail peak period (October-December).
When planning a disaster recovery solution, you should define each application’s recovery time objective (RTO) and recovery point objective (RPO). Use the risk analysis to help you determine how quickly the application needs to be made available (RTO) and how much data loss can be tolerated (RPO).
The recovery time objective (RTO) describes the longest acceptable period from the IT application disruption until the service is up and running again. This metric is an agreed-upon time window that all stakeholders determine as acceptable.
The recovery point objective (RPO) describes the biggest acceptable gap between the original data and the recovered data of the application. This metric is an agreed-upon amount of lost data (measured in time units) that all stakeholders determine as acceptable.
RTO and RPO for each application depend on many factors, such as business impact, service level agreements (SLAs), and external compliance requirements.
Here is an example of common standards:
Use the risk analysis and recovery objectives to choose the most appropriate disaster recovery strategy and tools for each application. Your goal should be meeting RTO and RPO requirements while reducing TCO.
You can use public cloud services to implement disaster recovery solutions meeting your company’s needs. The disaster recovery industry has changed dramatically in recent years due to the advancement of cloud technology. In addition, cloud providers such as AWS and Microsoft Azure allow paying only for the used resources, which is not the case with most on-premises data centres.
The public cloud’s elasticity, scalability, and security benefits make it an ideal disaster recovery site. It reduces disaster recovery TCO by decreasing both capital expenditures (CapEx) and ongoing IT operating expenses (OpEx).
Advantages of choosing public cloud for disaster recovery:
Regarding business continuity, all applications should not be treated equally. Conducting a proper business impact analysis for each application will help determine whether it requires a lower-cost backup solution focusing on data retention or a more robust disaster recovery solution that can minimise downtime during an IT disruption.
After determining which applications require disaster recovery and their objectives, consider leveraging public cloud services to establish a recovery site. This will allow achieving a win-win of meeting the SLAs requirements and keeping the TCO low simultaneously.
So, if you want to consult about backup and Disaster recovery, please contact us – the Baltic Amadeus team. We take pride in being experts in the field, and we are committed to ensuring that your project runs smoothly and efficiently.
Want to discuss potential opportunities? Pick the most suitable way to contact us.
Book a call+370 5 2 780 400
info@ba.lt
Master your Progress OpenEdge logging skills by learning about the LOG-MANAGER system handle and the OpenEdge Logger Framework.
Find out what Microsoft Fabric is and how you can harness the potential of this platform to make strategic business decisions.
Read the blog post about Drupal, its different versions, and its benefits. Learn why Drupal migration is essential for your website.