Description:

This policy ensures that backup media is rotated to an offsite location on a regular basis. This is important to protect data from loss or damage.

Rationale:

Backup media is a valuable asset that can be used to restore data in the event of a disaster. However, backup media can be lost or damaged if it is not properly stored. By rotating backup media to an offsite location, you can protect it from both physical and environmental risks.

Impact:

The impact of not rotating backup media to an offsite location could be significant. If backup media is lost or damaged, it could make it difficult or impossible to restore data. This could lead to lost revenue, customer dissatisfaction, and damage to the organization's reputation.

Default Value:

AWS recommends that organizations rotate backup media to an offsite location on a monthly or quarterly basis. This can be done by using a third-party service or by storing the backup media in a secure location offsite.

Pre-requisites:

To implement this policy, you will need to have access to the backup media. You will also need to have the appropriate permissions to rotate the backup media.

Remediation Steps:

The following steps can be used to remediate this policy:

  1. Identify all of the backup media.
  2. Create a rotation schedule for the backup media.
  3. Rotate the backup media to an offsite location.
  4. Document the rotation schedule.

Test Plan:

The following steps can be used to test the remediation steps:

  1. Verify that the rotation schedule is being followed.
  2. Verify that the backup media is being stored in a secure location offsite.

Implementation Plan:

The following steps can be used to implement the policy:

  1. Identify all of the backup media.
  2. Create a rotation schedule for the backup media.
  3. Rotate the backup media to an offsite location.
  4. Document the rotation schedule.

AWS CLI Process:

There is no AWS CLI process for rotating backup media to an offsite location. However, you can use the AWS CLI to list the backup media that you have.

Using AWS GUI:

You can use the AWS Management Console to list the backup media that you have. To do this, go to the "Backup" service and click on the "Backup Media" tab.

Backout Plan:

The following steps can be used to revoke the changes made to implement this policy:

  1. Delete the rotation schedule.
  2. Retrieve the backup media from the offsite location.

Note:

  • This policy is not intended to replace the need for a comprehensive disaster recovery plan.
  • This policy is specific to AWS resources. Other resources, such as on-premises servers, may require different rotation procedures.

Reference:

  • AWS Backup documentation: https://docs.aws.amazon.com/aws-backup/latest/devguide/

Section 2:

  • Tags: backup, rotation, offsite, storage
  • Keywords: AWS, Backup, CLI, GUI