7 ways to implement a cloud disaster recovery strategy

Cloud disaster recovery


There’s a lot resting on a CIO’s shoulders when if comes to disaster recovery (DR) plans. Data is now a core asset so disaster recovery is no longer just about system recovery but also about data recovery. You will probably be surprised to hear that about 40% of organisations don’t have a disaster recovery plan of any sort and even if they do exist they may well not be maintained to reflect the ever-changing infrastructure, and worst of all they are not tested.

There are tried and tested best practices which will  help you put together a robust disaster recovery strategy, below we suggest 7 you will find an invaluable place to start.


Don’t leave your DR planning to a  few IT people who have a bit of time on their hands. Make DR planning a strategic and business imperative and make sure that all your business colleagues are proactively informed. Encourage them to give feedback while being aware that you are the lead on this programme


Risks run from manmade to natural disasters and come in all shapes and sizes from idiotic mistakes to tsunamis. Assign each one a likelihood of occurrence, being neither too confident nor too pessimistic.  Your plan should include a systems prioritising strategy, categorising your systems by criticality.  Be aware of scenarios where any downtime might be critical and those where it might be some time before major issues will occur.


IT teams have in place rock-solid, secure and stable infrastructures and people are unwilling to mess with them. If they are asked to they often play the ‘security’ card. You need to counter this by reassuring your team of the trust your institution places in external suppliers, from HR, legal and financial and that IT is no different. This argument might be easier if you are already using SaaS applications like email, Office and ERP tools so use this success to leverage your case.


Disaster recovery should appear high on the list of budgetary priorities for any IT team; it rarely does. So you might piggyback DR costs for planning, solution selection, deployment and testing on some other IT effort and virtualisation is one of the most appropriate. Virtualization gives you portability of applications and the pay-as-you-go cloud economic model gives you an affordable off-site option for any DR strategy. Don’t forget that you will need a robust recovery option which ensures that applications and data are recoverable without threatening business continuity.


Mobility is becoming one of the top concerns for any IT team and with Gartner predicting that by 2017 50% of employers will require staff to bring their own devices into the workplace suddenly the risk of data loss from personal devices is a major issue. It is essential that you work with your institution to develop a AUP (acceptable use policy). This will provide a framework for what the enterprise can and can’t do with an employee-owned device and how much access any employee can have to institutional data. Your DR plans will need to revolve around this policy.


Don’t let fear of the unknowable impact on your smooth running of your team. Set sensible expectations for your team and put in place regular check-points to make them feel confident that they are heading off disaster with their work. Over the long term you need to build a culture where DR testing is no different from testing an application before deployment; don’t let it become stigmatised.


There are numerous risks and contingencies which you will need to account for in any DR plan. Be savvy and use the cloud and virtualisation to more easily meet the DR requirements within your budget. If you use real-world examples, preferably from within your own institutions, and show how you will manage any crisis without damaging activity or security you are half way towards making your DR plan part of the fabric of running your business.

If you can’t stand up in front of your senior management team, tell them you have a comprehensive DR plan and demonstrate how risks are mitigated and continuity assured, you need to go back to the top of this list and start again.

Look at ComVault for more information on this.




Immerse yourself in AWS


The Cloud is becoming ever more central to all parts of higher and further education from central IT to research, teaching and learning. Amazon recognises that help is needed to find your most appropriate route through what can be a maze.

AWS immersion days will show you best practices for deploying applications, optimising performance, monitoring cloud resources, driving efficiencies, reducing costs and more. And you will meet AWS staff so you can start building beneficial relationships to help you as and when your institution changes and you need advice or help.

You can see more details and register here. If you can’t go to this one keep your eye on the AWS website for the next announcement.


10 Mistakes to avoid when choosing a cloud

cloud mistakes

The benefits of moving to the cloud are compelling but with a new cloud infrastructure comes a new set of challenges and risks that require a new way of thinking. From the very start, you will need an in-depth understanding of the new mindset that cloud technologies demand. If you don’t learn quickly you may well fall foul to one of these 10 mistakes.

