Book demo
11 October 2024

Highlights from the Control24 cyber resilience summit.

This week we hosted our 5th annual ‘Control’ cyber resilience summit. Did you miss it? Don’t worry, here’s a summary of highlights and key takeaways.

Summary

Never before has the Control summit attracted such a wide range of speakers and delegates. Cyber Security experts and Storage experts from some of the world’s leading technology and consulting companies came together to discuss and debate cyber resiliency and the role of AI.

…And there were some surprises too! We always say that Control is not your average tech conference, and this year didn’t disappoint with mystery spot-prizes, an AI co-host, and even a house band!

The best bits

We’re thrilled to announce that once again the event achieved a 4.5 star review rating from attendees. A huge thank you goes out to our speakers for providing such compelling content. That’s you, Sasha Acosta and Shariq Aqil from Zerto/HPE, Steve Kenniston and Liz Campell from Dell Technologies, Christian Farrell from Accenture, Harpinder Powar and Richard Cassidy from Rubrik, and Martin Borrett from IBM Security.

But, the most popular session – voted for by the audience, was a real-time CleanRoom deployment challenge with Predatar’s own CTO, Ian Richardson. During the course of the event Ian proved that an AI-powered Cleanroom can be built from scratch – with threat detection, automated recovery tests, and deep malware scanning up and running in under 3 hours.   

3 Key Themes

We covered a lot of ground at Control24, and several themes kept coming up. Here’s the top 3:

1. Regulation is driving resilience
In any business there’s things you know you REALLY SHOULD be doing. Validating the recoverability of your data has been in that category for a long time. Then there are the things businesses MUST do. With a whole raft of new regulations coming into force (DORA,HIPAA,PSA,FISMA, and NIS2 to name a few) businesses are finally prioritising resilience.

In our opinion – it’s about time!

2. AI is an opportunity and a risk
Most (if not all) of the expert speakers at Control24 at least touched on the topic of AI in the context of cybercrime. The great news is that all of the major security and storage vendors are leveraging Artificial Intelligence in incredible ways – Better threat detection, intelligent recovery assurance and faster incident response are just some of the AI-powered capabilities available.

BUT, as IBM’s Martin Borrett explained in his session, the fight against cyber crime is always ‘a game of cat and mouse’. Cyber criminals are using AI in ingenious ways too, so one thing that is certain is that AI is rapidly becoming an essential element of any cyber strategy.

3. Storage teams are becoming cyber superheroes.
Gone are the days when backups were a safety net for accidental file deletions and 1 in a million disasters. The data that your storage teams is looking after is a the target for cyber criminals, and the backups they manage might just save your organisation from total catastophy.

If the storage and security teams aren’t aligned  in your organisation, your incident response is at risk. If you do just one thing as a result of Control24, it should be this… Have a conversation with your storage or security counterpart about recovery confidence. If a crisis hits can your organisation recover quickly, cleanly, and completely?

Watch Control24 On Demand

If you missed Control24, or loved it so much you want to see it all again, it’s now available On Demand. Watch it here.

Make sure you don’t miss Control25. Subscribe to Predatar news for updates on Predatar events, product releases, and more.


Learn more about
Predatar recovery assurance

26 September 2024

Predatar’s big online cyber resiliency summit is back for 2024.

Our biggest and best event yet.

We’re excited to announce the return of our hugely successful annual summit, Control24. This year, some of the industry’s biggest storage and security vendors are putting rivalries aside, to come together and discuss one of the most pressing challenges in business today – cyber resilience.

As the role of Artificial Intelligence in business reaches a critical tipping point, Control24 will focus on how forward-thinking businesses are using it to make resilience a reality.

Control is back… and bigger than ever before.

Typically attracting an audience of over 400 attendees, Control has become one of the biggest online events for cyber resiliency. And with an average audience rating of 4.5 stars (out of 5), Control24 is an event not to be missed.

What’s different this year? 

We’ve been working relentlessly to grow our technology ecosystem. The market-leading Predatar Recovery Assurance platform now supports many of the leading storage and security technologies and
this year’s speaker lineup reflects this. We’ve got experts from Zerto/HPE, IBM Security, Dell Technologies, and Rubrik on the bill.

