IDC research shows that the top 5 concerns among medium-sized businesses are:



Similar documents
W H I T E P A P E R T h e R O I o f C o n s o l i d a t i n g B a c k u p a n d A r c h i v e D a t a

W H I T E P A P E R R e a l i z i n g t h e B e n e f i t s o f Deduplication in a Backup and Restore System

Symantec Enterprise Vault for Lotus Domino

THE CASE FOR ACTIVE DATA ARCHIVING

What You Should Know About Cloud- Based Data Backup

W H I T E P A P E R T h e I m p a c t o f A u t o S u p p o r t: Leveraging Advanced Remote and Automated Support

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Data Sheet: Archiving Symantec Enterprise Vault Store, Manage, and Discover Critical Business Information

Enterprise Workloads on the IBM X6 Portfolio: Driving Business Advantages

Using Converged Infrastructure to Enable Rapid, Cost-Effective Private Cloud Deployments

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Worldwide Security and Vulnerability Management Forecast and 2008 Vendor Shares

W H I T E P A P E R E X E C U T I V E S U M M AR Y S I T U AT I O N O V E R V I E W. Sponsored by: EMC Corporation. Laura DuBois May 2010

Allstate Getting Much More from Its IT Services with ServiceNow Cloud-Based IT Service Management Solution

W H I T E P A P E R T h e C r i t i c a l N e e d t o P r o t e c t M a i n f r a m e B u s i n e s s - C r i t i c a l A p p l i c a t i o n s

Reduce your data storage footprint and tame the information explosion

WHITE PAPER PPAPER. Symantec Backup Exec Quick Recovery & Off-Host Backup Solutions. for Microsoft Exchange Server 2003 & Microsoft SQL Server

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Call: Disaster Recovery/Business Continuity (DR/BC) Services From VirtuousIT

WHITE PAPER Comparing the Total Cost of Ownership of SME On- Premises Business Management Applications and SAP Business By Design

MAXIMUM PROTECTION, MINIMUM DOWNTIME

itg CloudBase is a suite of fully managed Hybrid & Private Cloud Services ready to support your business onwards and upwards into the future.

This white paper describes the three reasons why backup is a strategic element of your IT plan and why it is critical to your business that you plan

Global Headquarters: 5 Speen Street Framingham, MA USA P F

The Growth Opportunity for SMB Cloud and Hybrid Business Continuity

Archiving, Retrieval and Analysis The Key Issues

W H I T E P A P E R. M a k e Y o u r B a c k u p s a C o m p e t i t i v e A d v a n t a g e f o r G r e a t e r P r o d u c t i v i t y

Nine Steps to Smart Security for Small Businesses

Is online backup right for your business? Eight reasons to consider protecting your data with a hybrid backup solution

Archiving, Backup, and Recovery for Complete the Promise of Virtualization

Mobile Devices and Malicious Code Attack Prevention

Security and Availability: A Holistic Solution to a Critical Problem

Data Backup Options for SME s

Combining Onsite and Cloud Backup

Methods and Practices: Cloud in Retail

The Copy Data Problem: An Order of Magnitude Analysis

We take care of backup and recovery so you can take care of your business. INTRODUCING: HOSTED BACKUP

Reducing Cost While Simplifying Administration: Monetizing the Benefits of SAP ASE

WHITE PAPER Making Cloud an Integral Part of Your Enterprise Storage and Data Protection Strategy

Session 11 : (additional) Cloud Computing Advantages and Disadvantages

Table of contents

CIBECS / IDG Connect DATA LOSS SURVEY. The latest statistics and trends around user data protection for business.

Don't Wait Until It's Too Late: Choose Next-Generation Backup to Protect Your Business from Disaster

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Maintaining Business Continuity with Disk-Based Backup and Recovery Solutions

WHITE PAPER THE BENEFITS OF CONTINUOUS DATA PROTECTION. SYMANTEC Backup Exec 10d Continuous Protection Server

Injazat s Managed Services Portfolio

Managing business risk

Mining for Insight: Rediscovering the Data Archive

Virtual Infrastructure Security

W H I T E P A P E R I m p a c t o f C y b e r s e c u r i t y A t t a c k s a n d N e w - A g e S e c u r i t y S t r a t e g i e s

How to Avoid the Headache of User Mailbox Quotas

Archiving for Compliance and Competitive Advantage

Data Management: Foundational Technologies for Health Insurance Exchange Success

Managing IT Security with Penetration Testing

Disaster Recovery for Small Businesses

DOBUS And SBL Cloud Services Brochure

SAFETY FIRST. Emerging Trends in IT Disaster Recovery. By Cindy LaChapelle, Principal Consultant.