  1. Leaping before you look – cloud is a means to an end: you want happy users using applications that meet their needs and your security and compliance needs. Make sure that this aim does not get lost in a complex, technical strategy.
  2. Assuming all clouds offer the same service – private, public or hybrid, the right cloud mix depends on your specific requirements as well as the applications and infrastructure you have already invested in. Don’t forget your requirements will almost certainly change. So when you choose your cloud supplier don’t think you have ‘found the one’. Choosing a cloud supplier and structure is not a marriage and you may well need to change suppliers, avoid being locked in.
  3. Becoming too stressed over varying performance levels – different suppliers will provide varying services levels for a given application. They will vary in different regions and for various set-ups. It is up to you to plan for specific performance levels and be ready to tweak them until you reach your goals.
  4. Expecting any application to run on any cloud infrastructure – cloud providers are not OS agnostic. If your infrastructure is heavily dependent on Windows Google will not be an option for you. Some legacy systems aren’t supported by any cloud provider. Do your homework in detail before committing to a provider.
  5. Forecasting the same cost distribution for all your resources across all suppliers – the more specialised your application the more likely your cost is to vary considerably across different suppliers.
  6. Assuming all suppliers work to the same SLA – every supplier will have their own SLA and these might even vary from service to service. Remember to read the small print very carefully before you sign up and pay particular attention to novation clauses.
  7. Not aligning 3rd party support across different cloud providers  – applications based on specific virtual appliances are unlikely to be supported to the same level by every cloud provider. Don’t leave it until an advanced implementation stage before you discover this, check the small print early on.
  8. Designing an application without considering your cloud provider’s unique characteristics – if you ignore these unique variables you are setting yourself up for an unpredictable project as far as cost, performance and later maintenance are concerned.
  9. Not leveraging the full potential of the cloud – choosing a supplier doesn’t mean you have to migrate all your applications in one fell swoop. Don’t forget that for each service and application you might choose a different approach, you just need to beware of creating an overly complex infrastructure.
  10. Ignoring disaster recovery and automated migration requirements – application downtime is always going to be a  challenge. It is up to you to ensure all your applications remain available through cloud outages and that it is easy to migrate to your chosen cloud provider from your existing set-up and legacy systems. It is up to you to  plan for Recovery Point Objective, Recovery Time Objective and automated migration requirements for the long term, some suppliers may help but not all, check before you sign.

Whatever route you take keep at the forefront of your mind that what you need and get today WON’T be the only thing you need tomorrow, remain agile and flexible to make the most of being on the cloud.

Share this with your colleagues and don’t forget that there is more advice and support on this blog.

Thanks to CloudEndure.com 

What does data egress mean for higher education?

Researchers are beginning to rely on cloud computing to help them drive through breakthrough science projects and they need to be able to feel confident about how much this is going to cost. Amazon recognizes this and last March they offered a discount for qualified researchers when they are downloading or sharing data. Amazon have written a useful post on their blog which makes the situation clear for researchers everywhere.

Amazon database

Setting up an Amazon Web Services account is straight-forward if you use the Jisc Amazon Web Services Portal and don’t forget that you will benefit from the speed and security of the Janet network.

We know the importance of your research and know that the Jisc / Amazon / Arcus partnership will keep you at the cutting edge of what you need.


Have you got a hybrid cloud road-map?

Hybrid Cloud in hand

Building a hybrid cloud road map

Cloud is a hot commodity in the IT community just now and we are all thinking that we should be migrating all or some of our IT infrastructure. The environment is rapidly changing and hybrid cloud is all the rage. But it can be hard to put a long-term hybrid cloud strategy in place.

The hybrid cloud model allows you to deploy a combination of private and public cloud services. You can move workload between clouds using them at their optimum comfort level. Cloud bursting allows you to use public clouds if and when capacity demands spike.

Hybrid clouds are dynamic IT entities that can be challenging to deploy and manage. Having a robust road-map will help you mitigate oversights or unexpected industry changes that could cripple your hybrid cloud. It’s important to consider all the trade-offs and not loose site of some of the more invisible benefits.

What MUST be part of the map?