Long-term fans of the Control summit needn’t worry. You can expect the same pace and energy as usual. We’re sticking with the short energetic sessions, the same mix of thought-leadership and practical advice, and there’ll be plenty ways to get involved with live QA and competitions.

Don’t know what to expect? Take a look at our highlights reel.

What’s on the agenda? 

We’ve got an action packed agenda in store with customer stories, a real-time CleanRoom deployment challenge and guest speakers including:

  • Shariq Aqil and Sasha Acosta from Zerto/HPE 
  • Harpinder Powar and Richard Cassidy from Rubrik
  • Martin Borrett from IBM Security
  • Liz Campbell and Steve Kenniston from Dell
  • Christian Farrel from Accenture  


Register now!

Control24 takes place online, on 9th October at 2pm (GMT).
Don’t miss out. Register now!

Learn more about
Predatar recovery assurance

23 August 2024

10 Ways to make your backup more secure… And why you need to.

Data backup is not cyber security… or is it?

Although few security officers would consider backup as security, there is a strong argument that backup should be the most secure application in any organisation.

Why? Because sh*t happens – every day. Most of the time, your business is expecting it, and taking steps to prevent it. For example, there are not many big businesses today that don’t have multiple EDR and XDR tools in place, and fewer still that aren’t taking steps to educate their employees on phishing attacks.

But sometimes, when sh*t happens, the cause is totally unexpected.

The irony of a leading cyber security company causing a massive global IT outage last month was not lost on anyone (you know the one we’re talking about).

The fact that such catastrophic disruption could be caused by accident, only serves to remind us of the need to shift towards a resilience strategy over a security one.

It’s natural for technology leaders to want to prevent harmful and disruptive incidents, but the prioritisation of cyber security over data resiliency appears to be misplaced.

Cyber security only shortens the odds of an incident. No matter how small the odds, while there’s a risk, business leaders need to make sure there is a robust recovery plan in place? 

Closing the Recovery Gap – 10 ways to harden your backup system

In this guide, we focus on practical steps you can take to make your backup more secure and resilient. While we’ll dive deeper into the role of backup in threat detection in future articles, for now, let’s focus on securing your backup as your safety net.

1. Deploy Multi-Factor Authentication – The last thing you want is to grant attackers administration rights to wipe your backup data.

2. Implement 4-Eyes or Command Approval – Backup administrators have privileged access to data. Trust is essential, but having two people approve critical actions, as demonstrated by the CrowdStrike incident, helps prevent mistakes.

3. Turn on Backup Encryption – While it won’t stop ransomware, encrypting your backups ensures that attackers can’t read your sensitive data, reducing the fear of extortion.

4. Use Complex Passwords for Backup System Access – This basic step is still crucial. Simple passwords make you vulnerable.

5. Decouple Your Backup System from Active Directory – Avoid having a single point of failure by ensuring your backup system operates independently from your primary network.

6. Ensure You Have at Least 3 Backup Copies – These should be real backup copies, not production storage snapshots. Snapshots are useful for operational recovery, but don’t compromise your last line of defence.

7. Keep at Least One Backup Copy Off-Site – This is more about risk management than security, but it’s a practice that predates modern threats like ransomware for good reason.

8. Maintain an Air Gap – If you’ve eliminated tape drives, consider using dissimilar backup server OSs and storage media to maintain an effective air gap.

9. Use Immutable Storage Media for One Backup Copy – This won’t prevent malware from being backed up, but at least the data can’t be changed or encrypted.

10. Build an Isolated Recovery Environment (IRE) – Often called a cleanroom, this is the best way to ensure your backup copies can be safely recovered without further risk.

Find a data resiliency expert

At Predatar we’ve built a global network of elite data resiliency partners. Our APEX partners can help you build the foundations for data resilience, and take you on a journey to total recovery confidence with AI-powered Recover Assurance from Predatar.

Find an APEX partner near you now!

Learn more about
Predatar recovery assurance

04 July 2024

Why AI is non-negotiable for cyber resiliency.