The Business Case for Cloud Backup

Optimizing Information Management in the Cloud

68% Meet compliance needs with Microsoft Exchange. of companies send sensitive data via .

Solution Overview: Data Protection Archiving, Backup, and Recovery Unified Information Management for Complex Windows Environments

Data Sheet: Archiving Symantec Enterprise Vault for Microsoft Exchange Store, Manage, and Discover Critical Business Information

White Paper FASTFILE / Page 1

IT OUTSOURCING SECURITY

Perspective: Cloud Solutions and Deployment for Healthcare Payers in 2014

WHITE PAPER: ENTERPRISE SECURITY. Symantec Backup Exec Quick Recovery and Off-Host Backup Solutions

How To Understand Cloud Economics

Top 10 Reasons for Using Disk-based Online Server Backup and Recovery

Corporate Enterprise Data Protection Package

Business Case. for an. Information Security Awareness Program

Mitigating and managing cyber risk: ten issues to consider

Bringing the edge to the data center a data protection strategy for small and midsize companies with remote offices. Business white paper

COMPLIANCE BENEFITS OF SAP ARCHIVING

Virtual Disaster Recovery

WHITE PAPER Practical Information Governance: Balancing Cost, Risk, and Productivity

VERITAS Backup Exec 10 for Windows Servers AGENTS & OPTIONS MEDIA SERVER OPTIONS KEY BENEFITS AGENT AND OPTION GROUPS

W H I T E P A P E R C l i m a t e C h a n g e : C l o u d ' s I m p a c t o n I T O r g a n i z a t i o n s a n d S t a f f i n g

Which Backup Option is Best?

KEEPING PATIENT INFORMATION SAFE AND SECURE IN THE CLOUD

Transcription:

Global Headquarters: 5 Speen Street Framingham, MA 01701 USA P.508.872.8200 F.508.935.4015 www.idc.com SPECIAL STUDY Managing Risk in Medium Sized-Businesses: A Storage Software Solution Duncan Brown IN THIS SPECIAL REPORT IDC research shows that the top 5 concerns among medium-sized businesses are: Reliability and up-time. Security. Performance. Software cost. Privacy. Despite these concerns, medium-sized companies are not deploying sufficient resources to protect their data. This is mainly due to the misperception of today's technology capabilities, and a lack of understanding of the tangible cost-benefit business case that accompanies modern backup and storage software solutions. In this special report, IDC highlights the key issues for medium-sized businesses: It is vital to recognise the multiple sources of risk, and plan accordingly. The worst thing a company can do is to underestimate risk. They must identify risks, measure them, and take appropriate action. Technology available today can reduce exposure to risk, increase regulatory compliance, and lower overall IT costs. IDC Recommendations: Understand the potential impact to your business from data loss Measure the value of data, and manage it accordingly Determine the life cycle of each type of data all data is not equal Store/backup data according to its life cycle needs Define a backup process for your organisation and then use it Include laptops in your backup policy Manage the storing and use of non-business data, such as MP3s Identify and archive redundant data Understand your legal and regulatory obligations for data management Filing Information: September 2004, IDC #SR15L : Special Study

