IT leaders feel increasingly unprotected
Veeam Software’s fourth annual Data Protection Trends Report has been released and shows that the complexity of hybrid IT environments is presenting ongoing challenges for business leaders, requiring additional budget and creating a sense of insecurity.
With incidents of cyber attack on the rise, the report suggests the number one priority for 2023 is backup reliability improvement, followed by ensuring that implemented IaaS and SaaS protection is equivalent to the protection IT leaders rely on for data centre-centric workloads.
Report highlights include:
- Modern data protection is needed to keep businesses running: Four out of five organisations believe that they have a gap, or a sense of dissatisfaction or anxiety, between what their business units expect and what IT services can deliver. 82% have an ‘availability gap’ between how quickly they need systems to be recoverable and how quickly IT can bring them back. 79% cite a “protection gap” between how much data they can lose and how frequently IT protects their data. These gaps are one reason that 57% of organisations expect to change their primary data protection in 2023, as well as the justification for increased data protection budgets.
- Data protection budgets are increasing: Globally, organisations expect to increase their data protection budget in 2023 by 6.5%, which is notably higher than overall spending plans in other areas of IT. Of the 85% of organisations planning on increasing their data protection budgets, their average planned increase is 8.3% and often in concert with increased investments in cybersecurity tools.
- Despite the awareness and increase in preparedness, ransomware is winning: Cyber attacks caused the most impactful outages for organisations in 2020, 2021 and 2022, according to the report. 85% of organisations were attacked at least once in the past 12 months; up from 76% in last year’s report. Specifically, recovery is a main concern as organisations reported that only 55% of their encrypted/destroyed data was recoverable from attacks. According to the survey, the single most important aspect that organisations are looking for in a modern data protection solution is the “integration of data protection within a cyber preparedness strategy”.
- Ransomware is the biggest hindrance to digital transformation: Due to its burden on budgets and manpower, ransomware and the current volatile cybersecurity landscape are taking priority for IT teams. This is causing IT resources and budgets originally allocated towards digital transformation initiatives to pivot to cyber prevention. Not only do cyber attacks drain operational budgets from ransoms to recovery efforts, but they also reduce organisations’ ability to modernise for their future success; instead, they must pay for prevention and mitigation of the status quo.
- Container-centric workloads are growing in popularity: Containers, and more specifically Kubernetes, show all the characteristics of a mainstream production platform, with the same kinds of data protection strategy disparities as seen in early adopters of SaaS five years ago or virtualisation 15 years ago. 52% of respondents are currently running containers, while 40% of organisations are planning to deploy containers — and yet, most organisations are merely protecting the underlying storage, instead of holistically protecting the workloads themselves. This is typical as new production platforms enter mainstream, followed by recognition that legacy methods are insufficient, thereby creating an opportunity for third-party backup tools to ensure comprehensive protection.
“IT leaders are facing a dual challenge. They are building and supporting increasingly complex hybrid environments, while the volume and sophistication of cyber attacks is increasing,” said Danny Allan, CTO and Senior Vice President of Product Strategy at Veeam.
“This is a major concern as leaders think through how they mitigate and recover business operations from any type of disruption. Legacy backup approaches won’t address modern workloads — from IaaS and SaaS to containers — and result in an unreliable and slow recovery for the business when it’s needed most. This is what’s focusing the minds of IT leaders as they consider their cyber resiliency plan,” he said.
Other notable insights include:
- Reliability and consistency (of protecting IaaS and SaaS alongside data centre servers) are the key drivers for improving data protection in 2023. For organisations that are struggling to protect cloud-hosted data with legacy backup solutions, it is likely they will supplement their data centre backup solution with IaaS/PaaS and/or SaaS capabilities.
- Ransomware is both the most common and most impactful cause of outages, alongside natural disasters (fire, flood, etc) and user errors (overwrites, deletion, etc). Organisations should implement backup and recovery solutions that support a holistic approach to data protection and that can integrate with other cyber detection and remediation technologies to ensure comprehensive cyber resilience.
- Cloud-based services seem nearly inevitable for organisations of all sizes. But similar to how there isn’t just one type of production cloud, there isn’t just one protection cloud scenario. Organisations should consider cloud tiers for retention, backup as a service (BaaS) and ultimately, disaster recovery as a service (DRaaS).
CrowdStrike to buy Adaptive Shield
CrowdStrike is augmenting its SaaS security capabilities through the acquisition of Israeli-based...
LockBit named nastiest malware of 2024
LockBit, a ransomware malware known to have been used to attack Australian targets, has been...
Extreme Networks launches ZTNA solution
Extreme Networks' new ExtremeCloud Universal ZTNA solution combines cloud network access...