Let’s kick off this article about Artificial Intelligence with a few very real facts…  

1. Storage environments are getting bigger and more complex.
2. Cyber-attacks are getting more prevalent and more sophisticated.
3. IT and Security teams are under increasing pressure to do more with less.

It’s a harsh reality that most businesses are treading a fine line in the battle to stay ahead of cybercrime. IT and cyber security budgets aren’t growing in line with the size of the challenge, and a serious shortage of technical skills in the employee marketplace adds another obstacle.   

A breach is coming. So, what can businesses do to prepare?

They can cross their fingers and hope their data recovery plans will work (the evidence suggests they won’t), or they can deploy Artificial Intelligence to deliver new levels of data resilience that would otherwise require a small army of security and storage technicians to achieve.

This article highlights three ways AI can boost your resiliency. Over the next 3 weeks we’ll dig into each of these in more detail.



1. Faster, more accurate threat-hunting

Malware is designed to evade detection. The reality is that your storage environment has probably already been compromised – you just don’t know it yet. Malware in your storage has the potential to render your backups and snapshots useless in a cyberattack and seriously derail your incident response.

Predatar found malware in more than 70% of its users’ storage within the first 90 days of deployment. That’s malware that had evaded perimeter cyber security tools such as EDR and XDR, and had not been detected by the anomaly detection that is built into most of the leading storage platforms.

Artificial Intelligence has a lot to do with Predatar’s dramatically enhanced threat-hunting capability.

Whether it’s spyware quietly collecting information, ransomware discreetly encrypting your files, or wipers deleting your data – malicious activity gives off ‘signals’. The challenge is finding these signals amongst the noise of busy, complex storage systems.   

Traditional anomaly detection techniques fall-short when faced with sophisticated malware designed mimic the signals of legitimate data activity. As a result, malware either goes unnoticed, or often storage and security teams become overwhelmed with false-alerts, and waste valuable time and resources investigating threats that aren’t real.

AI has the ability to understand nuances in data behaviour that would simply be impossible otherwise. What’s more, it gets smarter over time – learning from false positives, to make AI-powered threat detection exponentially more effective that traditional anomaly detection.       

2. See recovery risks hidden in complex storage

Most large businesses have multiple storage platforms in play. In our experience, typically it’s 2 or 3 platforms – but it can be as many as 5 or more. And the trend is an upwards one. As business bring new storage technologies on board, they need to maintain the old ones to manage their legacy data. Failed backup runs, unsupported software, unpatched vulnerabilities, and many other issues associated with storage administration have the potential to cause a major issue when it comes to recovering your data.

Traditionally, highly-skilled storage administrators would stay on top of these tasks, but today these skills are in high-demand, back-up administrators are stretched thin, and the need to manage not one, but many discreet environments is time-consuming and inefficient – especially given the lack of visibility and holistic reporting across platforms. In these scenarios, the chance of human error is increased.

AI can’t replace storage administrators, but it can act as a powerful assistant, or a ‘storage sidekick’. AI can monitor all of your storage platforms, all of the time – highlighting potential issues that can otherwise slip through the net, and spotting trends and insights that would take a whole team of data analysts to uncover.

The result… powerful real time intelligence to help you make decisions, prioritise remedial action and mitigate risks.


3. Extensive knowledge at your fingertips

One of the biggest advantages of AI is that it makes information and knowledge more accessible than ever before. AI can tap into a whole universe of data, and thanks to Generative Pre-trained Transformers (GPT) and Natural Language Processing (NPL), it can instantly give you the information you need to answer even the most specific query – and deliver it in a way that’s tailored to you.

We’ve built NPL and a GPT into Predatar’s Recovery Assurance platform. Trained on technical documentation for market-leading leading storage technologies, our extensive ‘knowledge base’ of expert articles from Predatar engineers and consultants built-up over more than 10 years, and best-practice articles from industry leaders – our AI is empowering security and storage professionals with extensive cyber resiliency knowledge at their finger tips.

Wrapping-up

Artificial Intelligence is quickly becoming critical for ensuring businesses are ready to launch a fast and effective response in the event of a cyber incident. Predatar is leading the way with AI for data resiliency.