INTRODUCTION IT'S ALL ABOUT RISK What would happen if your IT didn't work? Try switching off your PC. Now try planning for the next board meeting, or retrieving last month's sales data, or completing this month's accounts, or communicating with all of your staff, or tracking your competitors, or servicing your customers. The fact is that most medium-sized organisations (100 250 employees) have made IT an integral part of their business. They reap the considerable benefits offered by IT, including improved operational efficiency, lower costs and access to a wider market. IDC research shows that 33% of organisations do not have a business continuity solution in place, citing budget constraints as the main inhibitor Unfortunately it is also true that most organisations do not apply appropriate prudence when it comes to protecting their IT investments, and their data in particular. It is a widely held perception that protecting data is expensive, in terms of technology infrastructure, skills required and time consumed. Such organisations are playing a dangerous game. In today s business environment, acceptable downtime is measured in seconds and data loss is not permissible. The cost of downtime can be as high as 34,000 per hour for medium-sized businesses, once lost revenue, lost productivity, employee costs and remedial expenses are factored in. IT now encompasses continuous availability and has to include all devices, networks, applications, people, and data to keep information online in the threat of "disasters" of all kinds. The cost of downtime can be as high as 34,000 per hour for medium-sized businesses What Are the Risks? The sources of risk to businesses are ever increasing. There will be no let-up in the ingenuity of the criminal, in the carelessness of some staff, in the impact of incoming regulation, or in the weather. The effect of a data loss on a firm increasingly impacts the profitability of that company. Data is at risk from a variety of sources: Security violations Businesses worldwide have seen wave after wave of security attacks continue to increasingly affect business productivity. Viruses and worms, denials of service and the compromise of sensitive data have led to productivity problems, customer service issues and legal liability debates. Regulatory compliance A series of changes in regulation, such as data privacy/regulation, and industry accountability, such as maintaining audit trails, are introducing strict controls on many businesses operations. Penalties for noncompliance from data loss can range from fines and lawsuits to loss of trading licenses. Fines for non-compliance of data protection legislation are typically 7,500, and can be unlimited High availability Many medium-sized businesses must be available 24 hours a day, 365 days a year with mission critical information residing throughout the organisation on various distributed sites. Data loss has a direct and immediate effect on business performance. Technology dependency and complexity The proliferation of mixed hardware and software IT solutions creates a management and administrative nightmare. Dependency on computers and networks is inevitable, but leaves firms exposed to high management overheads, system failure, and unpredictable power surges. 2004 IDC #SR15L 1

Disasters and contingent insurance Disasters do happen, whether man-made or natural, large-scale or localised. Many insurance companies now insist on (or weight premiums in favour of) rigorous data backup and recovery capability. Staff negligence Protecting data would be more straightforward if people were not involved. Unfortunately, this is rarely the case, and backup processes depending solely on people tend to be poorly implemented. Insurance companies state that 32% of data losses are caused through human error. 32% of data losses are caused through human error What Must Companies Do? It is important to understand that business continuity is a business issue and not just an IT issue. In planning business continuity, a company has to bridge the gap between business strategy and IT strategy, addressing both IT and non-it components and their interdependencies. Business continuity is not just an IT function or responsibility but must take into account business processes, facilities and people. This includes not only natural or man-made disasters or malicious viruses or other attacks, but also company strategy such as mergers and acquisitions. Such events can impact on the company infrastructure and lead to the inability to carry out normal business processes. FIGURE 1 Western Europe Business Continuity Purchasing Factors Data security Virus attack Risk of software/hardware failure Failure of internal data backups Risk of power cuts/surges Increased use of networks Risk of security breaches Fire/flood risk Insurance requirement/insurance cost saving Increased risk of human error Risk of theft Dependence on ebusiness Threat of terrorism Risk of labor strikes 0.0 0.5 1.0 1.5 2.0 2.5 3.0 3.5 4.0 (Ranking) Source: IDC, 2003 2 #SR15L 2004 IDC

