Have You Gauged The Cost Of A Cloud Outage?

New findings from a study by Veritas Technologies, indicate that 60 percent of respondents have not fully evaluated the cost of a cloud outage to their business and are therefore ill prepared to deal with the impact of an outage.

While cloud service providers offer infrastructure-based service level objectives, the research indicates that many organisations fail to understand their own responsibility, in addition to that of the cloud service providers’, in ensuring that their critical business applications are adequately protected in the event of an outage.

Understanding Cloud Outages

The study surveyed 1,200 global business and IT decision makers. It revealed that 99 percent of IT decision makers reported that their organizations will move systems to the cloud in the next 12 to 24 months. 27 percent also expect to outsource all on-premises infrastructure to the public cloud.

While migration to the cloud continues to accelerate, it is imperative that customers understand how an outage could impact their business. 36 percent of respondents expect less than 15 minutes of downtime per month but the reality is that 31 percent have experienced downtime more than double that per month (31 minutes or more).

Who is responsible in the event of a cloud outage?

59 percent of respondents believe that dealing with cloud service interruptions is the primary responsibility of the cloud service provider.

Eighty-three percent of respondents also believe that their organisation’s cloud service provider is responsible for ensuring that their workloads and data in the cloud are protected against outages.

While cloud service providers have service level agreements in place, these are typically for the infrastructure layer and they hold the responsibility for restoring their infrastructure in the event of a cloud outage.

However, there are other key considerations customers should keep in mind that go beyond the actual infrastructure-level outage, such as bringing their applications back online, once the infrastructure is back online.

Depending on the complexity of application inter-dependencies during restart and the amount of data lost during the outage, the actual time of application recovery may be far longer than the time of infrastructure recovery.

An organisation may alternately decide to be more proactive and failover applications back to their on-premises data center or to another cloud. This would be the primary responsibility of the organisation, not the cloud service provider.

“Organisations are clearly lacking in understanding the anatomy of a cloud outage and that recovery is a joint responsibility between the cloud service provider and the business,” said Mike Palmer, executive vice president and chief product officer, Veritas.

“Immediate recovery from a cloud outage is absolutely within an organisation’s control and responsibility to perform if they take a proactive stance to application uptime in the cloud. Getting this right means less downtime, financial impact, loss of customers’ trust and damage to brand reputation.”

Maximizing the benefits of the cloud while minimising the risks

Not knowing the full extent of how a cloud outage could potentially impact business is a risk very few organisations can afford to take. But, the risks can be severely mitigated with the right business resiliency strategies in place to reap the benefits of embracing a multi-cloud world.

“At Veritas, we fully embrace a multi-cloud approach and partner with many leading cloud service providers to help customers easily migrate applications and data to, from and in-between clouds, all while offering maximum business uptime,” said Palmer.

“We work with the cloud service providers and our customers to help ensure that they are protected in the event of a cloud outage so they can keep their businesses flourishing.”

HelpNetSecurity:

You Might Also Read:

Five Steps To Keeping Your Cloud GDPR Compliant:

 

 

« Cybersecurity Incidents Are Major Business Disruptions
Self-driving Uber Vehicle Strikes & Kills »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Council of Europe - Cybercrime Programme Office (C-PROC)

Council of Europe - Cybercrime Programme Office (C-PROC)

The Cybercrime Programme Office of the Council of Europe is responsible for assisting countries worldwide in strengthening their legal systems capacity to respond to cybercrime

Mega

Mega

Mega is a secure cloud data storage provider with browser-based high-performance end-to-end encryption.

Galvanize

Galvanize

Galvanize is a leading provider of award-winning, cloud-based security, risk management, compliance, and audit software for some of the world’s largest organizations.

Gilbert + Tobin

Gilbert + Tobin

Gilbert + Tobin is an Australian corporate law firm serving clients throughout Australia, and around the world, on a broad range of legal issues including cyber security.

Business Continuity

Business Continuity

Business Continuity delivers integrated IT solutions for cybersecurity, virtualization, cloud platforms and operational security solutions.

AVORD

AVORD

AVORD is a cloud-based security testing platform that allows clients to manage security testing requirements in a far more productive and efficient way.

Irish National Accreditation Board (INAB)

Irish National Accreditation Board (INAB)

INAB is the national accreditation body for Ireland. The directory of members provides details of organisations offering certification services for ISO 27001.

ICS Cyber Security Conference

ICS Cyber Security Conference

SecurityWeek’s Industrial Control Systems (ICS) Cyber Security Conference is the largest and longest-running event series focused on industrial cybersecurity.

Insight Partners

Insight Partners

Insight Partners is a leading global private equity and venture capital firm investing in growth-stage technology, software and Internet businesses.

Wiser Market

Wiser Market

Wiser Market is a leading company in global online brand protection services, intellectual property protection, anti-Counterfeit & trademark infringements.

Ethyca

Ethyca

Ethyca builds automated data privacy infrastructure and tools for developers and privacy teams to easily build products that comply with GDPR, CCPA Privacy Regulations.

Viettel Cyber Security

Viettel Cyber Security

Viettel Cyber Security is an organization under the Military Telecommunication Industry Group, conducting research and developing information security solutions for domestic and foreign customers.

Invicti Security

Invicti Security

Invicti Security is an AppSec leader transforming the way web applications are secured.

Tailscale

Tailscale

Tailscale is a VPN service that makes the devices and applications you own accessible anywhere in the world, securely and effortlessly.

AnyTech365

AnyTech365

AnyTech365 is a leading European IT Security and Support company helping end users and small businesses have a worry-free experience with all things tech.

IDVerse

IDVerse

IDVerse is focused on making user verification effortless through technology. We build intelligent tools that protect users from identity fraud while enabling a seamless user experience.