When setting up a cloud storage provider, there are several necessities that need to be considered before making a decision.
Selecting a cloud storage provider merits serious consideration, however, you should always start with the most important question: how important is your data to your business? Every other consideration flows out of that initial question.
Data security is paramount, as is an understanding of any compliance obligations. Start with getting a clear understanding of the responsibility of each entity and how the provider meets theirs, including the location of decryption keys, two factor authentications, role-based access controls, encryption in transit and at rest as well as platform level protection such as DDOS, IPS\IDS. Providers should offer monitoring and visibility for all data interactions with cloud storage\backup. Data location should be considered if there are compliance obligations that require data sovereignty.
The wide array of start-up cloud storage and backup providers on the market helps widen the choice for customers, however, consideration should be given as to the risks of those without a proven pedigree in providing these services. What happens if these companies fail? Does the provider have good customer service, standards and certifications, and can they provide evidence of these? Can the provider offer customer references, white papers, reference architectures, etc.? Does the provider offer migration services and service roadmaps?
A key driver for adopting the cloud is the agility it offers, but that should extend not only to onboarding but also to exiting the service. Organisations should be wary of the possibility of vendor lock-in and whether the service inhibits the ability to move data to a different location, service or provider.
Functional product features
Consideration should be given to the functional features that you need, such as:
- Object, block and file storage
- File sharing and synchronisation
- File versioning
- Support for SOAP and REST
- Support for various access requirements (public or private connectivity)
To achieve this, a detailed understanding of your requirements is required. The more mature providers out there will be able to provide professional services to help assess business needs and provide an overview of these functional requirements. – Read more