Predatar’s R16: Orca release will ship with Aurora AI built-in, the world’s first AIOps assistant for Recovery Assurance. Find out more here, and stay-tuned as we dive deeper into this topic in the next few weeks.

Learn more about
Predatar recovery assurance

08 February 2024

Taking backup ‘scanning’ to the next level in the Predatar CleanRoom.

You’ve probably heard the term ‘scanning’ used in the backup and recovery space.

The chances are, you’re hearing it more and more as storage vendors increasingly tout their data resiliency capabilities.

But not all scanning is created equal. Predatar elevates scanning to the next level to help you find and eliminate dormant ransomware and viruses that traditional methods might overlook.

Traditional Scanning in Backup Systems

Today, the term ‘scanning’ is often overused—and even misused—in the context of backup and storage. Typically, storage vendors use the term to refer to searching data for anomalies using Shannon entropy.

If you are not familiar with Shannon entropy, you can learn more about it in our previous blog.

In a nutshell, Shannon entropy is a relatively basic mathematical equation used to spot random or unusual behaviour in data.

This method is a good starting point for spotting immediate anomalies but falls short of providing deeper insights or predicting future threats.

Predatar’s Advanced Scanning Approach

Predatar adopts a different perspective, viewing scanning as a comprehensive process using several tools and techniques to interrogate data in multiple ways in an isolated CleanRoom environment.

This multi-stage process goes way beyond the traditional scanning approach to identify and neutralize threats, using techniques including:

  • File signature scanning.
  • Machine learning for encryption detection.
  • In-memory analysis for uncovering fileless malware.
  • Behavioral analysis to combat scripts, injections, and ransomware.
  • EDR to find and remove known malware variants.

Comparative Analysis

Threat Detection:

  • Traditional: Focuses on detecting data unpredictability, and missing dormant threats.
  • Predatar: Uses a multifaceted approach to uncover a wide range of threats, including dormant ones.

Predictive Capabilities and Recovery:

  • Traditional: Offers no predictive insights and is limited to analyzing the current state.
  • Predatar: Predicts anomalies with Predatar Signal and provides a comprehensive recovery process in the CleanRoom.

Advanced Techniques:

  • Traditional: Lacks sophisticated malware detection methods.
  • Predatar: Incorporates a variety of advanced techniques for proactive threat detection and mitigation.

Conclusion

The traditional method of scanning in backup systems, mainly tied to Shannon entropy, is inadequate for today’s complex cybersecurity challenges.

Predatar’s approach includes anomaly detection and encompasses recovery and advanced threat analysis, offering a more thorough and proactive solution for safeguarding against sophisticated cyber threats.

What next?

Predatar empowers businesses to shrink their recovery gap and gives them confidence in their ability to mount a fast and effective recovery.  

Our Machine Learning-powered platform automates daily recovery testing, identifying issues and malware infiltration within your storage environment.  

Don’t let the recovery gap become your downfall. Take control, secure your data, and embrace recovery assurance with Predatar.  

Download our free e-book to learn more and bridge the gap to complete confidence. 

Learn more about
Predatar recovery assurance

02 February 2024

Beyond Shannon Entropy – Pushing the boundaries of anomaly detection

In today’s world of relentless cyber threats, it’s important that all backup and storage systems can detect unusual and suspicious activity in the data they’re protecting. 

To do this, most major storage vendors use a traditional mathematical concept called Shannon entropy to measure how unexpected, or random the behaviour of the data is. 

However, with innovative machine learning techniques, there are new, more intelligent ways to analyse data.  

Predatar Signal™ puts these techniques to work.

So let’s take a look at the limitations of Shannon Entropy, and the benefits of the new techniques that Predatar brings into play.

Introduction

Shannon entropy, conceptualised by engineer and mathematician Claude Shannon in 1949, is a fundamental metric in information theory.

Since its conception, Shannon Entropy has become the go-to method for detecting behavioural anomalies in large data sets.

Today, it’s the prevalent method used by all major storage technology vendors to underpin their anomaly detection capabilities.

While effective in measuring the current state of data, Shannon entropy lacks predictive capabilities and complex pattern recognition.

