Weallknowthe story.Calamity, largeorsmall, befallsdata center.IT scramblesto savethedayby ensuringsys- temsfailover apidlyand
functionally. Nowadays, modern IT DR
systems are, to a great extent, cloud-based.
So the failover happens five seconds
later to a data center at the cloud in, say,
Houston. After checking a few configurations, updating some DNS tables and
ensuring things are copacetic, IT wipes the
sweat from their collective brow. Whew.
That hero tale never gets old – at least,
not as long as the memories of tape-back-
ups and decamping to New Jersey data
centers loom large in the mind of IT lead-
ership. That story also has an inevitable
– and far less glamorous – sequel called
Many IT organizations are part of
companies that are bound by all kinds of
compliance. Some is regulatory, some is
industry-specific, some governs data types
and others cover regions. Regardless of
the source of the mandate, fulfilling com-
pliance obligations is not optional.
So, we pick up the tale of our fearless
heroes, having vanquished the disaster and
returned the workloads back on-premise to
the comfort of their own data center. Enter
the auditor – just as they are settling down
to a sandwich and chips.
Can you show me the audit paperwork
for the month of April?
The month you had that disaster. You
sent the workloads to the cloud. Houston,
This is where the ominous music begins
in the background and the fast-talking and
shuffling of proverbial papers on the desk.
Because, in fact, our heroes don’t have
What is worse, some members of the
team did not recognize compliant work-
By LILAC SCHOENBECK
Compliance and Disaster Recovery