Veeam Research finds that organizations are improving modern data protection for cloud workloads to mitigate cybersecurity risks

Columbus, Ohio–(BUSINESS WIRE)– Veeam® Software, the leader in modern data protection, today released the findings of the company’s 2023 Cloud Protection Trends Report, which covers four key “as a Service” scenarios: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as a Service (IaaS), Platform as a Service (PaaS), Software as a Service a Service (SaaS), and Backup and Disaster Recovery as a Service (BaaS/DRaaS). The survey found that companies recognize the increasing need to protect their SaaS environments. For example, nearly 90% of Microsoft® 365 customers surveyed use additional safeguards rather than relying solely on built-in remediation capabilities. Preparing for rapid recovery from cyber and ransomware attacks was the most cited reason for this backup, with regulatory compliance the next most popular business driver.

Highlights of the report:

  • While new IT workloads are launched to the cloud much faster than old workloads are decommissioned in the data center, a surprising 88% brought workloads from the cloud back to their data center for one or more reasons, including development, cost/performance optimization, and disaster recovery.

  • With cybersecurity (including ransomware) remaining a critical issue, data protection strategies have evolved and most organizations are delegating backup responsibilities to specialists, rather than requiring each workload owner (IaaS, SaaS, PaaS) to keep their own data protects. The majority of cloud workload backups are now done by the backup team and no longer require the specialized expertise or additional burden of cloud administrators.

  • Today, 98% of organizations use cloud-hosted infrastructure as part of their data protection strategy. DRaaS is recognized as a solution that exceeds the tactical advantages of BaaS by providing expertise in Business Continuity and Disaster Recovery (BCDR) planning, implementation, and testing. Expertise is recognized as a primary differentiator by subscribers choosing their BaaS/DRaaS provider, based on business acumen, technical IT recovery architectures, and operational assistance in planning and documenting BCDR strategies.

  • Unfortunately, as is often the case with new cloud-hosted architectures, some PaaS administrators mistakenly assume that the native durability of cloud-hosted services alleviates the need for backup: 34% of organizations are not yet backing up up their cloud-hosted file shares, and 15% don’t back up their cloud-hosted databases.

“The growing adoption of cloud-powered tools and services, escalated by the massive shift to remote working and today’s hybrid work environments, is putting a spotlight on hybrid IT and data protection strategies across industries,” said Danny Allan, CTO and Senior Vice President of Product Strategy at Veeam. “As cybersecurity threats continue to grow, organizations need to look beyond traditional backup services and develop a targeted approach that best fits their business needs and cloud strategy. This research shows that workloads move fluidly from data centers to the cloud and back, as well as from one cloud to another, further complicating data protection strategy. The results of this survey show that while modern IT enterprises have made significant advances in cloud and data protection, there is still work to be done.”

The Veeam Cloud Protection Trends Report 2023 findings include:

Software-as-a-Service (SaaS):

  • 90% of organizations realize they need Microsoft 365 backup. The report found that only 1 in 9 (11%) organizations are not protecting their Microsoft 365 data. A promising 89% majority use third-party/BaaS backups or enhanced Microsoft 365 for legal hold, or both.

  • As data protection strategies have evolved and ransomware remains a top priority, most organizations are delegating backup responsibilities to backup specialists, rather than requiring each workload owner (IaaS, SaaS, PaaS) to protect their own data. This promotes the progression of backup to a conventional part dedicated to the traditional backup manager versus the application team.

Infrastructure as a service (IaaS): While organizations of all sizes are now embracing hybrid cloud architectures, it’s not a one-way ticket to the cloud that diminishes the importance of the modern data center.

  • 30% of cloud-hosted workloads came from cloud-first strategies, where new workloads are launched in the cloud much faster than old workloads are decommissioned in the data center.

  • 98% of organizations use cloud-hosted infrastructure as part of their data protection strategy, including cloud storage tiers, cloud infrastructure as a disaster recovery site, or using BaaS/DRaaS providers.

  • 88% of organizations moved workloads from the cloud back to their data center for one or more reasons (development, cost/performance optimization, or disaster recovery). while workloads move from data center to cloud, cloud to data center or from one cloud to another cloud.

