Taking a "cloud first" approach requires a different approach than you probably had to consider for your initial few workloads in the cloud. You'll be diving into the deep end of hybrid environments, and that means taking a broad view of your IT strategy, architecture, and organizational design.
Through our experience in helping enterprises navigate this change, AWS has developed the Cloud Adoption Framework (CAF) to assist with planning, creating, managing, and supporting the shift. In this session, we cover how the CAF offers practical guidance and comprehensive guidelines to enterprise organizations, particularly around roles, governance, and efficiency.
1. November 13, 2014 | Las Vegas, NV
Miha Kralj, Principal Consultant, AWS Professional Services
Blake Chism, Senior Consultant, AWS Professional Services
2.
3. Customer
Internal BusinessProcesses
Learning and Growth
Financial
Manage cost of IT
Enable value creation
Demonstrate competitive costs
Deliver quality IT services
Promote culture of innovation
Acquire skills in enabling technologies
Standardize platforms and architectures
Manage IT service quality
Improve IT productivity
Utilize economies of scale
4. Value
Benefits
Detriments
Risk
Cost
Reputation
Compliance
Disruption
Obsolescence
Capex
Opex
Growth
Upgradeability
Speed
Agility
Responsiveness
Effectiveness
Adaptability
Rapid Change
Time to delivery
Time to market
Work efficiency
Parallelism
Tactical
Strategic
IT Innovation
IT-as-a-Service
Experimentation
VC Funding
Lower the bar to entry
Disruptive Innovation
New Business Models
Unbundling
Long Tail
Multi-sided Platform
Open Business
6. Measured elastic IT resourcethat can be rapidly provisionedon-demand, such as: Object storage service
Service
A technology collectionthat can be transparently obtained from collection of available stencils, such as a LAMP stack
Stack
An aggregated IT functionalityperformed by collection of various IT stacks, such as:Managed Desktop
Workload
An abilityof IT to provide value to the business through a collection IT workloads, such as: Line of Business Platform
IT Capability
An IT componentthat includes pre-defined and configured cloud services, such as Spot instances in auto-scaling group
Template
7. Foundational Services
Platform Services
Security
Firewall
Identity & Access
Auditing
Encryption
Storage
Object Store
File Store
Archiving
Backup/Recovery
Storage Integration
Compute
General Purpose
Compute optimized
Memory Optimized
GPU Optimized
Storage Optimized
Server OS
Linux
BSD
Windows
Other
Data Integration
ETL/ELT
Replication
Queueing
Data Load
MDM
App Services
Mobile
App Store
Push
Analytics
Identity
Composites
Search
Workflow
Messaging
Streaming
Transcoding
Orchestration
Protocols
http
REST
SMTP
IM/SMS
SOAP/WS-*
RDP/VNC
SSH
Clients
Browser
Email
Legacy App
Mobile App
TXT
Store app
Term
Data Analytics
Data streaming
Data Processing
Data Mining
Machine Learning
Event Processing
Networking
Cloud Isolation
Connectivity
Elasticity
Name Resolution
Content Delivery
App Server
Java
PHP
Python
Ruby
.NET
Node.js
SAP
Database
Relational
NoSQL
In-memory DB
Data Warehouse
HANA
12. Organizational
Goals
Manage cost
of IT
Delivery QualityIT Services
ImproveIT Capabilities
Empower and
Support End Users
Capabilities
Activities
Skills
Job Descriptions
Roles
Accountabilities
Assignments
13. PeoplePerspective
Organizational Structures
Roles and Job Descriptions
Training Certification Readiness
Manage Staffing
Organizational Change Management
Skills
and
Competencies
14. -Effective ongoing service management
-Governance and monitoring
-Initiation of new activities
-Feedback loop and Optimization
-Creating/building/coding IT services that meet/exceed defined expectations
-Testing/validating IT services against testing plan and acceptance criteria
-Transition/deployment of IT services into operations
-Assessing and analyzing the current state
