We know Technology…


We know Systems…


We know Virtualisation…


We know Cloud…


We know Data Management…


We know Network
and Security…


We know Cyber

Office 365 Data Security

Office 365 – How Safe is Your Data in the Cloud?

Moving operations to the cloud can offer definite improvements in terms of data security and resilience. Hosted on enterprise-class hardware with automated fail-over and load balancing increases data availability. And because data is encrypted at rest and in transit, it is much harder to use in the event of a security breach.

However, no system is infallible – including Office 365. Despite these protective measures, your data may still be at risk.


Malware that encrypts critical files is enough to give the IT manager nightmares. And high-profile outbreaks like NotPetya and WannaCry have helped to emphasise just how serious a threat ransomware poses to corporate networks.

Offloading storage and email functions to the cloud does help to raise the overall security of your corporate data assets. However, once infected at source, encrypted files are replicated to the cloud, rendering the off-site copy of your data similarly useless.

User error

Despite the media attention given to hackers and malware, the number one threat to the company network remains your users. Around 50% of breaches are caused by internal users.

Office 365 has some of the finest enterprise-grade security provisions available – but they can’t always protect you against stupidity and carelessness. It’s incredibly easy to delete a file by accident – and it may take months before anyone realises. Similarly, a leaked password could cause havoc if it falls into the wrong hands.

Malicious users

Less common, but even more dangerous are malicious users. These individuals are actively looking for ways to undermine their employer. They will delete data, corrupt files and change configurations to cause disruption, loss and confusion.

Generally, these users simply abuse their own security permissions, pushing the limits of what they can do. Most don’t want to get caught, so they won’t draw attention to what they are doing – and their actions may take quite some time to be exposed.

Facing the inevitable

No matter how hard you try, completely blocking all of these threats is unlikely. Despite your best efforts, eventually, someone is going to “accidentally” click a link that triggers a ransomware download. Or deliberately delete some important information.

Your business needs to tighten defences to reduce incidents of data loss – but you have to be aware that Microsoft Office 365 isn’t going to do everything for you. Much of your preparations will focus on how to recover after a data loss incident.

Robust and reliable backup and recovery will be crucial to dealing with these issues. Microsoft provides some data recovery options for their cloud services, but they are very basic. Often this is little more than a recycle bin that empties automatically every 30 days.

In some cases, issues may be identified within 30 days which is great. But one extensive study suggests it takes 280 days to identify and contain a breach. Clearly, you need a more robust backup and recovery system is required.

Cloud-based backup to the rescue

Once your defences are in place, attention must turn to how you can recover data and operations as quickly as possible. This will require a new approach to backup that can address the hybrid nature of your operations.

Moving backup to the cloud creates several new opportunities. Capacity scales automatically as your data estate increases without the need for additional infrastructure spend in your data centre for instance.

Cloud-based services are often more resilient to cyberattacks and ransomware. Replicating files to a third location (outside the local network and the Office 365 ecosystem) adds another layer of protection. Importantly, recovering data from the cloud can be extremely fast, almost instantaneous – perfect for when you need to deal with a ransomware infection immediately.

Abstracting backups in this way makes it extremely difficult for every copy of your data to be lost permanently. A malicious employee may be able to delete files – and even the Office 365 backups – but they cannot access the versions backed up automatically into the external system. Even if the loss doesn’t become apparent for many months, the missing data can still be recovered from the third-party cloud backup.

Data loss is a very real possibility, even when using Office 365. But by adding a cloud-based backup service into your technology stack, you are well prepared to deal with any incident.

WTL offers Secure Backup for Office 365 providing a resilient business continuity solution in the event of data being lost corrupted, or accidentally deleted. To learn more read our Office 365  Secure Backup brochure.

Cloud computing

Cloud computing – 10 issues to discuss to avoid a cloud disaster

Cloud computing has revolutionised corporate IT – generally for the better. As the technologies have matured, early adopters have encountered some potential pitfalls that may add to costs – or limit your strategic outcomes.

Here are ten issues to address with a potential cloud partner to avoid these mistakes.

1. Where will our data be stored?

One of the best features of cloud platforms is the distributed storage of data. By spreading the load across pooled hardware, your systems are more resilient, stable and less prone to failure.