  • The majority of cloud workload backups are now done by the backup team and no longer require the specialized expertise or additional burden of cloud administrators. While nearly every organization acknowledged having long-standing legal mandates, only half of organizations keep backups of their cloud data for even a year.

Platform-as-a-Service (PaaS): While most organizations initially “lift and shift” servers from the data center to IaaS, most agree that running basic IT scenarios, such as file shares or databases, as native cloud services is the future for mature IT workloads :

  • 76% run file services within cloud-hosted servers and 56% run managed file shares from AWS or Microsoft Azure

  • 78% run databases on cloud-hosted servers and 65% manage databases from AWS or Microsoft Azure

Backup and disaster recovery as a service (BaaS/DRaaS): Almost every IaaS/SaaS environment also uses cloud services as part of their data protection strategy in some form.

  • 58% of organizations use managed backup (BaaS) compared to the 42% who use cloud storage as part of their self-managed data protection solution. Of particular note, nearly half (48%) started with self-managed cloud storage, but eventually moved to BaaS.

  • Nearly every organization (98%) claims to use cloud services as part of their data protection strategy, though that ranges from cloud storage as a repository to full-fledged BaaS or DRaaS services.

  • BaaS is primarily sought after for gaining operational and economic efficiencies, as well as ensuring data can survive disasters and ransomware attacks. Remarkably, BaaS is no longer seen as the “tape killer” that early experts offered, with organizations claiming that nearly 50% of their data is still stored on tape during its lifecycle, regardless of their use of cloud-based data protection services.

  • DRaaS is seen as a solution that exceeds the tactical advantages of BaaS by providing expertise in BCDR planning, implementation, and testing. Expertise is seen as a primary differentiator by subscribers choosing their BaaS/DRaaS provider, based on business acumen, technical IT recovery architectures, and operational assistance in planning and documenting BCDR strategies.

This year’s report showed a significant shift from last year as customers become increasingly interested in outsourcing their backups and obtaining a “turnkey” or “white glove” level of management service in instead of internal IT staff continuing to manage BaaS-provided infrastructure. This shift indicates increasing experience and confidence in providers and could also point to challenges over the past year with the IT talent supply chain.

The 2023 Veeam Cloud Protection Trends Report, which evolved from the annual Veeam Data Protection Trends Report, is the result of a third-party research firm that surveyed 1,700 unbiased IT leaders from 7 countries (US, UK, France, Germany, Japan, Australia, New Zealand ) on their use of cloud services in both production and defense scenarios to provide the largest overview of the trajectory of hybrid strategies in the modern IT enterprise in today’s cloud-first digital landscape. The broad market research was conducted to understand different perspectives on responsibilities and methodologies related to managing and protecting cloud-hosted workloads, and considerations when using data protection in the cloud.

Download additional details from the 2023 Veeam Cloud Protection Trends Report at https://vee.am/CPT23. For more information, visit www.veeam.com.

About the report

Veeam® has had the research carried out in the autumn of 2022 by an independent research agency. The report surveyed 1,700 unbiased IT leaders about their use of cloud services in both production and defense scenarios, requesting representative personas for each scenario, so that the differences between personas’ perspectives, as well as strategic drivers and backup methodologies, could all be gathered . .

This was a broad market study on unbiased organizations running at least one production workload in a cloud (IaaS, PaaS or SaaS). The research was conducted on behalf of Veeam to understand the perspectives, responsibilities and methodologies of the different personas regarding managing and protecting cloud-hosted workloads, as well as considerations for using cloud-powered data protection.

About Veeam software

Veeam® is the leader in modern data protection. The company provides backup, recovery and data management solutions through a single platform for cloud, virtual, physical, SaaS and Kubernetes environments. Veeam customers are confident that their apps and data are protected against ransomware, disasters and malicious actors and are always available with the industry’s simplest, flexible, reliable and powerful platform. Veeam protects 450,000 customers worldwide, including 81% of the Fortune 500 and 70% of the Global 2,000. Veeam is headquartered in Columbus, Ohio, with offices in more than 30 countries. Veeam’s global ecosystem includes more than 35,000 technology partners, resellers and service providers and alliance partners. For more information, visit https://www.veeam.com or follow Veeam on LinkedIn @veeam-software and Twitter @veeam.

Leave a Reply