A humongous explosion and ball of fire.

5 steps for security and disaster planning

22 Jan 2018

Barry Fisher - Technical Director

Written by
Barry Fisher
Technical Director

So you have a great new website built, but what happens when things don't go to plan? Backups should be a key part of your digital strategy. Here are my five steps for security and disaster planning...

1. Analyse

A "Worst Case Scenario" analysis is a closer look at your business requirements and in short poses the question: "If my website disappeared today, what would be an acceptable period to restore from a backup." Is it hourly, daily or up-to-the-minute? As you can imagine, the answer to this question will depend entirely from the type of the application you have. For eCommerce websites and applications which rely heavily on user interactions, backups should be up to the minute in an ideal world, however there is a trade-off between this kind of performance and your budget. There are ways to mitigate hardware failure and data loss due to corruption which involve distributed multiple copies of your data across different services, and there are plenty of levels of coverage to suit your needs.

How long you keep backups for will also be a consideration. This defines how many restore points you'll have to recover deleted data and content from. The larger backup history you need and the more restore points, the more disk storage is required so there is a trade-off to make here too.

These points should be at the forefront of your mind when building you new website or mobile app.

Sound confusing? We can help by applying our expertise and experience to define the right solution for you, in easy terms.

As part of the analysis process we'll help you identify risk areas and possible worst case outcomes so you're in a good position to deal with cases when technology lets you down. During the buzz and excitement of creating your new product you'll want to address backups and risk mitigation up front, so you have a plan when things don't go to plan!

2. Capture everything

We tend to take a "capture everything" approach to backups, rather than incremental backups, solely because it's the best fit practically and cost-wise for most applications (except the very largest enterprise level websites). This means taking nightly full snapshots of your website files and database (along with emails if the web server is set up to manage your emails). It makes it far easier to restore to given point in time than implementing a more comprehensive staged backup solution when used alongside hardware failure measures - such as RAID.

3. Test restore points

A backup is only as good as the last snapshot, so it's important to have an area where the restore point can be tested. For more cautious clients, we've set up a secure location online that they can visit to see the most recent backup restored and in place to see and interact with. This restore point is effectively a fully working version of your website at a given point in time, so provides the best way to assure you that should the worst happen the backup has been proven to work and captures everything (as described above).

4. Don't forget

Where we've taken over from a previous provider for our clients, we often find that there is no backup consideration at all in place. It is one of the first things we sort out when onboarding and advising our new clients.

Even once a backup solution has been considered and is in place, it's important to periodically check that everything is working as expected.

We set up notifications so that if backups fail for whatever reason, we're alerted to remedy the situation.

5. Scale

As the data and content for your website grows you can expect that the size of your backups will also grow. We can calculate how much space you need based on the solution you need (which we'll have defined from the previous steps).

Barry Fisher - Director

Get in touch about your project

Give us a call or send us an email to talk through your project

telephone+44 (0) 203 743 0887


Related articles

Several bank notes on fire.

Websites as an Investment Part 1: What exactly do I need?

Calendar 3 Feb 2016 #Advice When it comes to building a new website you'll need to think 'plan' before you think about 'budget'. What do you need to do to get ready to take the leap?

Read the article
A woman working from home.

5 ways to stay operational during a health crisis

Calendar 16 Mar 2020 #Insights #Advice These are unprecedented times with the arrival of COVID-19. What do you do if you've never had to work from home before?

Read the article
A boy looking very confused and scratching his head.

What is Pattern Lab and why should I care about it?

Calendar 11 Sep 2018 #Insights #Advice #Frontend Our front-end developer discusses why you and your business should be considering Pattern Lab for your next Drupal project.

Read the article

More recent articles

A man in shorts and t-shirt lying back in a deckchair on a white sandy beach with a laptop on his lap.

Digital problem solving made easy

Calendar 19 Nov 2020 #Advice If you manage many websites, you probably know how much effort is required to maintain them. Find out how to get your web portfolio back under control, boost their performance, and save costs in the long run.

Read the article
A square peg smashed in to a round hole with a hammer.

Could mismatched web solutions scupper your business growth?

Calendar 5 Aug 2020 #Insights #Advice If you’re responsible for the IT or strategic marketing in a medium or large business, ask yourself 'How is your web portfolio looking?'

Read the article
An elephant inside a business meeting room.

5 ways your addiction to spreadsheets increases risk in your business

Calendar 13 Jul 2020 #Insights #Advice #Security & compliance It's time to talk about the elephant in the room: your addiction to spreadsheets! Relying on spreadsheets is bad for business. Here's how to fix that problem.

Read the article

Subscribe for email updates

1 Your details

2 Your interests

Please select which Pivale services are of interest to you:

3 Legal info

By subscribing, you acknowledge that your information will be transferred to our marketing platform for processing.

You can unsubscribe at any time by clicking the link in the footer of our emails. You can find out more in our privacy policy.