• Home
  • News
  • Big Data & Analytics
  • DevOps
  • Security
  • GDPR
  • AI & ML
  • Women in Tech
  • Cloud & Infrastructure
  • CIO
  • Deskflix
  • Events
  • Whitepapers
  • Spotlights
  • IT Leaders 250
  • Research
  • Delta
  • Tech Marketing Hub
  • About Us
  • Newsletters
  • Sign in
  •  
      • Newsletters
      • Account details
      • Contact support
      • Sign out
     
     
    • You are currently accessing Computing via your Enterprise account.

      If you already have an account please use the link below to sign in.

      If you have any problems with your access or would like to request an individual access account please contact our customer service team.

      Phone: +44 (0) 1858 438800

      Email: customerservices@incisivemedia.com

      • Sign in
     
  • Follow us
    • Twitter
    • LinkedIn
    • Newsletters
    • Facebook
    • YouTube
  • Register
  • Events
    • Upcoming events
      event logo
      Is it time you switched to Database-as-a-Service?

      In this webinar learn how to leverage the advantages of in-VPC deployment, multi-cluster management, hybrid cloud replication, and more, all while delivering operational transparency and low TCO.

      • Date: 13 Apr 2021
      • Computing UK, London
      event logo
      How to overcome your Active Directory consolidation challenges

      In this web seminar we explore how best to go about assessing and modernising your AD as we reveal our research findings into AD health and readiness, consolidation challenges, and strategies for success.

      • Date: 20 Apr 2021
      event logo
      DeskFlix: DevOps

      Join us for this season of Deskflix: DevOps to hear from industry experts, leading partners, and your peers on all of the above. Available live or on-demand you’ll learn about best practice, the most common challenges, and gain valuable lessons on how to approach your 2021 DevOps journey.

      • Date: 21 Apr 2021
      event logo
      Desklix: Digital Workplace

      The Coronavirus pandemic has had a huge impact on our lives with most organisations making a sudden switch to mass remote working. As restrictions are progressively eased, the impact continues, with organisations having to decide when to allow staff back into offices, what proportion of remote working should be expected, and how all of this should be supported.Take part in this virtual event to put your questions to the experts, and see what your peers have learnt from the pandemic, and how they plan to apply this understanding to 2021 and beyond.

      • Date: 12 May 2021
      View all events
  • Whitepapers
    • LATEST WHITEPAPERS
      Darktrace 120x194
      Cyber AI Response: Threat Report 2019

      This white paper details 7 case studies of attacks that were intercepted and neutralised by Darktrace cyber defense AI, including a zero-day trojan in a manufacturing company's network. Learn how Darktrace Antigena AI Response modules fight back autonomously, no matter where a threat may emerge, extending to the Cloud, Email and SaaS.

      Download
      Darktrace 120x194
      Cyber AI & Darktrace Cloud

      This white paper explores how cloud is a security blind spot for many organisations who struggle with the limited visibility and control in this new environment, where their existing security tools are often not applicable.

      Download
      Find whitepapers
      Search by title or subject area
      View all whitepapers
  • Spotlights
    • Spotlights

      Welcome to Computing's Spotlight section, where we focus in on particularly important themes and topics of enterprise IT.

      Intel logo

       

      Endpoint Management and Security Hub

  • IT Leaders 250
  • Research
  • Delta
  • Tech Marketing Hub
  • About Us
Computing
Computing
  • Home
  • News
  • Big Data & Analytics
  • DevOps
  • Security
  • GDPR
  • AI & ML
  • Women in Tech
  • Cloud & Infrastructure
  • CIO
  • Deskflix
 
    • Newsletters
    • Account details
    • Contact support
    • Sign out
 
 
  • You are currently accessing Computing via your Enterprise account.

    If you already have an account please use the link below to sign in.

    If you have any problems with your access or would like to request an individual access account please contact our customer service team.

    Phone: +44 (0) 1858 438800

    Email: customerservices@incisivemedia.com

    • Sign in
 
  • Cloud and Infrastructure

Securing your investment in Microsoft 365

There’s a lot of sensitive data contained in Office documents - so it makes sense to take care of it

Cloud services are a store of valuable IP and sensitive data
Cloud services are a store of valuable IP and sensitive data
  • Computing staff
  • 07 April 2021
  • Tweet  
  • Facebook  
  • LinkedIn  
  • Send to  
0 Comments

With the sudden requirement to support mass homeworking, the past year has seen an accelerated uptake of cloud services, including Microsoft 365 (formerly Office 365), SharePoint and Teams.

Organisations have been largely satisfied with the move, which was often simply a case of bringing forward existing plans, said Michele Domanico (pictured), systems engineer at cloud data specialists Veeam Software. But the need to act with urgency meant that many companies lacked time to plan the migration thoroughly or to put proper disaster recovery and business continuity processes in place, increasing the risk of losing data through operator error (accidental deletions are surprisingly common) or misconfigured migrations.

"Microsoft do everything they can to make it as easy as possible," he said. "But there's always the risk of human error or external factors. There are multiple cases where projects go wrong when rushed or actioned without proper planning."

It's important to pay close attention to these risks both during and after moving to cloud services, because Microsoft does not provide a comprehensive backup service for Office data. Veeam estimates that 60 per cent of sensitive cloud data is stored in Office documents and that 75 per cent of this sensitive data is not backed up - which is where the company steps in.

