What you need to know about disaster recovery in the Cloud
- 09 July, 2012 13:32
While we all know how important it is to have a good disaster recovery (DR) plan in place, many of us still need to get our heads around this. Traditional disaster recovery planning can generally be expensive to implement and this has been a key inhibitor to many CIOs putting DR planning on their organisation’s must-do list.
In most organisations, 80 per cent of DR IT budgets are spent on protecting only 20 per cent of the systems. The result is that 80 per cent of the systems are either sub-optimally or not protected at all.
The advent of Cloud computing technologies, however, is fast changing the way organisations look at disaster recovery. Disaster recovery in the Cloud (a more common term for this is Recovery-as-a-Service or RaaS) can offer organisations an efficient and more cost-effective option while enabling them to have not just their data, but also the entire workload (operating system, middleware and applications) associated with that data backed up in the Cloud and restored quickly in the event of a disaster.
Gartner anticipates that by 2014, 30 per cent of midsize companies will have adopted RaaS to support IT operations recovery, up from a little more than 1 per cent today. Gartner adds that RaaS addresses well-recognised ‘pain points’ in IT disaster recovery management, including the need for frequent recovery-readiness testing and the cost of dedicated recovery floor space and facilities.
What you should know about RaaS
Before delving into RaaS, you should familiarise yourself with two important DR concepts which are:
- Recovery Point Objective (RPO) which is a measure of maximum acceptable data loss in terms of time (minutes, hours, days) and ;
- Recovery Time Objective (RTO) which refers to the target maximum allowable time to recover from an outage.
RPO and RTO relate to downtime and availability in the event of a disaster. For example, an RPO of four hours means that the most recent backup has to be no more than four hours old at the time of an outage; while an RTO of four hours means systems have to be backed up and operational no more than four hours after an outage.
There are typically three types of RaaS models:
- Do-It-Yourself (DIY): Where organisations configure and manage their own DR solution using public Cloud resources
- DR-as-a-Service (DRaaS): Pre-packaged pay-as-you-go recovery services to the Cloud with specified recovery point objectives (RPO)& recovery time objectives (RTO) SLAs
- Cloud-to-Cloud DR: Failover from one Cloud environment to another.
The more common models adopted by most organisations are the DIY or DRaaS models.
One of the fundamentals of RaaS is workload protection. This includes backing up entire server workloads (the contents of a server, including the operating system, applications and data), recovering workloads during an outage, and restoring workloads to their original production locations after the outage. When sourcing for a RaaS provider, always ensure that workload protection is an area that you address. It’s also important that the RaaS provider supports both physical and virtual workloads.
Advantages of RaaS
There are numerous benefits to implementing your DR plan in the Cloud. Fixed per-gigabyte cost and off-site Cloud based storage are just some of the advantages. You can also scale up or down your demand based on your needs. Best of all, the service provider handles the hardware maintenance and backups allowing you to channel your resources to other areas of the organisation. There are cost benefits. With more and more pressure for IT to stretch budgets to accommodate the organisation’s business needs, a RaaS solution could help alleviate the cost issue compared to a traditional DR plan.
Having a RaaS solution means that you will be running your whole DR plan in the Cloud, from replication right through to recovery. In the event of a disaster, you’ll also be able to have a ‘live’ restore back to the repaired data centre.
What you should look out for in a RaaS solution
There are five key things that you should consider before engaging your RaaS provider:
- Reliability: Ensure that your solution is backed by a contractual service level agreement with your service provider. This agreement should include a guarantee on the recovery time and needs to have clear financial clauses.
- Availability of the Cloud: What steps need to be taken if the cloud goes down?
- Security in the Cloud: How secure is your RaaS solution?
- Service assurance: Ensure that areas such as Quality of Service are clearly defined.
- Management: How responsive and efficient is your service provider in managing your RaaS solution?
Australia’s RaaS market is still in its infancy, but this will change with the rollout of the National Broadband Network (NBN). With recent earthquake disasters such as those in Christchurch and Japan, and the bushfires in Australia and the US, knowing that your organisation is able to continue operating with as little downtime as possible in the event of a disaster is key for any organisation.
Steve Stavridis is NetIQ’s disaster recovery expert for Asia-Pacific
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
Ruggedized scientific calculator perfect for extreme math
How to Switch From iPhone 5S to BlackBerry Z30 (and Why)
How to Switch From iPhone 5S to BlackBerry Z30 (and Why)
CIOs to Become In-House Brokers -- and That's a Good Thing
The future of computing
PCI DSS v3.0 - Compliance Guide
Due to a lack of consumer confidence and a subsequent drop in sales, all entities that handle credit cardholder information are being challenged to adopt more effective data protection measures. This paper provides information on available tools to help validate compliance with the latest version of the Payment Card Industry Data Security Standard (PCI DSS).
Guide: 10 Essential Questions about Mobile App Containers
Mobile apps are the ultimate corporate dilemma: They turbo-charge productivity—but also bring significant security risks. How do you navigate the challenge and emerge with both? With a comprehensive approach to security.Learn the key areas to focus on as you build a mobile app security strategy.
Research firm Radicati names Google Apps for Business the leader in cloud business email
Radicati Market Quadrants illustrate how individual vendors fit within a specific technology market, classifying them as niche specialists, up-and-coming pioneers, today’s top players or yesterday’s leaders. In August 2013, Radicati used this model t o assess and compare 14 cloud business email providers, including Google.