© 2013 Cloud Technology Partners, Inc. / Confidential
1
David.Linthicum@cloudtp.com / Senior Vice President
Becoming a Clo...
© 2013 Cloud Technology Partners, Inc. / Confidential
2
Geek Level
Your Grandparents who
are still using AOL
That guy who ...
© 2013 Cloud Technology Partners, Inc. / Confidential
3
The business benefit of cloud governance is clear.
Introduction
Co...
© 2013 Cloud Technology Partners, Inc. / Confidential
4
What is Multicloud?
© 2013 Cloud Technology Partners, Inc. / Confidential
5
The Promise of Multicloud
On site
Hosted
Public
Source: HP
© 2013 Cloud Technology Partners, Inc. / Confidential
6
Cloud Maturity Model
Orchestrate
Automate
Virtualize
Combine
Stand...
© 2013 Cloud Technology Partners, Inc. / Confidential
7
Characteristics of a “World Class” Cloud
Consumers Want
Elasticity...
© 2013 Cloud Technology Partners, Inc. / Confidential
8
• So, what is a multicloud? Think something more complex than a hy...
© 2013 Cloud Technology Partners, Inc. / Confidential
9
Why cloud governance?
© 2013 Cloud Technology Partners, Inc. / Confidential
10
The Idea is to Place Control and Automation Into a Domain
© 2013 Cloud Technology Partners, Inc. / Confidential
11
Security&Identity
Management&ServiceGovernance
Data
Data Services...
© 2013 Cloud Technology Partners, Inc. / Confidential
12
1. Governance
2. Regulatory Compliance
3. Security & Identity Man...
© 2013 Cloud Technology Partners, Inc. / Confidential
13
“as-is”
© 2013 Cloud Technology Partners, Inc. / Confidential
14
“to be”
© 2013 Cloud Technology Partners, Inc. / Confidential
15
Deploy
© 2013 Cloud Technology Partners, Inc. / Confidential
16
Enterprise
data center
Enterprise
data center
Private cloud Hoste...
© 2013 Cloud Technology Partners, Inc. / Confidential
17
Cloud Governance Solutions
© 2013 Cloud Technology Partners, Inc. / Confidential
18
The Basic Idea
© 2013 Cloud Technology Partners, Inc. / Confidential
19
Cloud Governance Technology
Cloud Service/API
Governance
Runtime ...
© 2013 Cloud Technology Partners, Inc. / Confidential
20
Cloud Governance is the Center of it All
Methodology
KPI &
Monito...
© 2013 Cloud Technology Partners, Inc. / Confidential
21
A CMP enables Enterprises to manage many clouds as one
my network...
© 2013 Cloud Technology Partners, Inc. / Confidential
22
A Cloud Management Platforms (CMP) is an integrated suite of tool...
© 2013 Cloud Technology Partners, Inc. / Confidential
23
Runtime
Governance
Repository Logs
Policies
Policies
Monitoring
S...
© 2013 Cloud Technology Partners, Inc. / Confidential
24
Create a Governance Model
Defined
Policies
Define Policies
Design...
© 2013 Cloud Technology Partners, Inc. / Confidential
25
Gartner’s Cloud Management Platform Reference Architecture
Access...
© 2013 Cloud Technology Partners, Inc. / Confidential
26
• This problem has not gone unnoticed
• All of the major software...
© 2013 Cloud Technology Partners, Inc. / Confidential
27
Policy
Policy
Policy
Policy
Governance/Security
Single consolidat...
© 2013 Cloud Technology Partners, Inc. / Confidential
28
a
A Cloud Management Platform provides automation and governance
...
© 2013 Cloud Technology Partners, Inc. / Confidential
29
Ask by email / David.Linthicum@cloudtp.com / www.cloudtp.com
Ques...
Nächste SlideShare
Wird geladen in …5
×