-Defining strategic vision and direction
-Setting financial, GCR and organizational structure
-Validation before delivery begins
IterativeDevelopment
Strategy
Analysis
Design
Transition
Operations
Improvement
Value-basedPlanning
AutomatedOperations
15. Process Perspective
Portfolio Management
Service Delivery
Management
Program & Project Management
Continuous Integration/ Continuous Delivery
Process
Automation
Quality Management
16. Network
AWS Internet Security
Elastic Load Balancing SSL
Security Groups
VPC VPN Gateway
VPC Subnets
VPC NACLs
VPC Routing Tables
AWS Direct Connect
Geographic Diversity
Amazon Route 53 Health Checks
Monitor
Log, Audit, & Analyze
Monitor & Alert
Amazon CloudWatch
Amazon SNS Notifications
AWS Abuse Notifications
Trusted Advisor
Amazon EMR
Amazon Kinesis
S3, CloudFront Access Logs
Application Logs
Database Logs
Operating System Logs
AWS CloudTrail
Amazon Redshift
Platform
Security Operations Center
AWS Service Level Agreements
HIPAA
SOC 1 / 2 / 3
PCI DSS
Level 1
ISO 27001
FedRAMP
DIACAP and FISMA
ITAR
FIPS 140-2
CSA
MPAA
AWS Assurance Programs
Manage
Authenticate & Authorize
Organize, Deploy, & Operate
Access Policy Language
Access Policy Simulator
IAM Users, Groups & Roles
IAM MFA
IAM STS Federation
IAM Password Policy
IAM SAML 2.0
IAM Web Identities
SSL API, CLI, Console
AWS CloudHSM
Resource Tagging
Snapshots & Replication
AWS CloudFormation
Design
Whitepapers
Plan, Learn
Overview of Security Processes
Logging in AWS
Governance for AWS
AWS Webinars & Videos
AWS Security Best Practices
AWS Security Test Drive Labs
Operational Checklists for AWS
Security for Microsoft Apps on AWS
AWS Simple Monthly Calculator
AWS Reference Architectures
AWS Risk and Compliance
AWS Auditing Security Checklist
Customer & Partner Whitepapers
Database
Oracle Transparent Data Encryption
MS-SQL SSL
Oracle NNE
Amazon RedshfitCluster Encryption
Amazon RDS Auto Minor Patching
MS-SQL Transparent Data Encryption
DynamoDB SSL
Amazon EMR Job Flow Roles
MySQL SSL
PostgreSQL SSL
SimpleDB SSL
Amazon Redshift Encrypted S3 Backups
DynamoDB Fine Grained Access
Storage & Content
Amazon S3 ACLs, Bucket Policies
Amazon S3 Server-Side Encryption
Amazon S3 MFA Delete
Lifecycle Rules
Client-Side Encryption
Amazon S3 SSL
Amazon S3 Object Metadata
AWS Storage Gateway SSL
AWS CloudFront Signed URLs
Amazon S3 Object Versioning
Amazon S3 Object ETags
Amazon Glacier SSL
AWS CloudFront SSL
Amazon Glacier Server-Side Encryption
People
AWS SAs & ProServe
AWS Sales, Support, TAM
AWS Forums & Documentation
AWS Training & Certification
AWS System Integration Partners
AWS Compliance Forum
Instance
Auto Scaling
SSH Keys
Bastion Host
Bootstrapping
Amazon Machine Images (AMIs)
AWS CloudFront Load Distribution
Penetration Testing Process
Elastic Beanstalk Rolling Patching
AWS Marketplace Offerings
Server Certificates
Resource-Level Permissions
Dedicated Instances
18. OperatingPerspective
Cloud Service Management
SLA/OLA Strategy
Business Continuity Planning
Incident & ProblemMgmt
Change and Configuration Management
Performance & Operational Health
19. The AWS CAF organizes and describes the perspectives in planning, creating, managing, and supporting a modern IT service.
Offers practical guidance and comprehensive guidelines for establishing, developing and running AWS cloud-enabled environments.
It provides a structure where business and IT can work together towards common strategy and vision, supported by modern IT automation and process optimization.
Whitepaper: http://bit.ly/AWSCAF
People
Perspective
Process
Perspective
Security
Perspective
Maturity
Perspective
Platform
Perspective
Operating
Perspective
Business
Perspective
20. Cost Mgmt
BCP
Org Structure
Architecture Optimization
Security Review
Capability Review
Process Automation
People
Perspective
Process
Perspective
Security
Perspective
Maturity
Perspective
Platform
Perspective
Operating
Perspective
Business
Perspective