As data becomes more complex, and cyber threats evolve to avoid detection, we need more sophisticated analysis methods.

Predatar Signal is the intelligence engine under the hood of Predatar Recovery Assurance Technology.

It uses three different machine learning models (LSTM Autoencoder, LSTM Traditional, and ARIMA) to detect anomalies in storage systems. The result – faster, more precise threat identification that will continue to get smarter and more effective.

Predatar Signal: An Advanced Approach 

Predatar Signal integrates three advanced machine learning models, each contributing uniquely to anomaly detection: 

  1. LSTM Autoencoder: This model excels in identifying intricate patterns within backup data. Unlike Shannon entropy, it can detect subtle abnormalities that might otherwise go unnoticed.
  2. LSTM Traditional: Utilising historical data, this model forecasts future backup behaviours. It provides proactive anomaly detection, a feature absent in Shannon entropy’s approach.
  3. ARIMA: Specialising in time series forecasting, ARIMA offers in-depth statistical insights into backup trends, something beyond the scope of Shannon entropy. 

Comparative Analysis 

Complex Pattern Recognition 

  • Shannon Entropy: Limited to measuring unpredictability, lacks the sophistication to identify complex patterns. 
  • Predatar Signal: The LSTM Autoencoder’s advanced pattern recognition capabilities provide a more nuanced and thorough analysis of backup data. 

Predictive Capabilities 

  • Shannon Entropy: Offers no predictive insights, solely focusing on the current state of data. 
  • Predatar Signal: LSTM Traditional model predicts future anomalies, enabling pre-emptive measures for cyber resilience. 

Time Series Analysis 

  • Shannon Entropy: Does not provide detailed temporal analysis. 
  • Predatar Signal: The ARIMA model excels in this area, offering valuable insights into time-dependent data trends. 

Conclusion 

While Shannon Entropy remains a valuable tool for understanding data randomness, Predatar Signal offers a significantly more comprehensive and predictive analysis.  

Integrating LSTM Autoencoder, LSTM Traditional, and ARIMA models, marks a paradigm shift in backup system anomaly detection.  

This advanced approach is not just about detecting anomalies; it’s about predicting and preparing for them, thus reinforcing the pillars of cyber resilience in an increasingly complex data landscape. 

What’s next? 

Predatar empowers businesses to shrink their recovery gap and gives them confidence in their ability to mount a fast and effective recovery. 

Our Machine Learning-powered platform automates daily recovery testing, identifying issues and malware infiltration within your storage environment. 

Don’t let the recovery gap become your downfall. Take control, secure your data, and embrace recovery assurance with Predatar. 

Download our free e-book to learn more and bridge the gap to complete confidence. 

Learn more about
Predatar recovery assurance

23 January 2024

What is the Recovery Gap and how to close it?

Imagine this scenario: your business is hit by a cyberattack, your data is held hostage by hackers, and your backups… fail to recover. 

This isn’t just a dystopian nightmare. 

It’s a harsh reality for many businesses who unknowingly harbour a hidden vulnerability – the recovery gap. 

But what is the recovery gap? 

Rick Norgate, Managing Director at Predatar, sheds light on this critical topic in a recent episode of the Predatar podcast.

We’ve captured some of the key points in this short blog.

Q. What is the Recovery Gap?

Rick defines the recovery gap as the difference between what businesses assume they can recover in the event of a data loss and the reality of what’s actually recoverable. 

The statistics are eye-opening: 

  • 8% of backups fail to recover even in normal circumstances. 
  • During a cyberattack, this failure rate can explode 10-fold, to a staggering 84%.

Q. What are the implications of having a recovery gap?

When an organization’s critical systems are taken down and are not immediately recoverable, the implications can be dire.

It’s not uncommon for businesses to be ‘offline’ for days or even weeks following a cyber-attack.  

Often, they are rendered completely unable to operate – production stops, sales stops, payroll stops, and the inability to communicate with staff and customers can compound the impact. 

The result… significant loss of revenue, reputational damage, loss of employee trust, and ongoing remedial costs.

In some cases, businesses fail to survive.

