MSP360 Managed Backup Security Best Practices Guide

This whitepaper provides a comprehensive guide for MSP360 customers to configure Managed Backup effectively, aiming to minimize risks associated with accidental or malicious file changes and malware infections, including ransomware. It outlines best practices for settings within the Managed Backup web console, backup agents, and deployed backup plans. Key recommendations include enabling Two-Factor Authentication (2FA) for enhanced login security, utilizing Identity and Access Management (IAM) roles for AWS S3 storage to avoid credential theft, and implementing IP allowlisting to restrict console access. The document also emphasizes the importance of creating unique user accounts for each customer, following the principle of least privileges for admin permissions, and regularly testing backup agents for updates. Additionally, it discusses security measures such as enabling immutability for backups, encrypting data, and documenting disaster recovery plans. The guide concludes with the 3-2-1 backup rule and the necessity of adjusting retention policies to ensure data integrity.