It is not impossible that you will be expected to expand the benefits of your cloud infrastructure. Don’t forget:

  • Public cloud may not absorb all growth, budget monthly OPEX to handle extra IT burdens
  • Data stores may remain in private cloud and CAPEX will be needed for on-premises expansion

Public cloud providers are business partners, you do not control their behaviour and the relationship may be finite. Have contingency plans to cover:

  • The provider going out of business – how are you going to get your data back and where are you going to store it in the short term?
  • The provider failing to uphold its SLA – how are you going to move your business elsewhere? You should have an up-to-date list of alternative suppliers and have had initial conversations to start building a relationship?

We all know that there is a raft of official compliance to be managed and cloud is no exception. Perfectly acceptable cloud deployment today may not be compliant when regulations are introduced or updated. Make sure that you have a tried and tested process for introducing change and managing a compliance audit.


Three hybrid benefits you might be missing


Moving from one cloud platform to another can be complicated and expensive. Containers make it easier to move workloads between various cloud types. Containers encapsulate application workloads thus providing portability.

Moreover, you can use clustering services such as Google Kubernetes and Docker Swarm. Container clusters are easy to manage and work well with hybrid cloud computing where you might be using different types of cloud for different purposes.


If you have multiple cloud platforms for various applications and services you may well be dealing with native interfaces and that can be complex and disorderly. With a Cloud Management Platform (CMP) resources can be managed from a single domain with good automation and controls.

Users will get one, simple access route into public and private clouds even when there are different interfaces . Institutions can benefit from other automation services to manage usage through policy-based approaches that work with many back-end cloud-based technologies in a single unified system.


You may have already bought rafts of hardware for part of your cloud strategy. If the strategy changes and you are under pressure to move entirely to public cloud remember to point out that you can’t recover those hardware costs. In many cases maintaining a private cloud as part of a hybrid cloud strategy will be more cost-effective. The hardware investment has already been made and a hybrid approach can help recover that value.

Cloud strategy is always built on moving sands and you will need to be agile to stay upright; having a proper understanding of the environment and some reliable, basic building blocks will help.

What benefit do I get from using Jisc procured services? 

What is procurement?

It is vital that when you are planning any new capital expenditure you properly plan the procurement, the benefits of doing so are clear:

  • All stakeholders will be included in the planning process and share the decision making
  • It allows you to properly manage expectations on timescale and outcomes
  • It will allow you to recognise the range of support you need to fulfil the ideal solution

However, procurement is not always a straight forward process especially if you are required to follow the EU Procurement directives. These directives will be required if you are spending in excess of £164,176 (this value covers the entire life of a contract – not just a single years’ worth of spend).

Procurement Process

As well as reaching the right decision on the technology or services you are purchasing you will need to:

  • Establish the correct procurement procedure to be followed, you may need external support for this.
  • Draft Official Journal of the European Union (OJEU) or other advertisement, after Brexit this will continue to be the case until new legislation is passed and to-date there is no schedule on this.
  • You will need to draft procurement / contract documentation e.g. Pre-qualification Questionnaire (PQQ), Issue Invitation to Tender (ITT), draft terms and conditions of any final contract to all interested suppliers.
  • Manage and evaluate supplier’s tenders as well as feeding back to all unsuccessful tenderers.
  • Comply with your institution’s financial regulations or, in the case of major purchases, comply with EU regulations, after Brexit this will continue to be the case until new legislation is passed.

Procurement can be bureaucratic and time consuming and it is advisable to seek advice and support from a procurement specialist who can ensure that you select the most appropriate route.

How does pre-procurement help? 

 If you choose a pre-procured service, such as Amazon Web Services, Google Apps for Education or Microsoft 365, you can be confident that we have been through a rigorous procurement process and contracted the very best terms and conditions for the sector.

You will:

  • NOT be tied down by complex and lengthy processes
  • NOT have to spend money and time on expensive legal support
  • NOT have to source procurement support if you do not have it in-house
  • NOT have to justify your approach to senior management; Jisc is a trusted procurement partner.
  • Benefit from the sectors buying power (economies of scale). Jisc is more than likely to achieve better value for money than procuring the same services on your own.
  • Have in place a robust audit trail of procuring services in line with legislation and gaining value for money.

