Veritas · Resilience · YoctoIT tech page

Cyber Resilience & IRE

The Isolated Recovery Environment for NetBackup: the copy in an isolated environment, malware-scanned and ready for certified clean restore — the enterprise vault room.

FOCUS · THE VAULT ROOMOperational air gap, scans and recovery drills: the complete anti-ransomware plan on the NetBackup infrastructure
YoctoIT material for clients and partners · Veritas, NetBackup, Alta and the other products mentioned are trademarks of Cohesity, Inc.
01 · What it is

Cyber Resilience & IRE, made clear.

For the NetBackup enterprise the answer to ransomware is the IRE: an isolated recovery environment receiving copies via controlled replication (the air gap opens only for the sync), scanning them with malware scanning and anomaly detection, and keeping them ready for a certified clean restore — with orchestrated periodic tests. It's the vault room of the cyber plan.

Air gap
the network opens only for the replica, then closes
Scan
malware scanning on the copies, before it is needed
Rehearsed
periodic recovery drills in the isolated environment
Cyber Resilience & IRE
OFFICIAL BRANDING VERITAS
NETBACKUP CONSOLE · CYBER RESILIENCY · SOURCE: COHESITY (VERITAS)
NETBACKUP CONSOLE · CYBER RESILIENCY · SOURCE: COHESITY (VERITAS)
02 · How to use it well

The things that make the difference.

The vault room

Production domainthe primary NetBackup
Controlled replica
Scheduled air gap
Verification & scan
the door opens, syncs, closes again
IRE — isolated environmentdedicated NetBackup + immutable storage
Certified recoveryfrom the clean, tested point
The enterprise that restarts even from the worst

Operational isolation

Separate network, identities and administration: the breached domain doesn't reach the room.

Minimal window

Replication opens the air gap for scheduled minutes: the time surface cut to the bone.

Interrogated copies

Malware scan and anomaly detection INSIDE the IRE: you know what's clean before you need it.

Regular drills

Recovery rehearsed in the isolated environment: measured times, DORA/NIS2 evidence.

03 · In depth

Anatomy of an IRE: isolation, verification, rehearsal

The IRE is a dedicated NetBackup domain with immutable storage (Flex WORM or locked MSDP), a segregated network whose firewall opens only the replication window, separate admin identities with MFA; received copies are scanned (signatures and anomalies) and cataloged clean/suspect; recovery drills restore sample applications in the isolated environment measuring RTO; the evidence — syncs, scans, drills — composes the resilience dossier for auditors and insurers.

  • Separate domain — dedicated NetBackup: own catalog and admins
  • WORM in the IRE — immutability inside the room too
  • Windowed firewall — the operational air gap: open minutes, not always
  • Separate identities — own credentials and MFA: the stolen pass is worthless
  • Clean/suspect — copies labeled by the scan
  • Evidence dossier — syncs, scans and drills: documented for the audit
04 · Numbers and lifecycle

The numbers that matter.

min
the air-gap window for syncing
100%
of IRE copies scanned
4+
drills per year in the plan we manage
DORA
demonstrable resilience: the dossier ready
Enterprise ransomware is fought with architecture: the IRE is the vault room — we build it and test it.
05 · Use cases

Where it really pays off.

Finance & DORA

The required resilience, architected.

Large industry

The cyber plan on the existing infrastructure.

Insurability

The dossier that lowers the premium.

Is your last line of defense truly isolated? Let's design the IRE on your infrastructure.