Personal Network Attached Storage, basic approach questions

ok - I'm good on password strength but maintaining the NAS reliably from in-the-wild exploits is beyond my desire - I suppose I might figure out how it could notify me of needed updates. (yep - figured it out!)

VPN? yep - nope.

Last question, I think, (and thanks Buu). I've always believed in the 3-2-1 backup strategy - although I just learned that term last week. I pay for an off-site backup service (~20-30% the cost of [insert corporate megalith name here] ) - IF that service supports such a thing I suppose connecting my NAS to that backup service would also require a similar hole in the firewall? and...

...like so many other things in this question; now that I'm writing it out, I'm going to guess it won't be a problem since I would be SENDING my content to the backup service rather than that service coming to me - is that right?