end-point
ANALYSIS
distrust is to have multiple copies of your backups – fail-safes in case one ( or more ) are compromised . The best practice is to have three copies of your backup , two stored on different media types , one stored onsite , and one kept offline . With these layers of resilience , you can start to consider your backup as Zero Trust .
Taking the first steps
The other key thing you need is buy-in – everyone in the organisation must be on the journey together .
Dave Russell , Vice President , Enterprise Strategy at Veeam
With Zero Trust Data Resilience , just like Zero Trust , it ’ s a journey . You can ’ t implement it all at once . Instead , follow a maturity model where you gradually implement new practices and refine and evolve these over time . For example , if you don ’ t currently validate your backup data , start doing so manually and over time implement technology to automate and schedule routine validation processes .
The other key thing you need is buy-in – everyone in the organisation must be on the journey together . Senior leadership is key to implementing any broad changes across an organisation , but so is educating across the business on new processes and their need .
Finally , for Zero Trust Data Resilience especially , the security and wider IT operations teams must be aligned . Backup often falls under the responsibility of the latter , but as this becomes more and more crucial for security posture , the two need to work together to prevent security siloes or gaps .
The journey to Zero Trust is endless . So much so that the exact destination evolves over time . My advice to businesses is that while Rome wasn ’ t built in a day , it is better to start taking steps today , no matter how small , instead of postponing and being left behind .
74 WWW . INTELLIGENTCISO . COM