Becomming a cloud governance ninja linthicum interop fall 2013

1.994 Aufrufe

Veröffentlicht am

Veröffentlicht in: Technologie, Business
0 Kommentare
2 Gefällt mir
Statistik
Notizen
  • Als Erste(r) kommentieren

Keine Downloads
Aufrufe
Aufrufe insgesamt
1.994
Auf SlideShare
0
Aus Einbettungen
0
Anzahl an Einbettungen
22
Aktionen
Geteilt
0
Downloads
97
Kommentare
0
Gefällt mir
2
Einbettungen 0
Keine Einbettungen

Keine Notizen für die Folie
  • Cloud Management Platform is a product or integration of products used to manage the use of private, public, and multi-cloud (combination of private and public cloud consumption). The cloud management platform simplifies the use of the cloud(s) by allowing self-service provisioning of resources, capturing billing and metering data, managing resource quotas, image lifecycle management, and providing resource optimization. There is typically many dynamics that are factored into determining which cloud environments an application will reside. Examples of these factors include workload type (DEV, TEST, QA, Pre-Prod, Prod), sensitivity of the data in the application, and the need for elasticity of the application resources. Based on the defined factors, the cloud management platform provides automated management of the underlying compute environment of the applications to the appropriate cloud end-points and simplifies overall operability. Without a cloud management platform, the operability of the cloud will be cumbersome, labor intensive, and prone to errors.
  • NOTES: As mentioned earlier, we use the Gartner category description of “Cloud Management Platform” for convenience… We actually think there’s room for Gartner to improve this…but it’s a good way to look at it from a high level.  Generally speaking, you can divide the capabilities defined by Gartner into two categories – those oriented toward implementing clouds and those oriented toward providing functionality across numerous clouds. Gartner basically describes four different levels. Starting from the bottom.. up…Resource level is at the bottom. Which includes your cloud infrastructure. Your servers, disks, hypervisors, storage area networks, etc. Next you’ve got Resource Mgmt. This where you start to introduce basic management capabilities to do things like resource assignments, and basic infrastructure monitoring.An example of resource mgmt could be vCenterNext you’ve got a Service Optimization layer that performs the orchestration of various workloads and topologies that you deploy, and enforces governance on those deployments using various policies. On top of that you’ve go the Service Management layer. Here you start abstracting underlying capabilities… and rolling them up and exposing them in different tools…like:A service catalog, to publish and consume different offeringsA designer tool, to assemble workloads and topologies and configure them for deploymentThe highest layer, Access Management, includes identity management… to determine if someone should have access and subscriber management, to determine what actions they’re permitted to do
  • This problem has not gone unnoticed. All of the major software companies have offered solutions, most of them with a traditional service management foundation. New vendors have entered the market, most of them from the pure cloud perspective. They have either an application or Infrastructure focus. Many started with a specific (usually public) platform or from a specific set of use cases, e.g. monitoring, deployment.
  • NOTES: The focus on applications and platforms is important… but those apps and platforms don’t do you much good unless you’ve also got effective governance in place…. otherwise you can’t deliver them with any meaningful self-service automation. So the way you do Could Governance and policy matters… Whatyou need is to take an application-centric approach with an extensible policy engine on the back end… When we’re talking about cloud governance in the Cloud Management Platform, we’re talking about much more than just Role-based Access Control. Or simple provisioning constraints.  Out of the box with the Cloud Management Platform, we provide over a dozen different types of application-centric policy controls. Everything from…Regulatory compliance policiesSLA policies including compound auto-scaling rules.Configuration management policies for continuous compliance of workloads after they’ve been deployed. Detailed Security zone policies including configuring firewall rules and embedding security agents and utilities. Lifecycle event policies to customize environments based on SDLC stage.Orchestration policies. Entitlement policies.Workload placement policies to limit workloads to authorized environments.Quotas, scheduling, leasing, chargeback, backup, failover, resource capacity policies.Storage tier policiesAnd much more….. And these policies apply up and down the application topology shown in the middle. So they absolutely apply to the infrastructure layer… for configuring network, for storage tiering… including storage provisioningBut also all the way up through configuration the application components, and the actually application itself The CMP insulates the cloud services consumers from needing to understand what needs to fit where and why? So the CMP represents this “control plane”…And the idea is to fully automate and govern IT resource consumption ….. and simplify the complexity of doing that across different types of clouds.
  • NOTES:I mentioned the policy controls available in the Cloud Management Platform. Well, there is a lot of power and flexibility when you apply these to each stage of the SDLC.  For example:For the Dev team, You can have policies to allow EC2 usage for some projectsOr provide chargeback reports to managersFor QA, You can require that deployments only go to the internal private cloud (based on the live customer test data that’s used). You can enable autoscaling for performance testing purposes. For production, you can embed a completely different set of monitoring and security agents, and enforce different security zones, to give you a different security postureAnd yet… there are some things you may want to keep totally consistentLike the SOE… which enables certain services to be installed on all instances within a project.Or adhering to regulatory constraints … like geographic location or some other industry compliance mandate.  These policy controls provide you with a lot of flexibility and control, and allow you to set the right balance between customization and consistency for your environments.
  • Becomming a cloud governance ninja linthicum interop fall 2013

