Risks and volumes of data loss can be significantly reduced. Any risk reduction strategy must nevertheless adapt to the size, the needs and especially the financial means of the company. From preventive measures to curative measures, here are the main provisions applicable to all profiles.
Awareness raising: good IT practices
Poor IT practices increase the vulnerability of data: file sharing on free platforms, backups of business files on personal computers, registration of identifiers for automatic login ... They are the result of ignorance, negligence or search for personal ease.
Documenting the IT procedures and define a charter of good practice is not enough. Training and user awareness actions will help to ensure their respect and strict application.
Preventive: backups and computer security
The preventive measures are intended to reduce the risk of incidents, loss or unavailability of data.
Computer security tools and protocols will primarily protect the company's network and computers against possible external or internal attacks:
Controlling user access : restrictions according to the user's privilege
s, changing passwords or session recovery when an employee leaves the company, etc.
Detection and security tools : firewall, anti-virus software, monitoring and monitoring of servers, intrusion detection (IDS) ...
Also check - data recovery abu dhabi
Regular updates of software and IT security tools!
A data backup policy will promote restoration in the event of a disaster. It must be defined according to several criteria:
Identification data: volumes, important data ...
Storage media : hard drives, servers, online backups ...
Backup method : full, incremental or differential back-up
Backup frequency : duplication in real time or backup according to schedule ...
Anticipation: PCA and PRA
The Business Continuity Plan (BCP) and the Business Resumption Plan (PRA) are intended to ensure the maintenance, usually in degraded mode, then the normal resumption of the business and / or IT processes of the business. company in case of crisis or disaster. If the measures defined during the development of a PCA / PRA depend on the specificities of the company, some advice still applies:
Imagine crisis scenarios and their impact on the business.
Identify resources and critical data of the company.
Define the roles of the team in charge of implementing the PCA / PRA.
Appropriate and regularly test the PCA / PRA.
Update the PCA / PRA according to the evolution of the company's infrastructures.
Healing: data recovery
Computer data shows a strong persistence. Falsely considered as permanently destroyed or lost, they are nevertheless recoverable in most situations.
The recovery of data must however be entrusted to a qualified expert , able to establish an accurate diagnosis and to implement appropriate means. The opinion of a specialized service provider prevails over any other attempt at recovery, an uncontrolled intervention likely to aggravate the damage and reduce the amount of data recoverable thereafter.
In case of data loss, here are some good reflexes to have:
Turn off the storage medium as soon as there is a failure (unusual hard disk noise, burning smell, etc.), a disaster or a serious system error.
Do not perform any software operations on the storage medium, such as running a system repair tool (CHKDSK), installing software, reinstalling or formatting the system ...
Do not use data recovery software , most of which is configured for specific faults or configuration error that may make the situation worse.
Do not physically interfere with the storage medium, such as opening a hard disk, using a hair dryer on a wet storage rack ...
Restore the backups you have on a different media or volume.
