As Artificial Intelligence (AI) continues to revolutionize the IT industry, it introduces both unprecedented opportunities and complex challenges. While AI promises enhanced efficiencies and innovation, it also amplifies concerns over data security and resilience. Organizations now face the dual challenge of leveraging AI’s potential while safeguarding their data against increasingly sophisticated cyber threats and mitigating risks posed by human error.
In a conversation with CIO&Leader, Sandeep Bhambure, Vice President and Managing Director of Veeam Software India and SAARC, shares his expert insights on these pressing issues. Drawing from his extensive experience in data protection and management, Sandeep discusses how technology leaders are addressing current challenges and emphasizes that digital transformation must begin with a foundation of strong data security.
CIO&Leader: In today’s rapidly evolving IT landscape, AI is becoming a central focus. However, human error remains a significant concern in data management and security. How do you see organizations addressing the human element to enhance data resiliency?
Sandeep Bhambure: Human error is indeed one of the leading causes of unplanned downtime and data breaches. Despite advancements in AI and automation, the human touch is still integral to IT operations, and mistakes can happen—sometimes inadvertently. To mitigate this, organizations are increasingly turning to automation and intelligent systems that can reduce the potential for human error.
For instance, implementing fully orchestrated recovery processes can eliminate manual steps that are prone to mistakes. Automated, one-click recovery solutions can ensure that, in the event of an incident, data recovery is swift and accurate without relying heavily on human intervention.
CIO&Leader: With AI’s growing role, how can it be leveraged to proactively identify and mitigate threats within data environments?
Sandeep Bhambure: AI and machine learning can play a crucial role in enhancing data security. By analyzing patterns and behaviors within data sets, AI can proactively identify dormant threats or anomalies that might indicate a security risk. This allows organizations to address potential issues before they escalate.
Moreover, AI can automate the detection of vulnerabilities and streamline corrective actions. This not only improves the speed and efficiency of responses but also minimizes the reliance on manual processes, thereby reducing the risk of human error.
CIO&Leader: Integration challenges often hinder organizations, especially when services don’t seamlessly work together. How important is interoperability in data protection solutions?
Sandeep Bhambure: Interoperability is absolutely vital, especially in a multi-cloud and hybrid IT environment. Organizations typically use a mix of on-premises infrastructure and various cloud services, each with its own set of tools and protocols. Data protection solutions need to be hardware-agnostic and support multiple platforms to avoid vendor lock-in and ensure flexibility.
By adopting solutions that offer data freedom—the ability to move and recover data across different environments—organizations can adapt more readily to changing business needs without being constrained by compatibility issues.
CIO&Leader: Cost management is a significant concern, particularly as data volumes continue to grow exponentially. How can organizations manage costs while maintaining robust data protection?
Sandeep Bhambure: As data continues to double every couple of years, budgets unfortunately do not increase at the same rate. To manage costs effectively, organizations should consider software-defined approaches to data protection. This strategy allows them to leverage commodity hardware rather than investing in expensive, proprietary appliances.
By being hardware-agnostic, organizations can achieve significant cost savings—sometimes reducing total cost of ownership by 40 to 60 percent. This approach not only lowers expenses but also provides the flexibility to scale and adapt as data volumes grow.
CIO&Leader: Ransomware attacks are becoming increasingly sophisticated. What strategies should organizations implement to mitigate the risk and impact of such attacks?
Sandeep Bhambure: Ransomware is indeed a critical threat, often targeting backup data. Implementing best practices like the 3-2-1-1-0 rule can significantly enhance data resiliency:
- 3: Keep at least three copies of your data.
- 2: Store the copies on two different media types.
- 1: Keep one backup copy offsite.
- 1: Ensure one copy is immutable and air-gapped.
- 0: Verify that you have zero errors by testing backups and recovery processes.
By following this framework, organizations can ensure they have reliable backups that can be restored quickly in the event of an attack. Additionally, performing recoveries in a sandboxed environment before fully restoring data to production systems can prevent reinfection from any lingering threats.
CIO&Leader: Mid-sized companies often struggle with adopting AI due to resource constraints. How can these organizations begin to incorporate AI effectively?
Sandeep Bhambure: AI adoption should be strategic and focused on specific use cases that deliver tangible business value. Mid-sized companies can start by identifying areas where AI can have the most significant impact, such as enhancing customer experience, optimizing supply chain management, or improving cybersecurity.
Leveraging cloud-based AI services is a practical approach. AI-as-a-Service models allow organizations to access advanced AI functionalities without the need for substantial upfront investments in infrastructure and talent. This makes AI more accessible and scalable according to the organization’s needs.
CIO&Leader: Looking ahead, what steps should organizations prioritize to enhance their data resiliency and prepare for future challenges?
Sandeep Bhambure: Organizations should start by embracing best practices in data protection and security. This includes implementing comprehensive backup strategies, leveraging automation to reduce human error, and ensuring interoperability across various platforms and services.
Investing in employee training and fostering a culture of security awareness are also crucial. As technology evolves, so do the threats, and staying informed is key to resilience. By combining robust technological solutions with proactive planning and education, organizations can position themselves to handle current and future challenges effectively.
CIO&Leader: Finally, how important is it for organizations to collaborate with security providers to enhance their data protection strategies?
Sandeep Bhambure: Collaboration with security providers is essential. No single organization can cover all aspects of security comprehensively. By integrating with various security solutions—such as firewalls, antivirus programs, SIEM systems, and network security tools—organizations can create a more robust defense against threats.
Leveraging the AI and expertise of these security providers allows organizations to benefit from the latest advancements without reinventing the wheel. This integrated approach ensures that data protection strategies are comprehensive, up-to-date, and capable of addressing the complex challenges posed by modern cyber threats.