Rather than regretting the day you ever started a complex procurement procedure with anonymous multinational companies, if you choose pre-procured services you can rapidly be signed up and benefitting from improved efficiency and value for money.

Can Jisc help if you do choose to do a procurement?

If you do need to do a procurement yourself we have a useful guide to help you with the journey.



On-premise vs cloud; what’s more cost-effective for your apps?

Cloud and Apps

It is very easy to be lured onto the cloud by the concept of only paying for resources when you use them; moving your budget spend from CAPEX to OPEX is an attractive way to manage stretched budgets.

Do a triage first

But … it’s not as straight-forward as you may like and you need to be careful. Some applications aren’t suited to run in public cloud for either technological or financial reasons. You will need to do a careful triage and properly understand your application portfolio and analyse where they best sit. Ultimately much of the cloud vs on premises decisions come down to whether the application is designed to run in the cloud.

It’s not just about cost

It is important to dig deeper, look beyond the cost savings, why else are you moving to the cloud and is this the best thing to do? There are some useful Cloud cost analysis tools such as CloudCheckr and Cloudability  that will help avoid any surprises.

Remember that a change in platform will almost certainly require a change in culture. You will need to work into your implementation plans resistance from colleagues as well as technical hiccups. Granularly tracking resource use may throw up some unexpected budgetary considerations that will need careful management across your institution.

What’s the next level?

It’s going to take a while, but over time people throughout your institution will better understand and have more expertise to use cloud services at scale which will result in cost optimisations you didn’t expect to be possible. And you never know, one day the apps themselves will seek out the most efficient platform.

You can read more about this at TechTarget and finesse your cloud usage.

Research Council UK Cloud Computing Group survey

Regulatory and legal use of the public cloud

The cloud is becoming an ever more central resource for research and education. The Research Council UK (RCUK) Cloud Computing Working Group is keen to find out about users’ views on regulatory and legal use of ‘public cloud’, Amazon Web Services, Google Cloud Platform, Microsoft Azure to name but a few.

The data will be used in a short report that will inform a dialogue with cloud providers, research funders and government.

We need your input

The survey should not take you too long, you can find it here. Your details will not be shared beyond the working group and the resulting report will be an anonymised aggregate summary of the findings. It is important that cloud users voices are heard properly and this is your chance to contribute your experiences.



Ignoring the cloud or not having a cloud strategy will not be an option for CIOs

Cloud images

Gartner (technology analysts) believe cloud-first in software design and planning is gradually being augmented or replaced by cloud-only and this applies to both private and hybrid cloud scenarios.

‘More leading-edge IT capabilities will be available only in the cloud, forcing reluctant organisations closer to cloud adoption’ – Yefim Natis, vice president and Gartner fellow

These findings are based largely on commercial businesses. As teaching and research institutions begin to reap the benefits of working on the cloud it is becoming increasingly clear that the pace of change is speeding up. According to Gartner the commercial SaaS market alone is expected to grow 37% globally by 2020. IaaS and PaaS spending is set to grow to a point where it represents 27% of overall IT spending; the educational market place is likely to follow suit.

With this pace of change it will be important for organisations to build a robust cloud strategy allowing for flexible, agile change. There is an interesting article in Computer Weekly which gives food for thought for institutions managing their move to the cloud. There is some interesting research from Insight on 2016 Cloud trends which also suggests the same embedding of the cloud in a range of business types and sizes.


Jisc knows that you will be starting from a range of different points and we are here to support you from whichever standpoint you come.


Learn more with AWS webinars

Extend your knowledge base with AWS webinars

Extend your knowledge base with AWS webinars

Keep up to speed with Amazon webinars

Applications on the cloud develop at a rapid pace and it is important that you keep up to speed. Amazon are helping. They offer a selection of live online presentations covering a broad range of topics at a range of technical levels so you should be able to find something that helps you.

They are covering all the buzz topics at the moment: security, storage, big data and more; you’ll learn about products, solutions and best practices.

You can see the entire series here and you can sign-up with Amazon online.