Before uploading any information, you need to know where your data will physically reside. Will there be any issues about data sovereignty if the information is transferred across international borders? Are there likely to be bandwidth problems if the data centre is too far away? Is there sufficient geographical separation between live data and backups to prevent permanent loss in a disaster?

As you negotiate with providers, consider the impact location may have on your data operations.

2. How do we manage our cloud assets?

Once your data is in the cloud, you need to be able to work with it – so how does the provider make that possible? What tools do they provide? Will your developers and administrators require additional training – and can the provider assist?

You will also want to know how much control and visibility you have your cloud assets. Can you report on performance, security and billing? Will you have access to the information you need to prove you are meeting your SLA obligations, or to calculate ROI.

Take notice of the available management interfaces and consider how easily your IT team will be able to adjust.

3. How do you work with us to maintain application performance?

Access to ‘unlimited’ computing resources should deliver unrivalled application performance, increasing speed and reducing latency. But you still need to ask the question to be sure.

Does the provider offer total transparency of their technology stack so you can confirm optimised application compatibility? And do they offer any kind of performance guarantees?

These insights provide important protection against poor application performance.

4. How do you secure our data? And what about compliance?

Moving data off-site involves a high degree of trust – you are responsible for what happens in the event of loss or theft. You need to ask the cloud provider some tough questions.

Where will the data be physically stored? If personal data is transferred out of the UK / EU, you may be in breach of the GDPR, risking a massive fine.

Does the service meet the specialist security and compliance demands of your industry? Pick an incompatible service and your business could be prosecuted.

How is data secured? Is it encrypted during transfer and at rest? How is access controlled? You must be 100% convinced that your information is safe before migrating to the cloud.

5. What are our data protection and disaster recovery options?

Cloud computing has resilience built-in as standard, but you still need to maintain proper backup, restore and disaster recovery (DR) provisions.

How is data backed up? Is it an additional service? How does it work and what does it cost? How can you recover data quickly? And what are your options for restarting operations following a disaster?

Maintaining continuity of operations is extremely important – and the right cloud service provider can become a key aspect of your DR strategy.

6. How will your network work with ours?

Accessed via the Internet, cloud services should “just work”. However, linking applications – or even other cloud services – is likely to require advanced networking skills.

You need to assess the abilities of your in-house engineers and whether they match with the service on offer. If you lack any skills, can they be sourced easily / cost-effectively? If a particular service requires specialist skills you cannot source, that may not be the right platform for your needs.

7. Can you assist with defining our IT strategy moving forwards?

Integrating cloud with the corporate IT strategy means being able to assess workloads and define the best location for each. Without extensive existing experience of using the cloud, this is often a difficult task.

Your ideal cloud computing provider should be a partner, capable of aligning their service with your strategy to deliver ongoing benefits. They can also help you refine and extend your strategy to take advantage of previously unrealised cloud benefits.

8. How will you assist with the onboarding process?

The most cost-effective, efficient cloud deployments tend to be more complicated than simply lifting-and-shifting existing infrastructure. Some of your mission-critical applications may need to be refactored for maximum compatibility for instance. Or you may just need assistance with uploading large volumes of data to a remote data centre.

Check with the provider what is included with the service, and whether additional assistance can be purchased. You should also ask for suggestions about how best to streamline the migration process and to maximise the return on your investment.

9. What level of support can we expect?

Some core business systems need to be available 24x7x365 – and you need a platform you can rely on. Although more resilient than the on-premise equivalent, you still need support coverage for your systems in the cloud.

Consider how your internal support resources need to be augmented to improve service coverage. And don’t forget to ask the provider what is included in the contract – including SLAs – as standard. If you need 24×7 support, it will almost certainly be a chargeable extra

10. What is the cloud going to cost us?

The pay-as-you-use cloud billing model is brilliant for reducing capital spend on IT hardware. But there are potentially dozens of consumption-based metrics used for billing – CPU cycles, disk storage, bandwidth used etc. This can make bills more complicated to understand – and higher than expected.

You will need a potential provider to explain their billing model, what it includes and whether there are pricing tiers to help better control costs. Using their experience, you should be able to define a cloud platform that will deliver against your strategic goals without busting your budget.

Ask us

The choice of cloud service should be treated as a major strategic decision. With the right partner in place, you have a platform on which to build IT systems capable of delivering on your strategic growth goals.

