\u00a0<\/span><\/p>\n There is a maxim in the business continuity market that says that a backup on its own is worthless, but restoring a backup successfully is priceless. Too many organizations have suffered from backups that either failed to restore\u2014or restore correctly\u2014or that were already compromised. Failed backups are of no value from a business continuity perspective.<\/span>\u00a0<\/span><\/p>\n However, backups that restore correctly, are clean of all malware, and were encrypted so that the IT security teams knows that they were not compromised after the backup was created, are considered the best scenario for IT managers.<\/span>\u00a0<\/span><\/p>\n According to Sophos\u2019 <\/span>The State of Ransomware 2021<\/span><\/i> report, 37% of respondents said they were hit by ransomware and on average. While 96% said they got back their data after paying the ransom, only 65% of the encrypted data that was affected was restored. These statistics underscore how essential it is to not only have secure backups, but also protected backups stored in more than one physical location that are directly connected to the network.\u00a0\u00a0<\/span>\u00a0<\/span><\/p>\n There are five types of backups:<\/span>\u00a0<\/span><\/p>\n Since restoring the backup really is the ultimate goal, it is important to focus on what makes for successful backup-and-restore policies and procedures.\u00a0 Here are some recommendations that you might find helpful.<\/span>\u00a0<\/span><\/p>\n One of the more popular backup strategies is called the Grandfather Father Son Backup. This consists of a \u201cgrandfather\u201d backup that is done once a month, the \u201cfather\u201d component being a full backup once a week, and the \u201cson\u201d backup being a daily incremental. There are variations of this approach with the father backup being a weekly differential backup. It also could include a variety of backups during the day, such as an hourly catch-up or a backup at any time after specific criteria is met, such as prior to a software installation or a reconfiguration of the network, or after a malware scan.<\/span>\u00a0<\/span><\/p>\n As part of this backup strategy, the security staff might choose to do one backup at one time for a local site or cloud instance and a second time for the opposite local or cloud instance. The overhead will depend on various factors, including the backup software you select, whether you are backing up to the cloud or locally, the amount of data being backed up, and metrics that might be unique to your situation.<\/span>\u00a0<\/span><\/p>\n Sophos offers two products that help protect your backups. Sophos Workload Protection secures backups in the cloud and on the premises. Sophos Cloud Optix monitors Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform (GCP) accounts for cloud storage services without backup schedules enabled and provides guided remediation.<\/span>\u00a0<\/span><\/p>\n Speak to your Sophos representative<\/a> to discuss your backup security requirements and how Sophos can help. Visit our website to learn more about Sophos <\/span>Cloud Workload Protection<\/span><\/a> and <\/span>Sophos Cloud Optix<\/span><\/a>, and to activate a free trial.<\/span>\u00a0<\/span><\/p>\n<\/p><\/div>\nTypes of backups\u00a0<\/span><\/b>\u00a0<\/span><\/h3>\n
\n
\u00a0<\/span>Recommendations on effective backup restores<\/span><\/b>\u00a0<\/span><\/h3>\n
\n
\n
\n
\n
\n
Best backup schedules<\/span><\/b>\u00a0<\/span><\/h3>\n
\u00a0<\/span>Learn more<\/span><\/b>\u00a0<\/span><\/h3>\n
![](\"https:\/\/news.sophos.com\/wp-content\/uploads\/2022\/03\/Copy-of-Featured-Image-for-Nak-Sec-Sophos-News-blogs-10.png\"\/)
<\/p>\n