Weitere ähnliche Inhalte Ähnlich wie Cisco connect winnipeg 2018 accelerating the secure digital business through technology and culture (20) Mehr von Cisco Canada (20) Kürzlich hochgeladen (20) Cisco connect winnipeg 2018 accelerating the secure digital business through technology and culture1. © 2017 Cisco and/or its affiliates. All rights reserved. 1
Accelerating the Secure
Digital Business
Through Technology
and Culture
Cisco
Connect Your Time
Is Now
Martin Langlois
Customer Solution Architect
TOGAF 9 CID 105915 ; CCIE 4113
May 29, 2018
2. 2© 2018 Cisco and/or its affiliates. All rights reserved.
Agenda
• Cisco at a Glance
• Change Required
• Architecture Process
• Achievement Summary
3. 3© 2018 Cisco and/or its affiliates. All rights reserved.
Before we start…
• I do not work for Cisco IT
• I have used mostly CiscoLive presentation for the information contained in this
session, and my “user experience"
• This is the view of a user of Cisco IT
• I am invited in meeting where Cisco IT present how they want to evolve
4. 4© 2018 Cisco and/or its affiliates. All rights reserved.
I have always been interested by Cisco IT because…
• In 1996, I was the only SE in Québec City
• Network was a Cisco 2500 series router with an Ethernet Layer 2 switch
• Connectivity based on a Frame-Relay link with ISDN backup
• I had full access to the router configuration…
5. 5© 2018 Cisco and/or its affiliates. All rights reserved.
And now, Cisco network is
6. 6© 2018 Cisco and/or its affiliates. All rights reserved.
Cisco at a Glance
Routers LAN Switches UCS Servers Billion DNS
requests per day
Employees
Connected
Stakeholders Countries Offices
Global IT Staff
Distribution
Services Virtual Machines Connected User
Devices
Overall Usable
Storage
Data Center
Capacity
133,36172,357
10,6906,243 8,415
100 192,77076,136 PB MW
SJC 45%
India 21%
RTP 14%
EU/EM 7%
AP Other 7%
AM Other 6%
Data as of January 2018
Internet Threats
Blocked Per Day
(WSA w/AMP)
6.4M
7. 7© 2018 Cisco and/or its affiliates. All rights reserved.
Enterprise Networks
8,415
LAN Switches
313
Call Managers
6,243
Routers
San Jose/
Redwood City
Hawthorne
Denver
Hong Kong
Bangalore
Tokyo
Sydney
Chicago
Kanata
MVDC
Orlando
RTP
Lawrenceville
NY
London
Amsterdam
Bangalore/
Chennal
Hong Kong
Singapore
Shanghai
Sydney
Tokyo
San Jose
San Jose
Hawthorne
Hawthorne
10 Gb/s
2.5 Gb/s
622 Mb/s
155 Mb/s
Tier 1a Transit Node
Production Data
Center
Tier 1b Non-Transit Node
San Paulo
639
Wireless LAN
Controllers
Virtual Private
Network
101,289
932
Wide Area
Application (WAE)
Engines
72
Cache Engines
433
MDS
403
ASA
30,481
Cisco Virtual
Office
Data as of January 2018
8. 8© 2018 Cisco and/or its affiliates. All rights reserved.
Mobility
ESTORE APPLICATIONS
Cisco Spark
• An enterprise-grade collaboration
app
• Share content and from any device,
anywhere
Cisco WebEx
• Stay connected wherever you are by
joining any meeting from your mobile
device.
Providing employees with over 80 apps, Cisco eStore Apps (mobile) has experienced an average of 2.8K
downloads per month and boasts over 40K unique active users. Additionally, estore.cisco.com experiences
24K unique visitors per month.
Cisco AnyConnect
• Secure, on-demand VPN that
automatically connects in the
background when needed
CISCO BYODCISCO SUPPLIED
65,344
MOBILE
DEVICES
127,436
CISCO
SUPPLIED
DEVICES
7,055
44,001
341
13,937
75,887
45,706
5,965
Data as of January 2018
9. 9© 2018 Cisco and/or its affiliates. All rights reserved.