    1. 1. © 2013 Cloud Technology Partners, Inc. / Confidential 1 David.Linthicum@cloudtp.com / Senior Vice President Becoming a Cloud Governance Ninja
    2. 2. © 2013 Cloud Technology Partners, Inc. / Confidential 2 Geek Level Your Grandparents who are still using AOL That guy who can convert your name to Hex
    3. 3. © 2013 Cloud Technology Partners, Inc. / Confidential 3 The business benefit of cloud governance is clear. Introduction Combine the value of governance with the value of leveraging cloud computing in general and the core benefits of cloud governance become even more tangible: • Faster time to market • Operational cost savings • Ability to expand elastically • Ability to better secure and control your business assets As we move from simple, single cloud solutions, to complex multicloud implementations, the need for governance becomes much more apparent. We’ll explore: • What is the real value of cloud governance? • The rise of multicloud and the use of governance • Best practices and top emerging technologies • Step-by-step governance process to ensure a successful deployment
    4. 4. © 2013 Cloud Technology Partners, Inc. / Confidential 4 What is Multicloud?
    5. 5. © 2013 Cloud Technology Partners, Inc. / Confidential 5 The Promise of Multicloud On site Hosted Public Source: HP
    6. 6. © 2013 Cloud Technology Partners, Inc. / Confidential 6 Cloud Maturity Model Orchestrate Automate Virtualize Combine Standardize Time • Lower cost • Consistent use of technology • Enhanced performance • Reduced complexity • Normalize assets • Increase efficiency • Improve management • Improve governance (non-automated) • Lower cost • Delayed provisioning • Improved resource management and utilization • Moving to centralized control • Initial use of services • Lower cost • Self provisioning • Automated governance • Adaptable security • Improved user experience • Service oriented • Dynamically aligned to the business • Self adapting • Automated governance and security • Enhanced business agility Cloud Innovator Cloud User Preparing for Cloud BusinessValue
    7. 7. © 2013 Cloud Technology Partners, Inc. / Confidential 7 Characteristics of a “World Class” Cloud Consumers Want Elasticity & Scalability Control Productivity Agility Cost • Flexible resource configurations • Dynamic scale-up / scale-down of resources • Seamless support of multiple clouds • Flexible resource quotas • Role based access controls • Comprehensive monitoring and logging • Image Lifecycle Management • Integration into Incident, Change, Patching Management • Common Self – Service Provisioning Portal into all cloud end points • Robust Service Catalog meets all of customer cloud needs • End to End Automation • Supported APIs allowing the applications and data sources to communicate with one another • Self – Service Resource Provisioning • Rapid Elasticity • Capacity on Demand insures resources are always available • Rapid disaster recovery – Active / Active application support • Seamless support for different endpoints • Metering and Chargeback • Pay as you go • Consumption based • Reliable asset tracking and usage reporting Providers Deliver
