3-2-1-1-0 backups: the anti-ransomware strategy for SMBs Backups & BCDR

3-2-1-1-0 backups: the anti-ransomware strategy for SMBs

1 September 2025 1 min read Par ServiTIQ

A good backup is worth more than a paid ransom. The 3-2-1-1-0 rule is now essential to cover modern risks.

The rule, explained

  • 3 copies of data (prod + 2 backups)
  • 2 types of media (disk + cloud)
  • 1 copy offsite (cloud/separate data center)
  • 1 copy immutable (WORM / Object Lock)
  • 0 errors during restore tests

Practical implementation

  • Backups daily (DB) + weekly (files)
  • Storage S3-compatible cloud (Object Lock) for immutability
  • Encryption in transit & at rest
  • Testing : monthly restores and quarterly DR drill

Often overlooked points

  • Back up Microsoft 365/Google Workspace (emails, Drive/OneDrive)
  • Preserve metadata (permissions, versions)
  • Document who can trigger a restore
  • Isolate backup accounts (MFA, dedicated keys)

An effective BCDR plan = recovery in hours instead of days.

Your infrastructure. Our expertise.

Free infrastructure audit. No commitment required. Response within 24 hours.

Get my free quote Call us