Planning for business continuity is all about weighing up the business risks. The only way to do this is to conduct a business impact analysis. Business continuity is all about staying in business: if the firm does not have a plan and something happens, it could be out of business completely. The worst thing a firm can do about risk is to ignore it. Companies must respond to risk by facing up to it and take appropriate action: Conduct an audit of the environment (servers and applications) to determine the potential areas of vulnerability. Determine the potential impact to the business caused by downtime and/or data loss. Look for tangible and intangible costs. Decide the acceptable level of downtime and/or data loss. Compare the financial risk of downtime and/or data loss against the cost of appropriate protection. Technology can help in reducing exposure to business risk. A recent IDC survey showed that organisations use technology to address a variety of business risks. MANAGING RISK THROUGH TECHNOLOGY Risk Mitigation Reducing Vulnerability You can start to reduce your organisation's vulnerability to multiple sources of risk simply by backing up your data. Unfortunately, backup processes can be timeconsuming, requiring daily administration. They can be technically complex in deciding what to back up and to where. They are also perceived as requiring costly hardware, such as tape drives and complex storage architectures. Support of IT can incur a significant cost, and any technology that reduces this cost, while adding tangible benefit to the business, must be considered seriously. The Solution Modern Windows-based backup solutions are easy to implement and operate with easy-to-use wizards to navigate backup processes and options. Once they are set up, they will back up your organisation's data automatically, with minimal supervision and maintenance. Backup solutions can also incorporate automated laptop and desktop protection. These features allow for the synchronisation of desktop and laptop data when connected to the network. This means that data can be stored locally to the end-user, but protected centrally. End-users can even restore their own data, again reducing support and maintenance costs. Up to 60% of a company's data may be stored on a laptop or desktop, with no backup provision Importantly, backup solutions should not require additional hardware to be purchased. Data can be backed up to existing servers, desktops or laptops, removing the need to buy tape devices and complex storage architectures. 2004 IDC #SR15L 3

All of this technology can be implemented across multiple office sites. So if you have a network of offices, all of your company data can be backed up centrally. This reduces the need for backup capability at each site. Risk alleviation recovering from data loss Backups are like insurance you hope you'll never need them. But if the worst happens, you want remedial action to be swift and painless. Recovering servers from backup tapes, however, is often perceived as complex and time consuming, requiring skilled administrators. There will be multiple tapes containing operating systems, application software and data files, which must be restored in the correct order. Get the order wrong and you may have to start again. Meanwhile, your business suffers. The Solution Recovery from backup doesn't have to be this way. Today's sophisticated backup solutions restore systems to their prior state in a single smooth process. There is no need for a collection of tapes and multiple reboots. The single process also eliminates the scope for errors by administrators. In fact, no skilled administration is required. The whole recovery process can be conducted in an automated manner. Clearly, this approach is much faster to restore data. Added to this, reduced complexity, accurate restoration of data and easy administration all help to keep costs down. Risk Management Continuous Improvement How much of your data do you really need? IDC research shows that, for the average organisation, between 30% and 80% of stored data has no current business use. Much of the data on systems is out-of-date, duplicate or not related to business (such as file types like mp3, jpg and so on). IDC research shows that, for the average organisation, between 30% and 80% of stored data has no current business use Yet typically, 100% of this data is backed up. This means costly and wasteful use of IT infrastructure. It may also mean contravention of software licensing arrangements, data protection laws and other regulations. Exposure to viruses from files sourced from the Internet and email increases the longer they are stored on systems. Infrastructure costs are also artificially high, as hardware resources are consumed by ever-increasing amounts of data. All in all, IDC estimates that data management can absorb up to 55% of storage costs. The Solution IDC estimates that data management can absorb up to 55% of storage costs A state-of-the-art data storage solution can inhibit risks associated with poor management practices. Modern solutions allow for the identification of non-business files, enabling swift deletion and automatically blocking offending file types. They can also detect files that have not been accessed recently, are duplicated, or may be elicit copies of applications. 4 #SR15L 2004 IDC

The consequence is a one-time overall reduction in data stored. Continuous monitoring of the environment, typically using quota management, inhibits recurrence of the problem. Backup and restore times can therefore be reduced substantially, along with the associated media costs. Removing nonbusiness files and duplicate data alone can eliminate 20% of storage media costs A large proportion of the remaining data will be information that is required to be kept as a business record, but is not required to be in the frontline application. Physically archiving this information removes it from the continuous backup cycle yet protects its long term availability, providing benefit to the backup and information retention functions. Risk of infection from viruses is reduced, as potential problem file types are instantly identified and quarantined. Duplicate or illegal software applications are also removed, reducing the risk of regulatory compliance contravention. Hardware resource costs are also reduced, since more free space is released for legitimate business purposes. Sophisticated data life cycle management (DLM) technology marks data according to its type, usage and importance. Data can then be stored in the most appropriate place: online for immediate access, nearline for important but rarely accessed data, and so on. Once policies for different data types are defined, DLM automates the process. DLM enables a long-term view of data management, ensuring regulatory compliance over the lifetime of data, while making best use of storage resources. One of the most obvious places to benefit from such technology is in email archiving. Data management costs can be reduced from 55% of the storage budget to 15% By using modern data management technology, data management costs can be reduced from 55% of the storage budget to 15%. An Industry Example VERITAS Software One company that is addressing these issues is VERITAS Software. VERITAS offers a comprehensive data storage and management solution that enables an organisation to store and protect its data in a manageable and cost-effective manner. It combines easy-to-use backup capability with data recovery and data management technology to reduce risk and data storage costs. There are seven main components in VERITAS's solution: VERITAS Backup Exec for Windows Servers The cornerstone to the VERITAS solution that allows fast and easy-to-use backup and restore capability on the Windows platform. The Desktop and Laptop option allows automated protection of locally-stored end-user files by ensuring they get backed up centrally. VERITAS Storage Replicator Adds to Backup Exec for Windows Servers by enabling centralised backup of data from remote sites without the need to invest in local hardware and people at those sites. VERITAS Intelligent Disaster Recovery A single process server recovery solution allowing the fast and reliable restore of downed servers, both locally and remotely, with minimal human intervention. 2004 IDC #SR15L 5

