In the digital age, data protection is everything. For over a decade, World Backup Day has served as a reminder of the importance of safeguarding our data. However, as cyber threats become increasingly sophisticated, relying solely on backups can provide a false sense of security. Robert Standing, Regional Vice President, Middle East & Africa at Rubrik, argues that this leads organizations to believe that they are protected when, in reality, they remain vulnerable.
As a result, organizations are rethinking their strategies. SaaS-based attacks, in particular, have surged, prompting a shift toward cloud-based protection. Gartner predicts that by 2028, 75% of large organizations will prioritize SaaS backup—up from just 15% today—reflecting a growing recognition that traditional backup solutions alone are insufficient against modern cyber threats.
Defining true cyber resilience
Today, organizations must move beyond traditional backup strategies and ensure data remains secure and available, no matter what happens. I believe the key to protecting your business from the most advanced cyber threats is “cyber resilience”. There are three important components to this:
Beyond backups
Cyber resilience means having the ability to not only defend against attacks but also to quickly recover and continue essential operations during and after an incident. It’s not a matter of “when” you will be attacked, but “how often.” That’s why a holistic cybersecurity strategy is critical. By identifying and protecting your most crucial business processes, detecting threats early, and implementing rapid response mechanisms, you can take steps to ensure that your organization remains operational, even in the face of a cyberattack.
Artificial Intelligence (AI) integration
AI plays a critical role in enhancing cybersecurity, but it also introduces new challenges. While AI-driven security systems can automate threat detection and response, cybercriminals are also leveraging AI to develop more sophisticated attacks, such as automated phishing and adaptive malware. To effectively combat these evolving threats, I believe organizations must take a “fight fire with fire” approach—using AI not just for defense, but to anticipate, counter, and neutralize AI-driven cyberattacks in real time. This proactive strategy can strengthen overall cyber resilience, ensuring that businesses stay ahead of both human and AI-powered adversaries.
Zero trust framework
Another essential component of cyber resiliency is adopting a Zero Trust security model, which operates on the principle of “never trust, always verify.” By default, Zero Trust principles assume that every user, device, and application is a potential threat, regardless of its origin. This approach can drastically reduce the risk of insider threats and ensure that only authenticated and authorized entities can access critical data and systems.
Implementing a cyber resilience strategy to solve the paradox
A strong cyber resilience strategy goes beyond backup and recovery—it involves continuous testing, real-time threat detection, and a proactive approach to security. Backup systems must be regularly tested and validated to ensure they are effective when needed most. This means more than just backing up data—it’s about assessing the integrity of backups and recovery procedures through continuous simulations of real-world cyberattack scenarios. By doing so, you can ensure that your organization is truly prepared for the worst-case scenario.
To stay ahead of increasingly sophisticated cyber threats, organizations must implement AI-driven monitoring systems capable of identifying threats in real-time. These systems can detect unusual patterns of behavior, pinpoint vulnerabilities, and respond to threats faster than any manual intervention. Real-time monitoring ensures that your organization can detect and mitigate threats before they cause significant damage.
So, how can we solve the paradox of a false feeling of security? Looking ahead, organizations can no longer afford to treat backups as the be-all and end-all of their data protection strategy. To effectively combat the rapidly evolving cyber threat landscape, it’s essential to adopt a comprehensive cyber resilience strategy that includes prevention, detection, and rapid recovery. Cyber resilience isn’t just a strategic advantage—it’s a necessity for survival in today’s threat landscape. That’s why we should embrace being resilient over reliance on just backups and take proactive steps to protect what matters most: our data, our business, and our future.
