As organizations deal with continuously emerging trends and threats affecting how their business operates, they are turning to hybrid data centers for greater flexibility in how they manage data. According to IDC, the majority (over 80%) of enterprises in the Asia Pacific region are operating in a hybrid and/ or multi-cloud environment.

A hybrid data center is an adaptable, flexible IT environment that provides organizations with a viable and practical system to respond not only to ransomware but to various evolving business issues—on the fly. A hybrid data center delivers better security, performance, reliability, agility, scalability, and cost savings.

But deploying and supporting hybrid data centers presents several management challenges. While they enable companies to store and shift workloads as needed more efficiently and gain better control of sensitive data, hybrid environments add complexity to managing servers, storage, networks, and software throughout the IT infrastructure.

For instance, organizations must protect data and applications in the cloud and on-premises with a hybrid cloud. They must be able to recover data and applications in the cloud or on-premises, regardless of where the organization initially hosted the data and applications. They must also manage backup and recovery across the hybrid environment.

Here are three ways for organizations to successfully manage and protect their data in a hybrid data center.

1. Centralized backup

Centralized backup management is essential to successful data protection in a hybrid data center. A backup solution must have a centralized backup-management console to be effective.

Many backup software providers integrate their backup software with the management console offered by the cloud, hypervisor, or operating system provider. It makes managing backups as part of operations in a particular environment simpler. But a cloud-centric, hypervisor-centric, or operating system-centric approach to management is not practical in a hybrid data center.

A separate, centralized console can better manage data protection across a hybrid data center. Users and administrators can monitor and manage the backup and recovery of workloads running on-premises and in the cloud. Just as important, they can centrally create policies like service-level agreements for each environment, then apply them as appropriate in each environment.

2. Workload mobility

In a hybrid environment, workloads reside in the cloud, on-premises, or both places. A data-protection solution must do more than identify the location of the backup. It must also recognize the environment into which a workload is recovered. It is vital if the solution is to take the steps necessary for successful data recovery.

This ability to back up and recover workloads in either a cloud or on-premises environment is essential. Organizations can accomplish this with a solution that backs up physical machines, then restores them to virtual machines hosted either in the cloud or on-premises. The right solution should also integrate with the cloud, hypervisor, and operating system APIs to perform backups and recoveries.

3. Protection against ransomware

As more companies rely on backups to defend against ransomware attacks, the attackers have put a target on backup software. Because if they can compromise backups or the backup software, they’re better able to extract a ransom payment. Backup software deployed in a hybrid data center should provide measures to mitigate and repulse these attacks.

The backup solution should authenticate and authorize any users who want access. With available multifactor authentication tools, the backup software can first verify the user’s identity. It can then use identity and access management to monitor and regulate actions taken by users. It can even require the approval of multiple individuals before specific tasks can be carried out, such as a change to the backup schedule or the deletion of a backup.

Backup software should also offer the ability to manage immutable storage technologies. Immutable storage keeps backups in a format that is readable but not changeable, which stops ransomware from encrypting them. Immutable storage offerings that operate in the cloud and on-premises are now available.

The backup software should offer the capacity to manage air-gapping technologies. These technologies are a proven way to defend backups against ransomware. They either logically or physically separate backups from the production environment. With logical air-gapping, immutable storage resides in the cloud or on-premises. With physical air-gapping, organizations can back up data backed on disks or tapes, which can be physically separated from the production environment.

Hybrid data centers offer organizations many benefits, including the flexibility to host workloads on-premises, in the cloud, or both. But this flexibility alters the dynamics of data security. Security solutions that work well on-premises or in the cloud may have vulnerabilities when used in a hybrid data center. Organizations need a new approach to meet the data security needs of a hybrid data center.

David Lenz is Vice President, Asia Pacific at Arcserve, a global ransomware protection, and unified data resilience platform provider. A highly experienced senior leader with over 25 years of proven experience in enterprise technology across the region, David is focused on working with Arcserve’s customers, suppliers and employees to address the growing issue of business continuity and increased threats of cybersecurity attacks for many Asia Pacific organizations.

TechNode Global INSIDER publishes contributions relevant to entrepreneurship and innovation. You may submit your own original or published contributions subject to editorial discretion.

ForgeRock’s David Hope on maintaining trust as enterprises use AI and more data-led online services [Q&A]