So, put WTL to the test. Give give us a call and grill us about what you need – and how we can deliver cloud computing stategy that is right for your business.


The Oracle-on-Oracle advantage – stay on top of your game

Faced with demands to demonstrate an immediate return on investment, the lure of generic hardware can be irresistible. Cheaper at the point of purchase, it is relatively easy to demonstrate an immediate saving when deploying white box servers.

Over the longer term, however, those savings rapidly dwindle to almost nothing. The hardware, itself is usually perfectly robust and reliable, but it is not fully optimised for your Oracle database technology stack. Which means that you are losing out on the performance and efficiency gains of systems offered by Oracle’s own server solutions.

Because unlike generic servers, Oracle-on-Oracle Engineered Systems have been designed and optimised for a single specific task – maximising Oracle database performance.

The Oracle Exadata range

For enterprise-class organisations, the Exadata platform is a game-changer. Offering persistent memory and RDMA over converged ethernet (RoCA), Exadata servers are unique, offering performance gains that simply cannot be matched by a generic alternative.

The Exadata platform has been designed and developed alongside the Oracle Database engine to reduce latency and increase performance. The entire technology stack – software, compute, networking and storage – is tailored towards delivering unrivalled database efficiency.

The use of cutting-edge persistent memory and RoCE technologies reduces IO latency by up to 10x and improves performance by 2.5x. When dealing with millions of database transactions per day, these improvements quickly convert into measurable returns – more output, reduced operating costs, increased turnover and profits etc.

The Exadata platform also offers improved future-proofing capabilities. Systems can be deployed on-premise, in your own private cloud environment, or in the Oracle Cloud proper. With the added benefit of capacity-on-demand software licensing and pay-as-you-grow scalability, you can contain costs without limiting growth when required.

The Oracle Database Appliance (ODA)

Oracle Engineered Systems offer similar benefits for midmarket deployments. Oracle Database Appliance products provide significant performance benefits, optimised for single-instance Oracle databases. Fully integrated, the appliances pre-configure software, compute, networking and storage into a completely integrated package.

This bundled approach helps to reduce costs and accelerate deployments to lower total cost of ownership. According to Oracle, their Database Appliance range is the simplest, lowest-cost turnkey X86 database system available today. One customer reports generating 498% ROI over five years and a 54% reduction in operating costs .

Although designed for midmarket organisations, the ODA family offers enterprise-class features. Built-in automation helps to streamline storage configuration and database provisioning. And flexible licensing options allow you to scale usage up and down in line with demand without limiting availability or performance. Importantly, these appliances also offer Oracle Cloud connectivity, so you can easily move workloads offsite as and when required.

The smart choice

When compared to the performance, availability and scalability offered by Oracle Engineered Solutions, the false economies of generic storage and servers are obvious. With products designed for both midmarket and enterprise-class organisations, there is a viable solution for most businesses, allowing them to unleash the full power of their Oracle databases and information.

To learn more about the Oracle-on-Oracle advantage and the beneifts of Oracle Engineered Solutions and which is the best choice for your business, please get in touch.

Oracle Cloud at Customer

All the power of the public cloud in your data centre

Private cloud technologies have been instrumental in helping businesses build fully scalable databases. As these platforms age, attention turns to the next evolution; systems must continue to deliver improved performance and ROI, so the next round of investments is crucial.

The fact that your business has been using a private database cloud indicates that your workloads have been deemed too sensitive for public alternatives. This does mean that you have missed out on some of the additional benefits available when using public cloud though.

With Oracle Exadata Cloud at Customer, the functionality and feature gap is narrowing. Which means that the next generation of private database cloud can deliver more for less. How much less? Oracle suggests a 47% reduction in the total cost of operations for starters, followed by a 256% return on investment over five years.

Simplified licensing

One of the biggest headaches associated with the private cloud has been licensing. Pooled resources allow for instant scaling according to need and application, but perpetual licenses are a fixed commodity – and you must have enough to cover usage at all times. This means buying additional licenses ‘just in case’ to meet occasional spikes in demand.

With Exadata Cloud at Customer (ExaCC), licenses can be activated and released in line with demand – just like popular public cloud services. Your private cloud database can quickly scale from 2 to 400 cores and back again. You only pay for what you use, when you use it – and you never risk having the wrong number of licenses again.