Security
28 Billion
Netflows analyzed/day (StealthWatch)
2.5 Million
Email transactions blocked /day(ESA)
2.0 Million
Web transactions blocked (WSA)
47 TB
Internet Traffic inspected
1.2 Trillion
SIEM Events/day across network
7.6 Billion
DNS requests/day (Umbrella)
17K
Files analyzed/day (ThreatGrid/AMP)
Scope Results
1232 Devices Deployed
For detection & prevention
InfoSec Team members
Data Analytics
(4TB/day)
& Security Services
1.85 M
Phish emails sent to Cisco employees
through PhishPond
(since April 2013)
Agents
5-10%
• Repeat Clickers Reduced
From 12% to 1%
13.4 Million
Intrusion alerts/day (NG-IPS)
6.25 Million
DNS requests blocked (Umbrella)
New Phishing Click Rate down from 30%
Data as of January 2018
22
Managed Incidents (CSIRT)
10. 10© 2018 Cisco and/or its affiliates. All rights reserved.
How Did Cisco IT Evolved?
11. © 2018 Cisco and/or its affiliates. All rights reserved. 11
The Challenges
• Too many sites confused
users
• Didn’t know what was
available or where
• No visibility to usage
• Hard to manage costs &
policy
• Complex ordering processes
• Painfully slow
• Painfully costly
12. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
Building the eStore Platform
Re
Entitlement Approvals TaxonomyChargebackReporting
Desktop Apps
Mobile Apps
Desktop HWWeb Apps
Virtual HW
Access to Storefront from
all OS & Device Types
Pervasive Security
(versions, enforcement,
trusted devices)
Personalized, User Friendly
Catalog for all IT Services
Integrated with Enterprise
Service Management
Automated and Seamless
Service Provisioning
Cisco eStore
IT Services
Cisco Process
Orchestrator
Cisco Prime
Service Catalog
13. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
eStore Demo
14. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
§ Critical mass of services is key to user adoption
§ User adoption drives service adoption
Stocking the Store
1,405 Offerings
Desktop
Software
Mobile Apps
Web Tools
Collaboration
Network
Connectivity
Infrastructure
Devices
Engagement
Services
15. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
Intuitive UX &
relevant
services
Strong adoption
by the users
Productivity
savings
Good reputation Further adoption
Establishing the Brand
Design a consumer-oriented shopping
experience
Consumer-oriented shopping experience
16. 16© 2018 Cisco and/or its affiliates. All rights reserved.
A Cultural Change
17. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
IT as a Service
Simplify Everything
Modular IT
Extend the Cloud
Insightful Data
Self Service
Continuous
Delivery
Enable New Business Models
Automation
Continuous
Innovation
AnalyticsSimplification
Security
Cisco’s Digital Process: Enabled by IT
18. 18© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
2
4
5
1
3
Blueprint for a Secure Digital Business
Enable New Business Models
IT in Lockstep with Business Transformation, One Conversation
Outcome Focus
Simplify Everything – IT as a Service
e-Store, Supply Chain, Customer Care as a Service
Simplicity
Modular IT and Automate
Decouple, Modularize, Reuse, Micro-services, Extend the Cloud
Agility
Deliver Data to Drive Business Decisions
Data as a Service: LoB Self-Service Consumable Data
Insights
Continuous Delivery
DevOps, Start With a Minimum Viable Product Innovation
6 Security Everywhere
Protect your network, data, cloud, and organization
Security
19. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
Culture eats strategy for
Breakfast, Lunch and Dinner!
21. 21© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
A in ACI | Modular IT | Cloud Native Mindset
Automate: Extend the Cloud
One Button
Provisioning
Technology meeting the
pace of business change.