"Veeam customers choose us because they know that all of their workloads cannot only be backed up before the migration but our ability to backup on premise and restore to cloud is an asset to both backup and some migrations," said Domanico.

Cloud services are generally considered more secure than on-premises hosting these days, but there's still a risk of downtime - all the major cloud firms have hit the headlines with outages over the last few months.

Reducing the impact of downtime

Ideally, organisations will have factored the risk of outages into their detailed business continuity plans, including calculations of recovery point objectives (RPO) - a metric the amount of data the organisation can tolerate losing - and recovery time objectives (RTO) - a measure of the acceptable recovery period. Again, though, planning in this area is sometimes less rigorous than it should be, said Domanico, and most organisations will benefit from assistance in working out these objectives and reducing the effect of any downtime as far as possible.

"We often talk about RPO and RTO with our customers, and what that means for them. We work alongside all our supporting customers partners in cloud vendors to provide a safety net for outages, whether that be in the cloud or on-premises."

The impact of outages can reach beyond cloud services, particularly in the case of hybrid cloud setups; data centres can vulnerable too, as the ongoing attacks on Exchange Server have demonstrated.

"As we have seen with recent events, data centres are at risk as much as on premise so Veeam's ability to be agnostic enables our customers to remain protected whatever the case," Domanico said.

Understanding the regulatory landscape

Recent research by Computing found that a quarter of organisations are using a Microsoft 365 backup and recovery service with a further 19 per cent trialling such solutions. Chief among the benefits reported by adopters were data recovery, compliance and granularity of recovery services.

On a scale of 1 (not at all) to 10 (extremely), how beneficial has the use of a third-party Microsoft 365 backup and recovery service been to the following?

Source: Computing Research

First on the list - data recovery  - speaks for itself.  But the second - compliance with data protection and other regulations  - is an extremely important consideration when migrating to the cloud with the fine details often poorly understood.

For example, the EU GDPR may have been on the books for two years now, but confusion abounds about who is liable for a personal data breach or loss, particularly in the context of supply chains and partnerships. Getting this right is important if the organisation is to mitigate the risk of fines and reputational damage, and assuring compliance is another area where outside assistance can help, said Domanico.

"We operate a shared responsibility model. This outlines the areas of coverage, but I think there will always be points of clarification needed no matter what the technology."

Understanding responsibilities as data controllers and/or processors is key, but selecting the right tools can also be invaluable when it comes to compliance, he continued.

"A core example is Veeam's ability to remove obsolete and non-compliant data from a backup when restored. It's better to have the tool to hand that to not have it when needed or when in doubt."

The latest version of Veeam's guide for backing up Microsoft Office 365 by Michele Domanico has just been released. Download it here.

This article was created in partnership with Veeam.

  • Tweet  
  • Facebook  
  • LinkedIn  
  • Send to  
  • Topics
  • Cloud and Infrastructure
  • Threats and Risks
  • Veeam
  • Microsoft 365
  • Office 365
  • O365
  • Microsoft Office 365
  • Backup
  • Veeam Backup & Replication
  • Disaster Recovery
  • business continuity
  • GPPR
  • Compliance

More on Cloud and Infrastructure

Understanding what drives teen hackers is key to securing your business, says cyber expert Shelton Newsham

Natural curiosity can lead some to open some wrong doors

  • Threats and Risks
  • 08 April 2021
Apple releases urgent security patch for zero‑day bug under active attack
Apple releases urgent security patch for zero‑day bug under active attack

The bug exists in Webkit, the browser engine which powers the Safari browser across all Apple devices

  • Threats and Risks
  • 29 March 2021
Covid: The great reset means IT leaders must now think ahead, not just cope with an inconvenient present

  • Cloud and Infrastructure
  • 29 March 2021
Escaping technical debt: moving to the cloud at the Royal Society of Chemistry
Escaping technical debt: moving to the cloud at the Royal Society of Chemistry

'We needed a much more flexible and cost-efficient operation to keep up with the big players in the field', says head of DevOps Chris Callaghan

  • Cloud and Infrastructure
  • 29 March 2021
Industry Voice: In a software-centric world, don't lose sight of the need for secure, manageable hardware

  • Cloud and Infrastructure
  • 26 March 2021
blog comments powered by Disqus
Back to Top

Most read

Nearly 500 million LinkedIn users' details posted for sale online
Nearly 500 million LinkedIn users' details posted for sale online
Home Office is creating a 'super database' on people's race, health and biometrics, report
Home Office is creating a 'super database' on people's race, health and biometrics, report
IR35: MPs urge government to protect contract workers from the malpractices of umbrella companies
IR35: MPs urge government to protect contract workers from the malpractices of umbrella companies
Is it time you switched to Database-as-a-Service? Join us on 13th April to find out
Is it time you switched to Database-as-a-Service? Join us on 13th April to find out
British software reseller files £270 million antitrust court action against Microsoft
British software reseller files £270 million antitrust court action against Microsoft
  • Contact
  • Delta
  • Marketing solutions
  • Enterprise IT Events
  • Incisive Media
  • Terms & conditions
  • Policies
  • Careers
  • Privacy Settings
  • Twitter
  • LinkedIn
  • Newsletters
  • Facebook
  • YouTube

im_logo

© Incisive Business Media (IP) Limited, Published by Incisive Business Media Limited, New London House, 172 Drury Lane, London WC2B 5QR, registered in England and Wales with company registration numbers 09177174 & 09178013

Digital publisher of the year
Digital publisher of the year 2010, 2013, 2016 & 2017
Loading