Reduced management overheads

An in-house private cloud typically relies on a collection of technologies held together by custom scripts and management tools. Although they “work”, there is a lot of manual integration required to keep everything running.

Upgrading to ExaCC dramatically reduces management overheads. As part of the service, Oracle assumes full responsibility for managing infrastructure, reducing the burden on your IT team. Oracle clients report their management processes are 69% more efficient with EXaCC. This approach also ensures you are unaffected by the ongoing cloud skills shortage.

Cloud scale-out

Data storage and processing needs continue to increase year on year, placing an additional burden on the in-house infrastructure. You existing private cloud is still constrained by a finite pool of underlying infrastructure resources.

ExaCC provides optional automated scale-out capabilities, seamlessly linking on-premise private cloud with the hosted public cloud to extend capabilities for specified workloads. This allows you to increase resource usage beyond the constraints of your private database cloud as and when required, also billed on a pay-as-you-use basis.

Enhanced security

One of the key reasons for choosing a private cloud is the degree of control you maintain over applications and data. ExaCC helps to further de-risk the operating environment by bundling Oracle ‘defence in depth’ tools as part of the service.

Security safeguards are built into both hardware and software, with additional encryption included in the database engine. And it’s all a standard part of the ExaCC service.

Just scratching the surface

As public cloud feature sets continue to evolve, there’s no reason why the private cloud has to be left behind. Oracle Exadata Cloud at Customer brings many of the very best features to the local data centre – and delivers incredible benefits in the process.

To learn more about ExaCC and how you can generate an ROI on your private cloud investments in as little as six months, please get in touch.

Data Protection as a Service

Data Protection as a Service

Ensuring data is properly protected against loss or theft has to be a strategic priority. Maintaining a secure, up-to-date copy of your data is critical – to help restore operations quickly after a local disaster for instance. Data protection obligations (think GDPR) attach a significant financial penalty to permanently losing data, further emphasising the importance of recovery.

Configuring, managing and testing backup and recovery is a major undertaking – particularly as your data estate continues to grow. The modern hybrid operating environment simply adds to the complexity, creating more opportunities for misconfiguration.

Given its strategic importance, you will need to ensure adequate resources are assigned to disaster recovery-related tasks. But when IT departments are already stretched, diverting key people to what is a relatively routine operation could delay or derail other strategic projects.

One of the most effective ways to deal with the problem is to consider data protection as a service and outsource to a specialist.

Applying the cloud model to data protection

Cloud backups are now a routine aspect of both professional and consumer life – our smartphones automatically copy data to the cloud for instance. But in terms of data protection, Disaster Recovery as a Service (DRaaS) is arguably more important.

Under the DRaaS model, everything operates almost exactly the same as it always has with one key difference – your outsourcing partner shoulders responsibility for making sure everything works properly. Their expert consultants will configure the necessary cloud connections, create backup routines, automate common tasks, verify backup sets, and regularly test recovery routines.

Importantly, their expert consultants are also on hand to assist with recovery in a genuine disaster scenario, ensuring you can recover your data and resume operations as quickly as possible. As well as having the skills and expertise you need in an emergency, service level agreements ensure tasks are always completed in a timely fashion.

Does DRaaS deliver value for money?

Although DRaaS will often update and improve your backup and recovery capabilities, its true value lies in convenience. Your data is fully protected and recoverable, and your in-house team is free to participate in other projects and activities tied to your business’ strategic goals.

Having a DRaaS partner also allows your business to pursue increasingly flexible operating models to meet the changing demands of your customers and staff. They will perform the necessary platform reconfigurations to ensure data continues to be collected and stored safely off-site, for whenever it is required.

With the assistance of the cloud, advanced DRaaS providers are able to provide instant fail-overs during a data loss event. Rather than having to maintain a costly co-location data centre for such scenarios, fail-over switches operations to the cloud. This allows your business to maintain near-normal levels of service while the local data centre s being restored.

In these respects, DRaaS offers excellent value for money. With access to DR expertise and the ability to operate more flexibly without being constrained by current DR provisions, you reduce friction that normally slows growth.

To learn more about DRaaS and how WTL can help you meet your data protection obligations and save time and resources, please get in touch.