Q. How can businesses close their recovery gap?

Thankfully, there are some things businesses can do to close their recovery gap. Rick outlines several key steps: 

  • Secure the Foundations: Ensure backups have encryption and air-gapped copies to stop cyber criminals from compromising your data. 
  • Embrace Immutability: Keep at least one immutable backup copy immune to ransomware encryption. 
  • Test, Test, Test: Regularly test backups to guarantee recoverability. Predatar automates this process, eliminating the need for a small army to continually run manual tests. 

Wrapping up 

The recovery gap is a hidden vulnerability for many businesses and something that needs to be addressed to avoid a data breach becoming a disaster.  

Securing and regularly testing your data is essential for recovery success. 

What’s next? 

Predatar empowers businesses to shrink their recovery gap and gives them confidence in their ability to mount a fast and effective recovery. 

Our AI-powered platform automates daily recovery testing, identifying issues and malware infiltration within your storage environment. 

Don’t let the recovery gap become your downfall. Take control, secure your data, and embrace recovery assurance with Predatar. 

Download our free e-book to learn more and bridge the gap to complete confidence. 

Watch the full episode 

Want to hear more from Rick Norgate on how your organization can close its recovery gap and build recovery confidence? 

Click here to watch the full episode! 

 

Learn more about
Predatar recovery assurance

21 December 2023

The year in review with Rick Norgate

As the year comes to a close, it’s the perfect time to reflect on everything that we have achieved and share some insights into what Predatar users can expect in the year ahead.

In the first episode of our new-format Predatar Podcast, Managing Director, Rick Norgate shared his thoughts with host Xavi Umeh. We’ve summarised a few highlights from the interview in this short blog.


Key Milestones:

Looking back on 2023, it’s clear that, thanks to the hard work and dedication of the whole team, Predatar has strengthened its position as a leading innovator in the Recovery Assurance market.

Our commitment to R&D has driven us to introduce groundbreaking capabilities that are reshaping the industry landscape.

But the highlights of the year aren’t all about the technology. Standout milestones include:


1. Expanded Platform Support

In 2023, we diversified our platform support to bring Predatar Recovery Assurance capabilities backup products including IBM Defender Data Protect, Cohesity, and Veeam.

We also announced support for IBM FlashSystem this summer too, which means for the first time our customers can use Predatar to validate and clean snapshots in their Primary storage.

Our expanded platform support not only means that more organisations can benefit from Predatar’s AI-powered resiliency capabilities but, importantly, it means that our customers can deploy Predatar across more of their storage environment – providing a unified approach to data resiliency.


2. The launch of the Apex Partner Program

One of the year’s most important achievements was the launch of the Predatar Apex Partner Program.

This strategic initiative has allowed us to join forces with some exceptional storage and cybersecurity service providers worldwide.

Together, we are delivering groundbreaking recovery assurance and data resiliency to customers on a global scale.

3. Elevated User Experience

This year, we’ve taken huge strides to improve the user experience for our customers.

Today, we are proud to have a user interface that is highly intuitive and customisable with simple toggle-based controls, drag-and-drop functionality, and even a choice of colour themes.

In our latest release (R14 Eagle), we launched the much-requested dark mode option to improve usability, reduce user eye strain, and enhance energy efficiency.

 

The Biggest Challenge:

The year has not been without challenges.

Our roadmap is driven by our users, and one thing we repeatedly heard in their feedback was that, although they loved our CleanRoom technology, customers didn’t want to install the Predatar client on their Virtual Machines.

This was a real head-scratcher, but our R&D team knocked it out of the park with the solution. Our R14.1 Eagle release includes a unique agentless scanning capability built from the ground up.

This new technology means Predatar can run recovery tests and deep malware scans on VMs without the need to install a Predatar client or the need for administrator access.


Looking Forward:

As you would expect from the team at Predatar, our plans for the coming year are ambitious.

We will continue to grow the Apex Partner Program, expand support to even more platforms (both primary storage and backup), and, of course, there will be lots of innovations from our R&D team. Watch this space!


Wrapping Up:

In conclusion, 2023 has been a whirlwind of learnings, successes, and groundbreaking innovations.