VERITAS Storage Foundation for Windows with the FlashSnap option Allows for the creation of "point-in-time" snapshots that are copies of mirrored data volumes on the server. These snapshots can be easily moved to another server for backup or other purposes such as testing or data mining. Snapshots may also be kept on the same server for rapid recovery from data loss. VERITAS StorageCentral A data management solution that separates valid business data from personal files, illegal software copies and other problem file types, reducing the overall amount of data to be managed. It also has quota management capabilities to slow down data growth and save money on storage investments. VERITAS Storage Foundation Allows storage capacity from multiple vendors to be centrally managed to increase storage capacity utilisation and to simplify management. KVS Enterprise Vault Recently acquired by VERITAS, KVS provides an information management solution that uses policies and rules to archive from a variety of applications into a central repository that can be managed across a variety of storage devices. Data can be retrieved by the user, on demand through a variety of non-intrusive direct links, or through comprehensive search capabilities. KVS Enterprise Vault provides a complete archiving and discovery solution. CHALLENGES FOR VERITAS Although business continuity affects the business of an organisation, storage and backup software solutions are seen largely as being in the technical domain. This misperception means that responsibility is typically handed to the IT manager or office manager, who often must fund data management and protection from a diminishing IT budget. This tends to support the procurement of point products, rather than holistic solutions. Proving the value of a robust data backup, recovery and management solution is like asking for a leap of faith its success is often invisible to the company. Improving visibility of the importance and vulnerability of data at the business level must, therefore, remain an ongoing campaign. IDC therefore believes that VERITAS must support decision makers in user organisations in understanding the true value of their data, and their exposure to risk from data loss, in order to support the change to a holistic approach to data resilience. 6 #SR15L 2004 IDC

CONCLUSION This special report, commissioned by VERITAS, has investigated the reasons behind organisations being slow to deploy sufficient resources in order to protect their data. IDC can conclude that business leaders are still misunderstanding current technology capabilities and TCO/ROI potential, thus leaving their organisations open to significant risk. In today's 24 x 7 business environment, IDC believes it is vital that companies do the following to ensure minimum negative impact to their bottom lines: Conduct a risk assessment of your operation understand where the risks lie and how you currently protect against them. Conduct a business review including your IT department in today's business environment IT managers can be the key to lowering IT costs while ensuring security and regulatory compliance. Use the results to calculate the acceptable level of downtime this can aid you to understand the risk/benefit equation of protecting your organisation better. Copyright Notice External Publication of IDC Information and Data Any IDC information that is to be used in advertising, press releases, or promotional materials requires prior written approval from the appropriate IDC Vice President or Country Manager. A draft of the proposed document should accompany any such request. IDC reserves the right to deny approval of external usage for any reason. For further information regarding this document please contact: Marketing Department Tel: +44 (0) 20 8987 7100 Copyright 2004 IDC. Reproduction without written permission is completely forbidden. 2004 IDC #SR15L 7

IDC is a subsidiary of IDG, one of the world s top information technology media, research and exposition companies. Visit us on the Web at www.idc.com To view a list of IDC offices worldwide, visit www.idc.com/offices IDC is a registered trademark of International Data Group

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information