Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Choose the right solution

September 2011 Information Security

Fred Mitchell, security business unit manager at Drive Control Corporation

In today’s digital age, regulations around data retention are becoming of increasing concern to businesses of all sizes across industry sectors. While the duration of requirements for retention may vary from industry to industry, the South African Revenue Service requires that documents be kept for a minimum of five years for tax and auditing purposes, which means that often large amounts of digital data must be archived for at least this minimum prescribed period.

Aside from legal compliance issues, the ever increasing amounts of digital data are placing added burden on backup solutions. This data often contains business critical information, which means that adequate backup and recovery solutions have become vital technology in ensuring business continuity in the event of disaster.

However, taking a blanket approach to backup and archiving of digital data is simply not a smart option, since the sheer volumes of information sent over digital channels can cost organisations a fortune in storage space. It is vital to decide which information is relevant and which is not, so that only important information is backed up. It is also important to ensure that data is not duplicated, as storing multiple copies of the same information takes up unnecessary storage space.

The latest backup and archiving technology can be of great assistance, with advances such as deduplication, ensuring that multiple copies of data are eliminated and intelligent archiving solutions automating the indexing process to create searchable archives on a highly granular level, ensuring that documents and data that are stored can easily be located if necessary.

Technology, however, can only do so much on its own. In order to ensure effective and efficient backup of data, policies need to be put into place to set the parameters for what is being backed up and when, and how often to run incremental backups as opposed to full backups. Policies should also dictate what happens to the backed-up data, whether it is archived on disks or on tapes and whether the backup data is stored on or offsite, and for how long this data must be stored depending on relevant compliance legislation.

These policies should cover not only data such as e-mails and business critical documentation, but also aspects such as identity management profiles and access control information, in order to ensure security. If the system crashes and needs to be restored from the backup, this data is crucial in ensuring that security breaches resulting from unauthorised access do not occur, since all of the information relating to who is able to access what information can be immediately resumed during the recovery process.

When it comes to best practice around backup and archiving, setting up the correct policies is a crucial step. It also needs to be remembered however that the policy document is not a static object, and needs to be continuously updated to ensure that it is in line with the current requirements of the organisation, both in terms of business and compliance needs.

The latest technology is also recommended as part of best practice, since advances in solutions can provide more efficient backup that uses less space and costs less money in the long term, and can help organisations to ensure that the right data is being backed up at the right time through an automated system that eliminates the potential for human error.

Testing the restoration functionality on a regular basis is another vital element. It is all very well to have masses of data backed up, but organisations must be able to restore this data quickly in the event of a disaster, to make sure that the business is back up and running in short order to minimise lost productivity.

Finally, when it comes to implementing any backup and archiving system, it is always advisable to speak to an expert in the field. This will help to ensure that the right system is put into place, that the solution is set up correctly for maximum efficiency, and that policies can be put into place that are effective for each individual organisation.

Backup and archiving are a vital part of the modern business, but if the wrong products are used or solutions are not correctly implemented, this aspect of IT can end up attracting unnecessary expense. Following best practice and the advice of a skilled and experienced expert can help organisations to ensure that the right data is always securely backed up and can be quickly restored if necessary, minimising damage to the business.

Fred Mitchell
Fred Mitchell

For more information contact Drive Control Corporation, +27 (0)11 201 8927, [email protected]





Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Cybersecurity and AI
AI & Data Analytics Information Security
Cybersecurity is one of the primary reasons that detecting the commonalities and threats of what is otherwise completely unknown is possible with tools such as SIEM and endpoint protection platforms.

Read more...
What are MFA fatigue attacks, and how can they be prevented?
Information Security
Multifactor authentication is a security measure that requires users to provide a second form of verification before they can log into a corporate network. It has long been considered essential for keeping fraudsters out. However, cybercriminals have been discovering clever ways to bypass it.

Read more...
SA's cybersecurity risks to watch
Information Security
The persistent myth is that cybercrime only targets the biggest companies and economies, but cybercriminals are not bound by geography, and rapidly digitising economies lure them in large numbers.

Read more...
Cyber insurance a key component in cyber defence strategies
Information Security
[Sponsored] Cyber insurance has become a key part of South African organisations’ risk reduction strategies, driven by the need for additional financial protection and contingency plans in the event of a cyber incident.

Read more...
Deception technology crucial to unmasking data theft
Information Security Security Services & Risk Management
The ‘silent theft’ of data is an increasingly prevalent cyber threat to businesses, driving the ongoing leakage of personal information in the public domain through undetected attacks that cannot even be policed by data privacy legislation.

Read more...
Data security and privacy in global mobility
Security Services & Risk Management Information Security
Data security and privacy in today’s interconnected world is of paramount importance. In the realm of global mobility, where individuals and organisations traverse borders for various reasons, safeguarding sensitive information becomes an even more critical imperative.

Read more...
Sophos celebrates partners and cybersecurity innovation at annual conference
News & Events Information Security
[Sponsored] Sun City hosted Sophos' annual partner event this year, which took place from 12 to 14 March. Sophos’ South African cybersecurity distributors and resellers gathered for an engaging two-day conference.

Read more...
The CIPC hack has potentially serious consequences
Editor's Choice Information Security
A cyber breach at the South African Companies and Intellectual Property Commission (CIPC) has put millions of companies at risk. The organisation holds a vast database of registration details, including sensitive data like ID numbers, addresses, and contact information.

Read more...
Navigating South Africa's cybersecurity regulations
Sophos Information Security Infrastructure
[Sponsored] Data privacy and compliance are not just buzzwords; they are essential components of a robust cybersecurity strategy that cannot be ignored. Understanding and adhering to local data protection laws and regulations becomes paramount.

Read more...
AI augmentation in security software and the resistance to IT
Security Services & Risk Management Information Security
The integration of AI technology into security software has been met with resistance. In this, the first in a series of two articles, Paul Meyer explores the challenges and obstacles that must be overcome to empower AI-enabled, human-centric decision-making.

Read more...











SMART Security Business Directory



Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.