We extend our thanks to our partners, collaborators, customers, and friends for the role they have played in this epic year.

Stay tuned in 2024 as we continue to launch solutions that will drive the Recovery Assurance market forward and deliver unbeatable data resiliency for our customers.

If you want to find out more you can watch the full interview on YouTube or listen to the audio version on Spotify.

Learn more about
Predatar recovery assurance

13 November 2023

The Evolution of Operational Resilience 

By Alistair Mackenzie, Founder & CEO at Predatar


In the financial services industry, operational resilience is entirely critical and completely indispensable in keeping our economies moving around the clock.
  

With the introduction of DORA (the Digital Operational Resiliency Act) in 2025, the EU is recognising it’s no longer sufficient for organisations to simply have secure data backups, instead, they must demonstrate the ability to recover from potential disasters seamlessly.

Overcoming the challenge has become even more critical in recent years due to evolving risks, particularly those related to cybercrime.

It’s also worth noting that similar stipulations are also being introduced in the UK as part of the Bank of England PRA (Prudential Regulation Authority) operational resilience framework.  

The Shifting Landscape of Operational Resilience 

Operational resilience is a term that has gained prominence in both the UK and the EU, and more widely in the US too as financial institutions with regulatory bodies rightly recognise the need to enhance the strength of the financial system, given its heavy reliance on technology.

But why the big focus now? 

The primary reason is the increased impact of disruptions in today’s interconnected world. With globalised systems and instant data transfers, any downtime in banking infrastructure affects not just a few, but virtually everyone.

Financial institutions are the lifeblood of economies, and even a brief interruption can result in substantial financial losses for businesses and individuals alike, as the crisis ripples outwards from the point of impact. 

There is also the emergence of bad actors, including nation-states and cybercriminal gangs which have further escalated the risk landscape.

Unlike natural disasters, the probability of a cyber-attack is increasing and is challenging to predict – even insurers and actuaries find it harder to quantify those risks, leading to greater uncertainty. 

Moving forward, the new DORA regulatory framework for operational resilience marks a significant departure from traditional disaster recovery and business continuity practices, leaving nothing to chance and requiring organisations to take precautions now.

Instead of focusing solely on risk avoidance, it emphasises a proactive approach to mitigating the consequences of an incident which entails two fundamental principles:

1. Identifying Critical Infrastructure

Organisations must identify their “minimum viable business” components – that is the systems and processes that are essential to their operations. By doing so, they can prioritise the recovery of these elements in the event of a disruption.

2. Proving Recovery Capabilities

The regulatory authorities no longer want businesses to merely measure the likelihood of an incident; they demand proof of recovery capabilities.

Organisations must demonstrate that they can restore critical infrastructure within a specified timeframe, which is particularly crucial in the financial sector, where even a short downtime can have severe repercussions.  

While the shift towards operational resilience is crucial for maintaining business stability, it poses significant challenges for organisations. One of the most substantial challenges is the need for continuous testing of recovery capabilities.

The business environment is in a state of constant flux, with updates and changes occurring daily, and as a result, the frequency of recovery testing must increase to ensure that the system can be restored in any situation.

Continuous testing is resource-intensive, demanding time, manpower, and financial commitments, making it impractical for many organisations to perform manually.

This is where automation becomes invaluable. 

Automation as the Solution 

The solution to the resource-intensive nature of continuous testing lies in automation.

Intelligent solutions exist to streamline the process using tools that can intelligently and proactively test stored data, run recovery scenarios, and conduct virus scanning seamlessly in the background.

By employing automation, businesses can ensure the ongoing integrity of their data and recovery processes without incurring excessive costs or burdening their teams.

It’s a practical and efficient approach to meet the demands of the impending DORA regulations. 

By embracing automation and proactively testing their recovery capabilities, organisations can navigate the challenges of operational resilience and emerge stronger, more resilient, and better prepared for whatever the future may hold. 

