I’ve spent the past few months coming up to speed on Ransomware prevention and protection. I’ve learned that it’s not a matter of if but when your organization wil experience a ransomware event. So, with the unavoidable truth, how does that impact your disaster recovery practice?
In the CTO Advisor Hybrid Infrastructure, we re-evaluated our data protection strategy. First, we use licenses from Veeam; thanks for the not-for-resale licenses. Next, we decided to vault our backups to immutable S3 buckets. However, this isn’t enough.
We have a disaster recovery (DR) process that we’ve tested a couple of times per year. However, it’s not enough to test once or twice a year in the face of ever-evolving ransomware. Remember, it’s not a question of if you’ll get hit by ransomware; it’s a question of when.
The threat I tested for 6-months ago has morphed, and what I may get infected by will almost certainly be different.
What are you doing to mature your DR practice to a ransomware practice?