Picking up where Part 1 of our focus on the storage industry's "Compliance Effect" left off, part 2 examines how compliance issues will likely evolve over the next five years, addresses what organizations can do now to get the ball rolling to be ready for future data retention rules, and reveals which current and emerging storage technologies might make satisfying regulatory requirements easier in the future.
With the onset of the data retention requirements recently handed down by the federal government, storage industry professionals are taking the first steps in a rather daunting process of significantly changing how information is managed and retained. And, as with any new requirements, the issues that storage professionals are now facing will likely change and evolve over the next five years and possibly make the storage administrator’s job even more complicated.
Wayne Lam, vice president of professional services at FalconStor, says that backup windows will be squeezed tighter than ever and that storage administrators will more and more have to look for storage solutions that can meet both everyday needs and the requirements of federal regulations. In order to help ease the burden that many storage administrators face, Lam says that they will need to implement the following:
- Solutions that lower TCO so that cost-effective disks can be used
- Solutions that include instant (full, incremental, and differential) point-in-time snapshot-based backup disks for immediate, easy recovery of individual files and records, and/or entire volumes via granular rollback
- Accelerated backups with little or no impact on application servers to eliminate the need for a backup window
- Transactional integrity and point-in-time consistency when backing up databases and message stores with application-specific snapshots
According to Mehran Hadipour, vice president of marketing at Kashya, Inc., all major storage networking vendors (Brocade, Cisco, and McDATA) are deploying intelligent switches with sophisticated applications running on the storage network that provide data retention services for the heterogeneous storage on the network. “These solutions will reduce the cost of data protection and enable deployment of a single flexible solution for enterprise data,” says Hadipour.
Getting Ready for Future Data Retention Rules
Although it may seem like a pretty dreary picture, there are things that storage administrators can do now to get the ball rolling in preparing for future data retention rules. Lou Harvey, technical business architect at Maranti Networks, says that one of the most important things is ensuring that the infrastructure is able to support the regulatory requirements.
“The key is proactive assessment of data flows in conjunction with all the business layers within a company, using ISO 9000-based methods and procedures,” says Harvey. “This will allow discovery, assessment, and documentation of the current challenges, and will allow a managed process and re-engineering of the baseline business processes through retention requirements by data class and business role.”
Harvey also points out that storage administrators can work on standardizing the retention and management of the document repository services. And, he says, storage administrators must begin to invest in networked retention and management infrastructures that support acquisition, retention, and automated destruction processes to meet and support these baseline business processes. And finally, administrators can use intelligent architecture policies that are enforced within an application-aware storage network infrastructure.