Operational resilience in action

Regardless of whether your organisation operates in a heavily regulated industry like the Financial Services sector, Operational Resilience is vital in the face of today’s cyber threat landscape. Discover how one global manufacturing firm is boosting their resilience with Predatar Recovery Assurance Software to keep production up and running running.  Read the story [3 min read]

 

Find out if Predatar is a good fit for your business by filling out a short questionnaire.

Learn more about
Predatar recovery assurance

28 September 2023

Blazing a trail with Recovery Assurance

There’s a new storage technology in town. Since the introduction of ‘Recovery Assurance Software’ or ‘RAS’ as an Innovation Trigger on Gartner’s latest Enterprise Storage Hype Cycle this summer, we’re hearing these words used with ever-increasing frequency.

As is the case with all emerging technologies – there isn’t yet a wide understanding of what it is, or why it’s important. This blog, by Predatar Founder and CEO, Alistair Mackenzie will help you get to grips with Recovery Assurance Software. And if anyone is qualified to do it, it’s Alistair. After all, Predatar has been developing it’s own Recovery Assurance technology for almost 2 years.  


Author: Alistair MacKenzie.

 

I have a confession to make. It’s been a while since I wrote my last blog, and after almost an hour of staring at a blank screen, I decided I’d try a bit of plagiarism. Unfortunately, my attempt to steal from today’s content ‘King of Thieves’, ChatGPT, fell at the first hurdle.

My question “What is Recovery Assurance Software?” returned the following response:

“As of my last update ‘Recovery Assurance Software’ is not a specific, widely recognised term in the field of software and technology…’

Chat GPT is a powerful tool, but it needs source content to feed it. The response above only goes to show how new this important technology is.

I guess I’ll have to write this blog the old-fashioned way 🙄!

Let me start with why.
Why is there such a buzz around the rise of “recovery assurance”? I believe there are 3 main drivers.

# 1. Increasingly sophisticated cyber-attacks.
The adversarial nature of cyber-crime with its many war-like descriptions has crowded out traditional disaster recovery concerns from conversations around risk management.

Deliberate contamination of traditional backup or replication-based DR solutions makes it practically impossible to use standard recovery procedures after a cyber-attack. As a result, firms have turned to using isolated recovery environments (IREs) or cleanrooms to verify and recover data from immutable backups copies held on storage systems.

 

#2. New regulation. In the financial services industry the EU’s DORA regulation, which came into force on the 16th January 2023, asks firms not to measure the likelihood of a cyber-attack, but to prove their resilience and recoverability. Previously it was sufficient to have a functioning backup system in place, but today, firms must prove they can fully recover when needed.

The challenge even with traditional business continuity planning was always the expense of regular, proactive testing. How many times have we heard of assets originally assigned for DR testing being reallocated for other projects? The cost in infrastructure and human resources all contributed to the alarming statistic that, on average, less than 1% of a firm’s data is tested for recovery each year.

 

#3. A tipping point for artificial intelligence.
Today’s ransomware gangs are equipped with the latest AI systems that are superhuman at writing code and quantum computer code-breaking capabilities that make modern encryption cyphers obsolete.

As a force for good, artificial intelligence is helping operations teams turn dumb data storage and backup infrastructure into intelligent detection engines, capable of alerting security analysts to adverse events and anomalous behaviour.

 

So, what is Recovery Assurance Software?
Only in July 2023 did Gartner, even recognise Recovery Assurance Software as an independent category.

Put simply, Recovery Assurance Software is designed to prove the recoverability of critical IT systems and data – so businesses can have certainty in their ability to remain operational when the worst happens.

Due to the rapid emergence of the three trends discussed – cyber-crime, regulation, and artificial intelligence – I’m certain that not only will this technology stick, but will soon find its way onto Gartner’s “slope of enlightenment.”


Recovery Assurance from Predatar
Predatar is leading the way in Recovery Assurance. Forward-thinking enterprises around the world are already using Predatar Cyber Recovery Orchestration to continually validate the integrity of their data and the speed of recovery. Read a short customer story (2 min read).


Learn more at our Data Resiliency Summit in October.
Join the Recovery Assurance trailblazers at the Control23 Data Resiliency Summit in London or online.
Find out more and sign-up now.

 

Learn more about
Predatar recovery assurance