Taking a cloud first approach requires a different approach than you probably had to consider for your initial few workloads in the cloud. You’ll be deploying hybrid environments, and that means taking a broad view of your IT strategy, architecture, and organisational design. In this session, we cover how the CAF framework offers practical guidance and comprehensive guidelines to enterprise organisations, particularly around roles, governance, and efficiency.
17. Executive Alignment
Role Priority AWS Value
CEO
CIO
CFO
CMO
Competitive Advantage
Save money
Business alignment
Move faster, more efficiency
Improved cash flow
Save money
Respond to market changes
Run more experiments
Better analytics
Experience
Pace of Innovation
Service Depth & Breadth
Pricing Philosophy
Ecosystem
Global
CISO
CRO
Visibility
Auditability control
Get more products to market
Move faster, more efficiency
18. Meaningful Experimentation
• Identify your first projects
• Focus on 2-4 week “sprints”
• Consider low risk (but meaningful) workloads
• Take advantage of the free tier
19. Meaningful Experimentation
• Identify your first projects
• Focus on 2-4 week “sprints”
• Consider low risk (but meaningful) workloads
• Take advantage of the free tier
Take the opportunity to be bold
21. Set Up Foundations
VPC Design
Direct Connect
Identity and Access
Management
Data Protection &
Backup Strategy
Commercial & Legal
Framework
AWS Support
AWS Training
22. AWS Deployment Patterns
• Account per:
– Business Unit
– Application/Project
– Team
– Region
• Separation of Prod / Non-Prod
• Separation based on Data Classification
• Separation based on Internet / Private
• Shared Services
App
#1
VPC
App
#2
VPC
App
#3
VPC
Shared
Services
VPC
Prod
VPC
UAT
VPC
Dev
VPC
Shared
Services
VPC
30. Adoption Blueprint
Project
1 Project
2 Project
3 Project
4
Pilot
Projects
Strategy Business
Case
Applicati
on
Assessm
ent
Risk &
Complian
ce
Operatio
nal
Framewo
rk
Continuous Feedback
Future
State
Future
State
Cycles of
Learning
31. Path of Adoption
Complexity Integration with multiple systems,
operational processes, organisational
transformation
Stand-alone
applications
Value
Agility,Innovation,Cost
Enterprise
Wide
Adoption
Digital
Dev/Test
Enterprise
Applications
Storage
Big Data & Analytics
Client
Computing
Adoption curve to maximise value
while focusing on least complex
areas.
40. Partners
Partners that
know your
business
Partners that
know AWS
platform &
services
Partners that are
aligned culturally
Select partners that
can help you move
quickly in the new
world
Consulting
Partners
Scale Partners
Specialist
Partners
43. Cloud Adoption Framework
▪ Perspectives in planning, creating,
managing, and supporting a
modern IT service.
▪ Guidelines for establishing,
developing and running AWS
environments.
▪ Structure for business and IT
teams to work together.
44. Cloud Adoption Framework
Whitepaper: http://bit.ly/AWSCAF
People
Perspective
Process
Perspective
Security
Perspective
Maturity
Perspective
Platform
Perspective
Operating
Perspective
Business
Perspective
▪ Perspectives in planning, creating,
managing, and supporting a
modern IT service.
▪ Guidelines for establishing,
developing and running AWS
environments.
▪ Structure for business and IT
teams to work together.
45. Seven Core Perspectives
Process Perspective
Managing portfolios, programs and projects to deliver
expected business outcome on time and within
budget, while keeping risks at acceptable levels.
People Perspective
Defining and acquiring the skills needed to adopt the
AWS cloud platform. Examples guidance include role
descriptions, training, certification and mentoring.
Maturity Perspective
Defining the target state architecture of the
organization and creating the required
blueprints and roadmaps.
Platform Perspective
Represents the technology services of the
AWS cloud platform. Provides patterns,
guidance, and tools for optimal use of the
technology services and services to implement.
Operating Perspective
Represents the ongoing management of the
functioning IT environment of AWS. Provides process,
guidance and tools for optimum operational service
management of the AWS environment.
Security Perspective
Defining and implementing the required levels of
security, governance, and risk management to
achieve compliance.
