Shared responsibility – protecting your data in a public cloud

Yesica Schaaf,
Senior Director Cloud Marketing

Published date: November 14, 2018

As companies of all sizes move to the cloud, it is important to understand who is responsible for the security and protection of data, applications, and the overall cloud infrastructure.

For the small to medium size business, the cloud often completely replaces on-premises data centers. Larger organizations deploy a hybrid-cloud environment, extending their current data center into the cloud, moving data between on-premises and the cloud. “Born on the cloud” organizations start on the cloud and scale their businesses from there using cloud resources.

Now, with organizations of all sizes and types with data in the cloud, the common assumptions of data protection need to be readdressed. When data was in an organization’s data center, it was obvious that protecting the data was the IT organization’s responsibility. But when data is in the public cloud, the ownership lines become blurred. Identifying exactly who is responsible for what becomes important.

In fact, many public cloud providers are upfront about who is responsible for protecting what. As an example, Amazon Web Services (AWS) developed the AWS shared responsibility model, outlining that the business itself must take direct action to protect its critical data and enable business continuity in the event of an outage or disaster. Most if not all cloud providers have a shared responsibility clause in their terms and conditions that outlines that the public cloud provider is responsible for making sure the cloud infrastructure is functioning and available, but that you are responsible for protecting your data.

On top of the shared responsibility models outlined by the cloud providers, protecting data is not only key to business continuity, but also to maintaining competitiveness, complying with regulations, and managing brand reputation. Businesses surveyed in the Frost & Sullivan 2018 Cloud User Survey cite these concerns among their top priorities when moving to a cloud environment, including:

  • 61% cite security or unauthorized access to their data as a top concern.
  • 61% cite challenges with backup and recovery of cloud workloads.
  • 54% are concerned with ensuring compliance with appropriate industry regulations.

One of the benefits of being a Veeam customer, is that we have solutions to help you protect data across traditional, virtual, and cloud environments. These solutions can scale to meet the needs of the enterprise as well as maintain simplicity and reliability for small businesses that don’t have the time or resources to worry about the Availability of their data. With Veeam’s acquisition of N2WS earlier this year, we also provide cloud-native backup and disaster recovery specifically designed for Amazon Web Services (AWS), enabling organizations to back up data and applications as often as needed and recover them in seconds.

The comfort level that we have given to hundreds of thousands of customers around the world, is a comfort level that allows them to extend that protection out into the cloud. To get a deeper understanding on how to protect your data within a public cloud environment, check out this Frost & Sullivan report: “Is your data safe in an IaaS public cloud?”. You can also check out the Veeam multi-cloud demo series to get technical overview of our IaaS data protection solutions and more.

Makes disaster recovery, compliance, and continuity automatic

NEW Veeam Availability Orchestrator helps you reduce the time, cost and effort of planning for and recovering from a disaster by automatically creating plans that meet compliance.


Veeam Availability Orchestrator

Benefits of Cloud Object Storage

Read More

Reducing complexity with Cisco and Veeam

Read More

Reflecting on the one-year anniversary of GDPR

Read More