As a managed cloud and IT infrastructure solutions provider, Webair has a deep focus on providing fully managed Disaster Recovery and Backupsas- a-Service. Webair is often tasked with handling these services for organizations that have complex technical and non-technical requirements. From a technical standpoint, these requirements include supporting multiple platforms such as VMware, HyperV, Physical Servers, IBM Power, and direct storage, in-depth network integrations with SD-WAN, MPLS, and automated network failover via dynamic routing. Some of the nontechnical requirements that need to be met include high compliance requirements, cybersecurity insurance, legal liability, complex contracts, and having to deal with the customers own strict security regulations. With this particular client, it was critical that the solutions met all of the strict technical and non-technical requirements mentioned above.
Most multinational enterprises are required to meet strict compliance requirements. They’re subject to strict government-mandated data sovereignty and export regulations in each country they do business, making the implementation of a backup solution a tricky proposition. When multinational enterprises partner with Webair, all of the strict, mandatory requirements for backups will be met.
Many of Webair’s customers are multinational enterprises, including a security contractor with offices in nearly a dozen countries. The contractor is required to back up and store data in the country or region where data originates while maintaining compliance with SOX, ITAR, SJAs and GDPR. Not only that, but the organization faced a new challenge, which was a requirement to keep a 2nd copy of their entire data library without doubling the storage costs. If the contractor doesn’t comply with regulations that safeguard sensitive and confidential information, the consequences could be dire and deadly.
First and foremost, international safety and security could be in jeopardy. Second, penalties could be imposed. The average cost for multinational organizations experiencing non-compliance problems is $14.82 million, according to research compiled by the Ponemon Institute.
Webair had been using Veeam® Availability Suite™ to back up over 30 PB of data across more than 10,000 servers to meet data protection needs for all customers when a new challenge arose for the security contractor. Each facility needed a second archived backup copy. It had to be on a different medium and retained for varying time periods, depending on data sovereignty. And, the second backup process had to be automated and affordable.
“We had two choices to meet the contractor’s requirement,” said Sagi Brody, Chief Technology Officer at Webair. “We could build a second data center in each region and manage replication using third-party tools, but that would have been expensive and time-consuming. Or, we could leverage Veeam Cloud Data Management™ to quickly satisfy the contactor’s requirements. It was a very easy decision.”
B Webair leverages Veeam Cloud Data Management to store a second archived backup inAmazon S3 Glacier Deep Archive, saving the security contractor and other Webair customers millions of dollars in backup storage costs each year while maintaining data sovereignty and security compliance with global regulations such as SOX, ITAR, SJAs and GDPR. Veeam also helps Webair protect customers from ransomware.
“Veeam provides automation that allows us to store customer archival data on 2 distinct and diverse platforms, providing the highest levels of assurance for compliance and data protection,” Brody said. “Each customer’s backup is stored on Webair’s resilience storage platform, and their second copy is stored on ejected and encrypted virtual tapes. It’s like putting one copy on the moon and one on Mars. This is another great example of Veeam-sanctioned integration.”
Veeam integrates with the Amazon Web Services (AWS) Virtual Tape Library (VTL) gateway, enabling Webair to send the second archived backup to Amazon S3 Glacier and/or to Amazon S3 Glacier Deep Archive.
“The Veeam + AWS solution gives us the ability to bypass Amazon S3 Glacier and send archived backups directly to Amazon S3 Glacier Deep Archive, which is the most affordable long-term storage at the moment. This solution is saving our customers millions of dollars,” Brody said. “Veeam also provides complete visibility into the process. Veeam schedules, monitors, and reports on archived backups, so if customers are audited, they have all the information they need to prove compliance.”
Once the archived backup is in Amazon S3 Glacier Deep Archive, the virtual tapes are ejected, which prevents cybercriminals from accessing and ransoming them. Webair can remount the tapes and recover from them, but that requires a second encryption password, providing yet another security layer.
“Our job is to build business resiliency through data protection for our customers, including the security contractor that’s working to make the world a safer place,” Brody said. “Veeam helps us build business resiliency by meeting every technical backup and recovery requirement our customers have. We couldn’t do it without Veeam.”
Webair is a high-touch, agile managed cloud and IT infrastructure solutions provider. With a global network of fully compliant, highly secure data centers, Webair offers a vast selection of scalable, flexible, and secure solutions including Disaster Recovery-as-a-Service and Backups-as-a-Service that are customized to satisfy the unique requirements of each customer. Established in 1996 and headquartered in New York, Webair employs 100 people and serves customers in more than 30 countries. Webair is a Gold Veeam Cloud Service Provider (VCSP).
Webair makes business resilience easy, even for multinational enterprises facing the most stringent data security and compliance requirements. One of these enterprises is a security contractor with offices in numerous countries. The backups and archival data needed to conform to strict sovereignty requirements and needed to remain in the country or region where the data originated. The backups also needed to comply with a range of regulations, including the Sarbanes-Oxley Act (SOX), International Traffic in Arms Regulations (ITAR), Staff Judge Advocates (SJAs), and the General Data Protection Regulation (GDPR). After using Veeam for almost 10 years to house & secure customer data in its own data centers and on its own servers, Webair faced a new challenge. New and existing organizations such as this one were now requiring a complete 2nd copy of their entire long-term data archive be stored at another facility in the same source country, without increasing their already budgeted costs.