How to choose the right DRaaS partner
Choosing the right strategic partner to support your Disaster Recovery (DR) needs is much like choosing the right strategic partner for any new technology transformation, implementation or major project. For any organisations - particularly in the financial sector where the regulatory landscape is especially complex - looking to find a Disaster Recovery as a Service (DRaaS) partner, there are a few key criteria a potential partner needs to fulfil.
Understanding those criteria, however, requires you to not only have a deep, clear understanding of your prospective partner, but also your own organisation. It’s not a simple process, but the benefits can massively outweigh the costs.
According to a new report by Creative ITC, entitled How Disaster Recovery as-a-Service helps financial services firms stay on the front foot, there are a number of “ key considerations when selecting a managed service provider and DRaaS solution.” Financial institutions in particular should opt for partners that “understand industry-specific challenges”, as successfully finding a partner that can deliver effective DRaaS services in the financial sector can be an invaluable asset for firms looking to leverage cloud based DR in order to achieve levels of geographical diversity and business continuity “necessary to give your business peace of mind and maintain your clients’ trust.”
First, according to Creative ITC, you need to ask: “Can they demonstrate a strong background in data protection and technical expertise in your specific infrastructure?” And: “Do they have proven experience of the financial services industry and deep understanding of your workload and regulatory requirements?”
Data protection and regulatory compliance are foundational elements of a successful financial institution’s IT stack. At the same time, no two financial institutions are the same, with many operating across a spectrum between legacy on-prem infrastructure, hybrid and fully public cloud. With the security of the data being backed up as part of your DR program being of the utmost importance, finding a partner that understands not only the importance of security, but also how to deliver a secure and compliant service within your organisation’s regulatory framework is essential.
Next, ask: “Due to the importance of RPO on data loss, can they provide acceptable and achievable RPO on a per-application basis?” And: “How quickly can they guarantee to get your users back online following an outage?”
From an internal and external perspective, your partner needs to be able to guarantee (and demonstrate, perhaps with a PoC) a certain amount of speed back to business as usual. Look at the DR plan you have in place now, and the time it takes to get back online following an outage. A cloud-based DRaaS solution should, at the very least, be able to beat your current time.
Lastly, ask: “Do they have a Plan B, such as providing a temporary VDI workaround?”
Even backup plans fail sometimes. A DRaaS partner should be able to demonstrate their own DR plan within their own organisation, hopefully creating a level of redundancy that dramatically reduces the likelihood that they will be unable to support your needs in the event of a crisis.
ServiceNow pumps millions into EU service compliance
ServiceNow, the digital workflow company, has announced a multimillion euro investment to help EU customers meet compliance requirements.
The legal, technical and organisational safeguards will help companies to comply with the the Schrems II judgment and European Data Protection Board (EDPB) Recommendations issued in June 2021.
ServiceNow’s investment means all EU-hosted data will be exclusively handled within the EU, and the cloud-hosted digital workflow provider claims its solution will come “without impact on current delivery and service”.
ServiceNow upgrade: free of charge
There will be no cost for current customers to opt in to the data compliance solution, even though ServiceNow is investing an unspecified multimillion euro sum and hiring more than 80 new staff across the bloc.
Mark Cockerill, vice president legal, EMEA and global head of privacy at ServiceNow, said: “With any regulation change, cloud services companies have a choice. They can adopt a ‘wait and see’ approach or get proactive and help customers and partners innovate. At ServiceNow we are on the front foot, continually investing in our customers, allowing them to operate with the highest level of choice and control over their EU data.
ServiceNow upgrade: ‘peace of mind’
“Our new EU-centric service delivery model will give our current customers and partners peace of mind. For customers and partners operating in highly regulated industries, or in the public sector, or those that have yet to make the switch to the cloud, this model gives them certainty and simplicity when selecting the cloud service that best suits their needs.”
Carla Arend, lead analyst, cloud in europe for IDC, said, “The Schrems II ruling has led European organizations to revisit their cloud-related data protection policies and processes when it comes to international data transfers through cloud services.
“Contractual, privacy, and security safeguards and the assurance that data will be kept and handled in the EU help European organizations to comply with European data protection laws while taking advantage of global cloud platforms. Vendors, such as ServiceNow, that invest to support their customers in response to this ruling are providing essential choice to their customers.”