“We back up nightly” is not the same as “we can recover.”
Almost every breached business had a backup. Most had never tried to restore from it. We keep an immutable, offline copy and rehearse the recovery on a schedule — so the day you need it, the number we quote you is one we've already measured.
- LAST RESTORE TEST · verified
- COPY · immutable + offline
- RPO/RTO · defined & tested
- COVERAGE · every critical system
“We back up nightly” is not the same as “we can recover.”
A backup you have never restored from is a belief, not a control. Ransomware is engineered specifically to find and destroy the copy you assumed would save you.
- Backups stored on the same network a ransomware attack can reach and encrypt.
- A restore that has never actually been rehearsed, only scheduled.
- No one able to state the real recovery time — only a hope that it will work.
- A single copy, with no offline or immutable version to fall back on.
Recovery, proven — not assumed.
A backup is only worth what its restore is worth. We build and rehearse both, so recovery is a measured fact by the time you ever need it.
- 01
We keep an immutable, offline copy
A version of your data an attacker with stolen admin credentials still cannot alter, encrypt or delete.
- 02
We test the restore, not just the backup
Scheduled restore drills verify the data actually comes back — not that a job ran green overnight.
- 03
We define and prove a real recovery time
Recovery point and recovery time objectives are agreed with you, then measured against an actual rehearsal.
- 04
We cover every critical system, not just the file server
Servers, line-of-business applications and endpoints are all in scope — not whichever folder was easiest to protect.
Verified recoverable. Not just backed up.
Every claim below is checked against an actual rehearsal, on a schedule you can audit. Activate a line to see the evidence.
Every line above is checked on a schedule and logged — not asserted once at onboarding and forgotten.
The last line, engineered to hold.
Every line below is tested and reported — recovery you can verify, not a checkbox on an onboarding form.
Backup & Disaster Recovery — Inclusions Ledger
- Tested, immutable backups across every critical systemNot just the file server — line-of-business applications and endpoints are covered too.
- Offline / air-gapped copyMaintained outside production, so an attacker who owns your network still can't reach it.
- Scheduled restore rehearsals with a measured recovery timeThe number you're quoted is one we have actually clocked, not estimated.
- Defined RPO and RTO for every systemAgreed with you in plain terms, then held to — not buried in a technical appendix.
- Ransomware-resilient backup architectureBuilt specifically against the failure mode that destroys an untested backup.
- Quarterly recovery proof reportWhat was tested, what it took to restore, and what changed since the last rehearsal.
The work, on the record. Anonymised, never embellished.
The old backup lived on the network ransomware encrypted.
- The previous backup sat on the same domain the ransomware compromised — it was worthless within minutes of the attack.
- No restore had been tested in the three years since the solution was installed.
- The business absorbed four days of total downtime before data was partially recovered from an old export.
GMAN rebuilt the architecture around an immutable, offline copy and rehearsed a full restore to a measured recovery time the client can check every quarter.
The questions every director asks first.
Most backup contracts cover the job running, not the restore working. We rehearse the recovery on a schedule and hand you the measured result — proof, not a policy document.
It can't. The offline copy sits outside your network and credential domain entirely, and the immutable copy cannot be altered or deleted, even with compromised admin access.
On a defined, scheduled cadence — not once at onboarding. Every rehearsal produces a measured recovery time you receive in the quarterly report.
Don’t find out your backup fails during the breach.
See exactly where your recovery capability stands today. The assessment fee is credited toward your first year of managed protection.
