email & business continuity continuity for uninterrupted business operations in any...

18
Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Upload: mitchell-norman

Post on 12-Jan-2016

218 views

Category:

Documents


0 download

TRANSCRIPT

Page 1: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Email & Business Continuity

Continuity for uninterrupted business operations in any circumstances

2010

Page 2: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Agenda

Introduction Grove SaaS Offering Grove Partners Our Clients Grove continuity Reactive Deployment Proactive Deployment Technical Overview Infrastructure Suppliers Email Software Overview Why Grove Continuity? Q&A

Page 3: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Grove SaaS Offering

The Grove Software-as-a-Service offering is a comprehensive managed suite of services providing customers with protection, innovation, compliance and a proactive support service.

Services Offered: Email Security and Policy Management Http Scanning and Management Corporate Email Branding Email Archiving Business Continuity and DR Automated Penetration Testing Email Encryption and TLS Denial of Service (DDoS) Mitigation Hosted Mail and Collaboration Managed SSL VPN

Page 4: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Grove Partners

Technology Partners Solution Providers Resellers and Distribution

In each of these we look for the best in their field showing characteristics that makes them excel at what they do, whether they are top vendors or premium re-sellers.

Main Technology Partners and Solution Providers:

Page 5: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Our Clients – Dec 08

Page 6: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Grove Continuity

Automatic activation Intuitive user interface Universal web-based access Hot standby / rolling retention Recovery processes and spooling 24 x 7 support and operations centre (NOC) On-demand (hosted) solution for scalability and flexibility

Automatic activation Intuitive user interface Universal web-based access Hot standby / rolling retention Recovery processes and spooling 24 x 7 support and operations centre (NOC) On-demand (hosted) solution for scalability and flexibility

Page 7: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Business Critical

Is email continuity important?

40% of all SMBs will go out of business, if they cannot get to their data in the first 24 hours after a crisis.Gartner

96% [of businesses surveyed] reported that during an e-mail outage, there is a huge drop in productivity, and some employees cannot work at all.ApplicationContinuity.org, King Research Survey (reported on InfoStor.com, May 2007)

“In any given 12-month time period, there is a 75% likelihood of an unplanned e-mail outage … concentration of outages (29%) was between 4 & 24 hours duration”

“More than 43% of the outages lasted longer than 24 hours, a length of time that can lead to significant business disruption and damage”Why E-mail Fails: A Survey of E-mail Outages (IBM Global Technology Services, May 2006)

Page 8: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Business Critical

Page 9: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Grove Continuity

Business continuity management Compliance with government, industry

and corporate continuity requirements Calculate the cost of down-time – lost

opportunities, contract and compliance penalties and tarnished reputation

Is there a gap between the business and IT definition of continuity success?

Take a broad view of vulnerability – e.g.redundancy is good, but homogenous systems remain vulnerable to viruses, published exploits and targeted attacks

More than just disaster recovery Continuity: running the business during and despite disaster & interruption Disaster recovery: rebuilding after a disaster – a static, parallel activity requiring time

and resources to be diverted from day to day business Grove Continuity as part of your business continuity management strategy

More than just disaster recovery Continuity: running the business during and despite disaster & interruption Disaster recovery: rebuilding after a disaster – a static, parallel activity requiring time

and resources to be diverted from day to day business Grove Continuity as part of your business continuity management strategy

Business Continuity Institute – www.thebci.org

Page 10: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Grove Continuity

Continuity Reactive Always-on, hot stand-by mailbox Intuitive web-based user interface universally accessible Email automatically routed to each user mail-box during outages Spooling and recovery processes to deliver mail to corporate systems 24 x 7 support, SLA’s and Network Operations Centre (NOC) monitoring

Continuity Proactive 30 Rolling retention of historic email for 30 days Plus all Reactive features – always on, automatic activation, web interface etc

Continuity Proactive 90 Rolling retention of historic email for 90 days Larger mailbox send/receive capacity Plus all Reactive features – always on, automatic activation, web interface etc

Page 11: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Reactive Deployment

No change to mail flow until a BC scenario occursNo change to mail flow until a BC scenario occurs

Mail is delivered via MX routing to Client Mail System

BC Mail system is on “standby” in event of BC requirement

Google Message Security

Google Message Security

End UserEnd User

Continuity MailboxesContinuity Mailboxes

“On Standby”“On Standby”

End UserEnd User

wwwaccesswww

access

In BC scenario mail is accessed via webmail access to BC mail system

Mail is delivered to BC Mail System via Postini Failover

Google Message Security

Google Message Security

Client Email System

Client Email System

ContinuityMailboxesContinuityMailboxes

Client Email System

Client Email System

Page 12: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Proactive Deployment

Dual delivery, no change to mail flow until a BC scenario occursDual delivery, no change to mail flow until a BC scenario occurs

