10. Il BACKUP, sembra facile ...

Apparently it's a simple topic:

in short, it is a question of making backup copies of the data to be used in case of need.

How often does it happen though things are a little bit? more complicated and the risk that the restoration (restore) data does not meet expectations is by no means negligible.

Let's start with the characteristics that the ideal backup should have:

- contain all the data we need to restore

- immediately available

- quick to make

- quick to restore

- 100% reliable

- protected from malicious or accidental damage

- economic

Let's now come to the practice: among these it is necessary to choose those that are really important for the objectives that are set, specifying their implications.

Here are some of them:

contain all the data we need to restore

- how often do we save data?

- how long do we keep them?

- do we need to recover previous versions of current data?

- do we save all the data that we may need to recover?

be immediately available

- how much data do we save?

- where are the copies of the data stored (online, tape, cloud?)?

? be quick to make and restore?

- how much data do we save?

- are they all in the same backup or on sectoral backups?

- do we make full (full backup), incremental, differential copies?

(the time required for saving is inversely proportional to the recovery time)

- what technology do we use (hard disk, SD drive, SAN, cloud)?

? be reliable at 100%?

- do we keep multiple copies of the same backup?

- do we carry out regular reset tests?

- we have a system in High reliability (RAID, SAN, network, internet carrier)?

be protected from malicious or accidental damage

- do we keep multiple copies of the same backup?

- do we encrypt backup data?

- how do we keep digital keys to encrypt them?

- are the backup copies isolated from the internal network and from the internet so that they cannot be reached?

- we have a system in High reliability (RAID, SAN, network, internet carrier)?

- are physical copies managed securely (transport, storage, accessibility)?

be cheap

- what do we mean by economic?

- which features are really indispensable?

Having backups that are truly reliable and adapted to the needs is essential for the security of the Company's information.

The Fractional CISO has the necessary skills to establish the backup policy correct, choose the technologies suitable and, above all, verify its functioning over time.