The Ultimate Guide to Minimum Viability

Remediation of threats

Minimize damage while limiting spread and enabling the preservation of evidence. Identification of the threat will allow you to assess scope, affected systems, data, and business functions. Containment of threat will allow mitigation efforts to remove threat. Eradication will remove threats and malware, close security gaps, and expel attackers from systems.

Restore secure access

Verify that employees can securely access critical systems and data by restoring clean, trusted directory and identity services, like Active Directory, Azure Entra ID, and AWS IAM. 

AD isn’t just about users being unable to log on to their workstations or access email. When AD is down, critical infrastructure can’t come online, applications don’t start, and business grinds to a halt. When Cloud IAM is compromised, complex roles and permissions further inhibit the restoration process. 

Establish secure communications

Provide secure email, messaging, calendaring, and document collaboration with services like Microsoft 365 (M365) and Google Workspace. This should be considered a secondary form of communication outside of primary.  

Email and collaboration tools are vital for modern businesses, allowing teams to work together from anywhere. When these services are down, productivity drops significantly. Secure communications protect against eavesdropping and multiple attack vectors. If M365 is compromised, bad actors can access it in various ways, making a secondary, secure communication channel essential. 

Rebuild infrastructure

Quickly restore essential IT infrastructure and applications to operational status.  

Recovering applications means rebuilding each of the distributed components as well as the underlying infrastructure. Doing so allows you to quickly and cleanly bring back critical and core capabilities. 

Recovering data

Efficiently recover clean and trusted data to minimize the impact of disruptions.  

Data is the lifeblood of modern business. In many cases, reliable access to data is a necessity for a business to operate at its most basic level. Recovering clean data after a cyberattack or security incident is crucial to restoring operations, avoiding interruptions in service, and reducing the risk of reinfection.

AD change analysis and forest-level recovery

Facilitates clean recovery of AD at scale required to rapidly establish minimum viability. Automated, forest-level recovery of AD removes complexity and risk of human error, and accelerates getting critical identity and access management services back online. This means mission-critical infrastructure and applications can be brought online, users and customers can access services, and your business can recover and restore operations.  

Commvault offers automated, forest-level recovery of AD that includes the auto-generation of custom run books and point-and-click simplicity to recover complex AD environments in minutes or hours, rather than weeks.

Cleanroom Recovery & Air Gap Protect

On-demand recovery to secure, isolated locations on the cloud helped by automation, for testing, to conduct forensics, and initial production recovery directly from cloud-based immutable and indelible storage. 

Cleanroom Recovery allows continuous testing and refinement of cyber recovery processes, helping provide clean restores of critical applications in isolated cloud environments. Use the cloud’s elastic scale to store data, practice recovery, and conduct isolated forensic analysis to investigate and remediate threats. 

Cloud-scale recovery

Leverages cloud techniques (even for on-premises environments) to recover large datasets rapidly. Recovering critical data after a cyberattack requires a complex and cumbersome set of operations. However, modern cloud techniques – from the parallel nature of microservices-based to serverless scale – can help streamline large recovery processes to get businesses back online rapidly and reliably. 

Commvault offers automated, cloud-scale recovery capabilities. From leveraging serverless functions for restoring billions of objects in cloud datastores to using containerized microservices to bring cloud-like speed and scale to on-prem recovery, Commvault gives customers cloud-scale recovery to enable reliable, rapid recovery at scale. 

Recovery-as-code

Automates rebuilds of cloud application and infrastructure stacks (networking, DNS, compute) to accelerate restoring minimum viability.  

Commvault Cloud Rewind continuously discovers cloud-based application workloads, automatically maps related network and security dependencies, and protects it all in a segregated, air-gapped environment. Rewind the application stack to a point in time before a breach or configuration error occurred, rebuilding environments through recovery-as-code that can easily integrate into CloudOps processes or CI/CD pipelines. 

Rapid recovery for AI workloads

Residing in object stores like Amazon S3 and S3-based data lakes. This kind of storage requires a new set of protection and recover capabilities to handle the necessary scale. Recovering billions of objects – and helping verify all objects are properly restored and correlated to a previous point in time – is a complex and compute-intensive set of operations.
 

Commvault’s Clumio Backtrack offers protection of emerging workloads in S3, making it possible to recover billions of objects accurately, reliably, and with the speed necessary to minimum viability quickly. 

Cloud security with resource discovery and mapping

To find the hundreds or even thousands of cloud resources used by your organization, including serverless and containerized compute, NoSQL databases, ML and AI services, virtual networking, and more. Unprotected cloud resources, dependencies, and configurations extend the recovery times of restoring critical cloud infrastructure after an outage or attack – a risk that can be avoided with automated cloud resource discovery, mapping, and configuration protection.