Companies are recognising the increasing need to protect their SaaS environments, according to a new report.
Veeam Software has released the findings of its Cloud Protection Trends Report 2023, covering four key “as a Service” scenarios: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as a Service (SaaS), and Backup and Disaster Recovery as a Service (BaaS/DRaaS).
The report found nearly 90% of Microsoft 365 customers use supplemental measures rather than relying solely on built-in recovery capabilities. Preparing for a rapid recovery from cyber and ransomware attacks was the top cited reason for this backup, with regulatory compliance the next most popular business driver.
While new IT workloads are launching in the cloud at far faster rates than old workloads are being decommissioned in the data centre, a surprising 88% brought workloads from the cloud back to their data centre for one or more reasons, including development, cost/performance optimisation and disaster recovery.
With cybersecurity (including ransomware) continuing to be a critical concern, data protection strategies have evolved, and most organisations are delegating backup responsibilities to specialists, instead of requiring each workload (IaaS, SaaS, PaaS) owner to protect their own data. The majority of backups of cloud workloads are now being done by the backup team and no longer require the specialised expertise or added burden of cloud administrators.
The report found 98% of organisations utilise a cloud-hosted infrastructure as part of their data protection strategy. DRaaS is perceived as surpassing the tactical benefits of BaaS by providing expertise around Business Continuity and Disaster Recovery (BCDR) planning, implementation and testing. Expertise is recognised as a primary differentiator by subscribers choosing their BaaS/DRaaS provider, based on business acumen, technical IT recovery architects, and operational assistance in planning and documentation of BCDR strategies.
Unfortunately, as is often the case for new cloud-hosted architectures, some PaaS administrators are incorrectly presuming that the native durability of cloud-hosted services relieves the need for backup:
According to the report, 34% of organisations do not yet back up their cloud-hosted file shares, and 15% do not back up their cloud- hosted databases.
“The growing adoption of cloud-powered tools and services, escalated by the massive shift to remote work and current hybrid work environments, put a spotlight on hybrid IT and data protection strategies across industries,” says Danny Allan, CTO and Senior Vice President of Product Strategy at Veeam.
“As cybersecurity threats continue to increase, organisations must look beyond traditional backup services and build a purposeful approach that best suits their business needs and cloud strategy," he says.
"This survey shows that workloads continue to fluidly move from data centres to clouds and back again, as well as from one cloud to another — creating even more complexity in data protection strategy.
"The results of this survey show that while modern IT enterprises have made significant strides in cloud and data protection, there is still work to be done.”
The Veeam Cloud Protection Trends Report 2023 findings include:
Software as a Service (SaaS):
Infrastructure as a Service (IaaS): While organisations of all sizes now embrace hybrid-cloud architectures, it is not a one-way journey to the cloud that reduces the importance of the modern data centre.
Platform as a Service (PaaS): While most organisations initially “lift and shift” servers from the data centre to IaaS, most agree that running foundational IT scenarios, such as file shares or databases, as native cloud-services is the future for mature IT workloads.
Backup and Disaster Recovery as a Service (BaaS/DRaaS): Nearly every IaaS/SaaS environment also utilises cloud services as part of their data protection strategy in some form.
This year’s report showed a significant shift from last year as customers are increasingly interested in outsourcing their backups and gaining a “turnkey” or “white-glove” level of management service instead of the internal IT staff continuing to manage BaaS-delivered infrastructure. This shift indicates that experience and trust in providers is increasing and could also point to challenges over the past year with the IT talent supply chain.
The Veeam Cloud Protection Trends Report 2023, born from the annual Veeam Data Protection Trends Report, is the result of a third-party research firm that surveyed 1,700 unbiased IT leaders from seven countries (US, UK, France, Germany, Japan, Australia, New Zealand) on their use of cloud services in both production and protection scenarios to deliver the largest single view into the trajectory of hybrid strategies across the modern IT enterprise in today’s cloud-first digital landscape. The broad-based market study was conducted to understand the various perspectives on responsibilities and methodologies related to operating and protecting cloud-hosted workloads, and considerations when using cloud-powered data protection.