Mail is delivered to BC Mail Gateway and then to Client Mail System

A copy of Mail is sent to BC Mail System

Client Email System

Client Email System

End UserEnd User

Mail Cloned to Continuity Mailboxes

Mail Cloned to Continuity Mailboxes

Continuity Gateway

Continuity Gateway

End UserEnd User

wwwaccesswww

access

In BC scenario mail is accessed via webmail access to BC mail system

Continuity MailboxesContinuity Mailboxes

ContinuityMailboxesContinuityMailboxes

Google Message Security

Google Message Security

Google Message Security

Google Message Security

Continuity Gateway

Continuity Gateway

Client Email System

Client Email System

Page 13: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Technical Overview

First class redundant and resilient facilities

N + 1 redundant design as standard – high capacity mailbox servers clustered into ‘mailbox nodes’ – servers take over from any failures without data loss or delay

Connectivity through physically diverse fibre connections (includes Mistral, Level 3, MFN) and internally protected by firewalls, intrusion detection and monitoring systems

24 x 7 network monitoring and intervention by Network Operations Centre (NOC)

Secure and scalable email technology

Zimbra email server and client designed for secure use in the absence of a VPN – ideal for a disaster scenario when VPN infrastructure may be inoperative

TLS and SSL used throughout and client authentication tokens used (cryptographically secure) to prevent data-injection attacks on the server

Unlike many webmail solutions, no data or software is stored by the browser so it is suitable for use at kiosks and home during a disaster scenario

Page 14: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Tier IV: Multiple active power and cooling distribution paths, redundant components, fault-tolerant, providing 99.995% availability

Tier III: Multiple active power and cooling distribution paths but only one path active, redundant components, concurrently maintainable, providing 99.982% availability

Tier II: A single path for power and cooling distribution, with redundant components, providing 99.741% availability

Tier I: A single path for power and cooling distribution, without redundant components, providing 99.671% availability

Source: Datacentre Management November 2006

Data Centre

Tier 1

Tier 3

Tier 2

Tier 4

Perf

orm

an

ce &

R

eliab

ilit

y

GlobalSwitch

Internet Connectivity

Tier 1

Tier 3

Tier 2

MistralKingston

Tier IV: Multiple active power and cooling distribution paths, redundant components, fault-tolerant, providing 99.995% availability

Tier III: Multiple active power and cooling distribution paths but only one path active, redundant components, concurrently maintainable, providing 99.982% availability

Tier II: A single path for power and cooling distribution, with redundant components, providing 99.741% availability

Tier I: A single path for power and cooling distribution, without redundant components, providing 99.671% availability

Source: Datacentre Management Magazine November 2006

Infrastructure Suppliers

Page 15: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Infrastructure Suppliers

GlobalSwitch (data centres) GlobalSwitch is a leading Global provider with some of the

largest facilities and highest level of infrastructure, including outstanding 24x7 M&E support, neutral access and immediate proximity to multiple carriers and service providers, and high quality power suppliers. Global Switch was the first vendor-independent data centre operator to have been certified to the ISO 27001 standard.

Mistral (connectivity) Mistral's solutions are backed by an industry leading service

level guarantee with an expert team providing 24/7 technical support. Mistral upgrades network components when they reach 70% utilisation. Mistral, as a member of LINX, has peering agreements with major international networks. Mistral has achieved ISO 9001, Investors in People and BS7799 accreditations.

International transit is provided by AboveNet and Level3 with close (less than 3 ‘hop’) LINX connectivity.

Procedures and facilities are audited and independently verifiable.

Page 16: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Email Software Overview

Zimbra (a Yahoo! company) Leader in open source, next-generation messaging and collaboration software, now an

independent business unit of Yahoo! after acquisition in Sept 2007 for $350 million Version 5.0 released Feb 5th 2008 (after Microsoft bid) - according to Zimbra CTO Scott

Dietzen, "the most significant release the Zimbra team has ever made" Key customers include service providers, higher education institutions, and Fortune 1000

enterprises (includes Comcast, Raytheon and internet star Digg)

Superior Email Server and Client Technology All communications (browser server / server browser) are encrypted (TLS/SSL),

including the XML/JSON HTTP of the web-client and any POP, IMAP, SMTP requests. All client/server invocations require an cryptographically secure authentication token to

prevent data-injection attacks on the server and snooping of the network or client disk Uses the security advantages Ajax and mitigates concerns:

Dynamic Ajax client download only when a user logs-in No software is left on the client machine No persistent client-side caching as there is with traditional web mail clients No server-side interpretation of JavaScript or other client-submitted code (vanilla XML requests accepted only) No JavaScript execution on the server so there is no way for a hostile Zimbra Ajax client to inject malicious code Limited client-side JavaScript within user data with filtering and blocking of “risky” HTML (server and client side) Only benign URLs are allowed - GET-based REST and URL-based APIs are read-only and do not modify data

Highly scalable and resilient, deployed as clustered mailbox servers on SAN

Page 17: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Why Grove Continuity

Service Business success despite outages, interruptions and disasters Scalable service to meet current and future needs Support and monitoring for business continuity management

System Leading web-based email technology for end users Server technology designed for security in distributed environments High availability, redundant, high performance infrastructure

Support 24/7/365 Support Monitoring by Network Operations Centre Administrative documentation and training

Page 18: Email & Business Continuity Continuity for uninterrupted business operations in any circumstances 2010

Questions and Answers