Introduction
But if you really think about it – are you sure?
Microsoft takes care of quite a bit and provides a great service for their customers. However, Microsoft’s primary focus is on managing the Office 365 infrastructure and maintaining uptime to your users. They are empowering you YOU with the responsibility of your data. The misconception that Microsoft fully backs up your data on your behalf is quite common, and without a shift in mindset, could have damaging repercussions when this responsibility is left unattended.
Ultimately, you need to ensure you have access to, and control over, your Exchange Online, SharePoint Online, OneDrive for Business and Microsoft Teams data.
The report explores the hazards of not having and Office 365 backup in your arsenal, and why backup solutions for Microsoft Office 365 fill the gap of long-term retention and data protection.
-Karen St.Clair, IT Manager, Columbia Power & Water Systems
The Big Office 365 Misconception
Microsoft Office 365 offers geo redundancy, which is often mistaken for backup. Backup takes place when a historical copy of data is made and then stored in another location. However, it is even more important that you have direct access to and control over that backup. So, if data is lost, accidentally deleted, or maliciously attacked, for example – you can quickly recover. Geo redundancy, on the other hand, protects against site or hardware failure, so if there is an infrastructure crash or outage, your users will remain productive and often oblivious to these underlying issues.
-Microsoft Documentation
7 Reasons Why Backing Up Office 365 is Critical
You or your boss might be thinking, “The recycle bin is probably good enough.” This is where many people get it wrong. The average length of time from data compromise to discovery is over 140 days. A shockingly large gap. The likelihood is high that you will not notice something is missing or gone until it’s too late for the recycle bin.
By talking with hundreds of IT professionals across the globe who have migrated to Office 365, seven vulnerabilities in data protection rise to the top:
#1 Accidental Deletion
Native recycle bins and version histories included in Office 365 can only protect you from data loss in a limited way, which can turn a simple recovery from a proper backup into a big problem after Office 365 has geo-redundantly deleted the data forever, or if the retention period has passed.
There are two types of deletions in Office 365 platform, soft delete and hard delete. An example of soft delete is emptying the Deleted Items folder. It is also referred to as “Permanently Deleted.” In this case, permanent is not completely permanent, as the item can still be found in the Recoverable Items folder.
A hard delete is when an item is tagged to be purged from the mailbox database completely. Once this happens, it is unrecoverable, period.
#2 Retention Policy Gaps and Confusion
Another type of recovery, a point-in-time restoration of mailbox items, is not in scope with Microsoft. In the case of a catastrophic issue, a backup solution can provide the ability to roll back to a previous point-in-time prior to this issue and saving the day.
With an Office 365 backup solution, there are no retention policy gaps or restore inflexibility. Short term backups or long-term archives, granular or point-in-time restores, everything is at your fingertips making data recovery fast, easy and reliable.
#3 Internal Security
Access to file and contacts changes so quickly, it can be hard to keep an eye on those in which you have installed the most trust. Microsoft has no way of knowing the difference between a regular user and a terminated employee attempting to delete critical company data before they depart. In addition, some users unknowingly create threats by downloading infected files or accidentally leaking usernames and passwords to sites they thought they could trust.
Another example is evidence tampering. Imagine an employee strategically deleting incriminating emails or file – keeping these objects out of the reach of the legal, compliance or HR departments.
#4 External Security Threats
External Threats can sneak in through emails and attachments, and it is not always enough to educate users on what to look for – especially when the infected messages seem so compelling. Exchange Online’s limited backup/recovery functions are inadequate to handle serious attacks. Regular backups will help ensure a separate copy of your data is uninfected and that you can recover quickly.
#5 Legal and Compliance Requirements
Access to file and contacts changes so quickly, it can be hard to keep an eye on those in which you have installed the most trust. Microsoft has no way of knowing the difference between a regular user and a terminated employee attempting to delete critical company data before they depart. In addition, some users unknowingly create threats by downloading infected files or accidentally leaking usernames and passwords to sites they thought they could trust.
Another example is evidence tampering. Imagine an employee strategically deleting incriminating emails or file – keeping these objects out of the reach of the legal, compliance or HR departments.
#6 Managing Hybrid Email Deployments and Migrations to Office 365
External Threats can sneak in through emails and attachments, and it is not always enough to educate users on what to look for – especially when the infected messages seem so compelling. Exchange Online’s limited backup/recovery functions are inadequate to handle serious attacks. Regular backups will help ensure a separate copy of your data is uninfected and that you can recover quickly.
#7 Teams Data Structure
You need to protect data in these locations, but that is not all you need to protect. Teams has settings, configurations, and membership which all need to be protected and recoverable. A purpose-built backup solution can protect not only the data but also these settings and their associated interconnections between applications.
More than ever before, people are spinning up Teams for projects and special initiatives at a rapid rate. But once you complete a project for long-term needs such as legal and compliance requests. What often happens is that these Teams get mistakenly deleted or retention misapplied, which makes other files or essential documents unavailable.
Backups can also help in short-term scenarios. For example, if an employee says something inappropriate in a Teams conversation, but then deletes the message, having a backup would make those chats recoverable and available to HR for review. Third-party backup vendors not only provide protection from the unknown but can also offer a variety of ways to restore missing or accidentally deleted teams or channels.
How Often Do These Reasons Happen?
Over 1,000 IT professionals were asked what forms of data loss they had experienced in the cloud. User error/accidental deletion, security threats and retention gaps all made the list from 18% to as high as 37%.
The scary reality is that even though sensitive cloud data is stored in Office documents, an estimated 76% is not being backed up. In fact, IDC states that 6 out of every 10 organizations do not have a data protection plan for their Office 365 estates. Do you work in one of these unprotected organizations? If do, hopefully you now have the insights available through this report to encourage your organization to protect its Office 365 data.
Conclusion
You already made a smart business decision by deploying Microsoft Office 365, now find a backup solution that offers you both complete access and complete control of your Office 365 data and avoid the unnecessary risks of data loss.
Veeam.com, 2021, 7 Critical Reasons for Office 365 Backup, 2021, <https://www.ebulletinsresources.com/hubfs/D1/ThinkOn/Veeam_7_Critical_Reasons_Office365_ThinkOn-_EN%20(2).pdf?hsCtaTracking=da0c2ea0-58cc-461a-9a15-efe6e6e9cd3a%7C9bdf99e4-7a84-4bb8-9744-4c761e058e58>
Recent Comments