Reduced 2000+ Access
Control List (ACL) entries
to 10 policy contracts
Full Stack
Programmability
Programmability all the
way up the stack
with ACI 40gb
to 160gb
Multi Tenancy and Full
Stack Security Policy
Rapid change with
confidence; Near Zero
down time
Tetration Analytics & ACI
Intelligent Monitoring
through Stack
Real time logging and
analytics for rapid
decision making
30% improvement in
network latency
Automated
Infrastructure Code
Deployment
Integration of Cloud with
Platforms & Infrastructure
Data Analytics,
ACI, Cloud, Security, Agile
Simplification Automation
Monitor &
Adapt
Continuous
InnovationSecurity
Global Cloud Strategy
22. 22© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
Journey to the
Infrastructure Services Cloud
* Fully programmable infrastructure
Cisco Nexus
Cisco UCSx86
Compute/Network
Virtualization
Cisco ONE Image Repository
Service Catalog
Show/Chargeback
ACI, APIC
Segmentation
PaaS
Database
SDaaS
Cisco IT Elastic Infrastructure Service (CITEIS)
Unified
Infrastructure Virtualization Automation Self-Service Multi-Tenancy Elasticity
2009 2011 2013 2015*
Co
Clo
Da
23. 23© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
Journey to the
Infrastructure Services Cloud
* Fully programmable infrastructure
Cisco ONE Image Repository
Service Catalog
Show/Chargeback
ACI, APIC
Segmentation
PaaS
Database
SDaaS
Cisco IT Elastic Infrastructure Service (CITEIS)
Automation Self-Service Multi-Tenancy Elasticity
2011 2013 2015*
Containers
Cloud-native apps
Data-driven ops
Hybrid cloud
Learning network
Self-protecting
apps
2017
Micro
Services Any Cloud
24. 24© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
• New markets and
business models
• Global expansion
• User experience
• Enable customer
success
• Increase data
center tiers
• Multi-site architecture
• No high-risk
geographies
• Improve availability
and recoverability
• Build/occupy
data center
• Optimize demand
• Consolidate
• IT as a business
• IS provider model
• Service-oriented
architecture
• Focus on operational
excellence
Global Data Center Strategy
Virtualization Is Key
Capacity
Resiliency
Transformation
Growth
Enablement
25. 25© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
Global Data Center Strategy Results
Virtualization
Rate
40% to 95% DC Facility
Capacity
14MW to 30MWCapacity
20% to 65%
P1 Unplanned Downtime
Down 93%MVDC
+ DR
100%
Security Awareness
Resiliency
Time to
Deliver VM
45 days to 15 min
Time to
Deliver Env
45 days to 1 DayCost
Down 70%
Self-Service
Offerings
25% to 80%
Transformation
26. 26© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
Global Cloud Strategy
• Maximize use of cloud
capabilities – cloud-native
• Replicate and move,
security follows
• Auto-scale up/down at will
• Geo-distribute for resiliency
and performance
• Optimize existing DC’s
• Secure multi-tenancy
• Flexible, programmable
infrastructure
• Extend DC capacity to
public cloud (hybrid cloud)
• Deliver outcomes at the
speed of business
• Simplify deployment
and operations
• Exposes cloud services
as API
• Binds apps to infra
resources
• Policy-driven
orchestration, security
• Data-driven operations
and security
Programmability Is Key
Capacity
(Optimize & Extend)
Software-Defined
Intelligence
App/Data
Transformation
Resiliency,Security
Speed
27. 27© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
• Maximize use of cloud
capabilities – cloud-native
• Replicate and move,
security follows
• Auto-scale up/down at will
• Geo-distribute for resiliency
and performance
• Optimize existing DC’s
• Secure multi-tenancy
• Flexible, programmable
infrastructure
• Extend DC capacity to
public cloud (hybrid cloud)
• Deliver outcomes at the
speed of business
• Simplify deployment
and operations
• Exposes cloud services
as API
• Binds apps to infra
resources
• Policy-driven
orchestration, security
• Data-driven operations
and security
Programmability Is Key
Capacity
(Optimize & Extend)
Software-Defined
Intelligence
App/Data
Transformation
Resiliency,Security
Speed
Cloud-Native
Cloud Insights
Cloud
Orchestration
Cloud Resources
Software-Defined
Intelligence
Global Cloud Strategy
28. 28© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
Continuous Delivery
Reduction in
Vulnerabilities
Increase in
Delivered
Capabilities
2X
60%
92% Increase
in Quality
Cisco Accelerated Continuous Delivery from 23% to 73% of Services in 18 Months
Build the
Right Thing
(Business)
Build the
Right Way
(IT)
Speed
Security
Quality
Start with MVP
In Every Service
Tied to Business Value
5
29. 29© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29
Network Endpoint Mobile Virtual Cloud
Point in Time ContinuousThreat Intelligence
X
DURING
Detect
Block
Defend
AFTER
Scope
Contain
Remediate
BEFORE
Discover
Enforce
Harden
Security Everywhere
30. © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30
Culture eats strategy for
Breakfast, Lunch and Dinner!
31. 31© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31
Talent
Portfolio
Talent
Engagement
Talent
Development
Talent
Composition
Diversity
Geographies
Pipeline
How do I source
this work faster and
continuously?
What cool work
can I do? How can
I develop?
My leader see my
value — I love this
organization!
I get to work with
a diverse team.
Culture:
Best Place to Work