Business Perspective
Identifying, delivering, and measuring
business impact using architectural
approaches that align technical delivery to
business imperatives.
46. Mapping Your Unique Framework
People
Perspective
Process
Perspective
Security
Perspective
Maturity
Perspective
Platform
Perspective
Operating
Perspective
Business
Perspective
AWS Cloud Adoption Framework
(7 Descriptive Perspectives)
47. Mapping Your Unique Framework
People
Perspective
Process
Perspective
Security
Perspective
Maturity
Perspective
Platform
Perspective
Operating
Perspective
Business
Perspective
AWS Cloud Adoption Framework
(7 Descriptive Perspectives)
Discovery
Workshop
Cloud Business
Case
Define Security
Requirements
Define Network
Environment
Define
Governance
Structure
Operational
Integration
Security
Operations
Playbook
Cloud
Environment
Optimisation
Application
Portfolio
Analysis
Cost and
Billing
Analysis
Training and
Certification
Define Cloud
Environments
Define EA
Policies and
Practices
42 Prescriptive Components Defined
54. Our Journey with AWS
• From Singapore Fling • To Cloud First / All In
55. 2011: Dev / Test POC
Key Focus
• Learn how to provision quicker
• Be able to run more projects
• Trial new tools/methodologies
Key Building Blocks
• Singapore AWS Region
• Internet VPN
• Virtual Private Cloud (VPC)
Key Learning’s
• LOTS of new IaaS concepts to learn
• External Partner = Quick Start
• Limited by VPN to Singapore
corporate data center
Dev / Test POC
Singapore region
VPN
connection
56. 2012: Dev / Test + Prod Ready
Key Focus
• Learn how to provision quicker
• Be able to run more projects
• Establish production capability
Key Building Blocks
• Singapore AWS Region
• Internet VPN / VPC
• Internet Gateway
Key Learning’s
• Security Design to internet critical
• External Partnering still of value
• Replicating our overly complex DC
security zone model over complicated
things !
corporate data center
Dev / Test/ Prod
Singapore region
VPN
connection
57. 2013: Bringing it all back home
Key Focus
• Establish On-shore Environment
• Ensure benefit of low latency
• Online launch (Taste.com.au)
Key Building Blocks
• Sydney AWS Region
• Direct Connect
• Virtual Private Cloud (VPC)
Key Learning’s
• Tactical focused project/tactical
decisions
• Learnt that it is easy to learn
• Redesigned and redeployed second
Sydney VPC
corporate data center
AWS Direct Connect
Dev / Test / Prod
Sydney region
58. 2014: Growing Pains – Time to stretch out
Key Focus
• Fix resource limits via VPC Peering
• Provide more granular design options
• Establish the base camp for wider
adoption
Key Building Blocks
• Sydney AWS / Direct Connect
• Shared Services ‘Hub’ VPC
• VPC Peering
Key Learning’s
• Use Network ACL’s sparingly
• Aim for reuse but expect exceptions
• VPC’s are ‘free’ so should have started
at least with Prod / Non-Prod VPC’s
when redesigning prior V2
corporate data center
AWS Direct Connect
VPC peering
Online / Content
Shared Services
Sydney region
59. 2015: Cloud First / All In
Key Focus
• Establish repeatable Enterprise wide
model
• Create framework for policy governance
& cost allocation
• Ensure security between LoBs
Key Building Blocks
• Sydney AWS / Direct Connect
• Multiple LoB Virtual Private Clouds
(VPCs)
• VPC Peering
Key Learning’s
• Now it is standard and in ‘code’ – can
spin up new LoB VPC in a day
• Access to AWS ‘public’ services – “It’s
Complicated”
• AWS Technology partners still needed to
address some requirements
corporate data center
AWS Direct Connect
VPC peering
Online / Content BI/Big Data Corporate System
Shared Services
Sydney region
60. Summary
• Understand the key Business drivers, opportunities but also constraints
• Conduct a Cloud capability assessment (what do we already have in the cloud? You
will be surprised!)
• Develop a clear set of Cloud principles and a Reference Architecture/ Operations
strategy
• Organisational assessment (how ready are we, and what changes do we need?)
• Ensure Executive Sponsorship of a clear Roadmap but don’t be afraid to iterate, pivot
and iterate again!