Commvault is leaning hard into their Cloud Rewind (formerly Appranix) product. There's a customer on stage talking about why they are using it. This thought from that customer grabbed me... "The fastest recovery with the least amount of human intervention." Being able to reduce a dependency on humans to rebuild the cloud environment to the last known good is a big deal. Load balancers, firewalls, VPCs, etc. are all complex infrastructure items with dependencies that someone intimately familiar with the environment needs to rebuild. Automating recovery so that not only the data but also the cloud environment serving the app matters. But what about Terraform and similar automation tools to stand the environment back up? Yep, that's a thing, and I suspect many shops have their cloud environment living as IaC in Git. Okay...even if it's "easy" to stand the environment back up and then restore data into it, wouldn't you rather *not* have to rebuild it from scratch, and instead rewind to a point in time and have the app functioning again? To me, feels faster, less error prone, and should almost certainly remain compliant. Haven't had enough time to think of downsides yet. At first blush, Cloud Rewind seems like a nice tool to have on hand, especially if downtime is intolerable for the business. #CommvaultSHIFT
Consider, too, that your IaC code in Git may also have been compromised in the same attack. That's the current M.O. for ransomware attackers: first compromise the backup infrastructure, then the actual target systems. If your IaC is compromised, you may not be able to rebuild from scratch.
Helping Data Infrastructure Vendors Grow with Strategic Market Insights | Expert in Storage, Data Protection, Unstructured Data Management & Cloud Solutions
2moThe more complex the environment is, the greater the value. Also better if you need to do “rewind” at scale. Finally, a good point that Commvault made is about configuration drift / misconfigurations between approved blueprints and environments in production. Rebuild may not necessarily bring apps back to “last known good” state.