    8. 8. © 2013 Cloud Technology Partners, Inc. / Confidential 8 • So, what is a multicloud? Think something more complex than a hybrid cloud, which is typically a paired private and public cloud. Multicloud is more clouds added into the mix, perhaps two or more public IaaS providers, a private PaaS, on-demand management and security systems from public clouds, private use-based accounting…you get the idea. • This is really where we have all been headed in the last few years, creating solutions from a complex set of best-of-breed private and public cloud computing services. This is much the same process as when we moved to complex distributed internal systems in the past. We built what we needed by integrating various technologies to form the business system to meet our exact requirements. This is no different; it just uses cloud-based technologies. Multicloud
    9. 9. © 2013 Cloud Technology Partners, Inc. / Confidential 9 Why cloud governance?
    10. 10. © 2013 Cloud Technology Partners, Inc. / Confidential 10 The Idea is to Place Control and Automation Into a Domain
    11. 11. © 2013 Cloud Technology Partners, Inc. / Confidential 11 Security&Identity Management&ServiceGovernance Data Data Services/Abstraction Transactional Services Process Management (BPMS) Composites/Portals Monitoring and Management Rules Management Reference Architecture
    12. 12. © 2013 Cloud Technology Partners, Inc. / Confidential 12 1. Governance 2. Regulatory Compliance 3. Security & Identity Management 4. Business Continuity 5. Process and Services 6. Data Management 7. System Integration 8. Resource Skills & Knowledge 9. Application Readiness 10. Network Readiness Enterprise Vulnerabilities - Assess your Risks COMPLEXITY OF MITIGATING RISK RISKTOORGANIZATION 1 2 5 3 4 6 7 8 9 10
    13. 13. © 2013 Cloud Technology Partners, Inc. / Confidential 13 “as-is”
    14. 14. © 2013 Cloud Technology Partners, Inc. / Confidential 14 “to be”
    15. 15. © 2013 Cloud Technology Partners, Inc. / Confidential 15 Deploy
    16. 16. © 2013 Cloud Technology Partners, Inc. / Confidential 16 Enterprise data center Enterprise data center Private cloud Hosted private cloud Managed private cloud Enterprise Shared cloud services Enterprise A Enterprise B Public cloud services A Users B Third-party hosted and operated Third-party hosted  Private  Implemented on client premises  Client runs/ manages  Third-party operated  Enterprise owned  Mission critical  Packaged applications  Third-party owned and operated  Standardization  Centralization  Security  Internal network  Mix of shared and dedicated resources  Shared facility and staff  Virtual private network (VPN) access  Subscription or membership based  Shared resources  Elastic scaling  Pay as you go  Public Internet Corporate Firewall Source: Jimmy Mills, IBM Consider the Emerging Architecture – and this could be for multiple cloud providers
    17. 17. © 2013 Cloud Technology Partners, Inc. / Confidential 17 Cloud Governance Solutions
    18. 18. © 2013 Cloud Technology Partners, Inc. / Confidential 18 The Basic Idea
    19. 19. © 2013 Cloud Technology Partners, Inc. / Confidential 19 Cloud Governance Technology Cloud Service/API Governance Runtime (Automated) Service Oriented Security Oriented Design- Time Cloud Management Platforms Active (Automated) Operations Oriented Development Oriented Passive Provider Native Governance and Management Active Provisioning Security Management Passive Types of Cloud Governance Solutions
    20. 20. © 2013 Cloud Technology Partners, Inc. / Confidential 20 Cloud Governance is the Center of it All Methodology KPI & Monitoring Lifecycle Process Certification QoS Standards Technology Portfolios Incentives Rules & Resp. People Competency Organization Tools Cloud Governance
    21. 21. © 2013 Cloud Technology Partners, Inc. / Confidential 21 A CMP enables Enterprises to manage many clouds as one my network my serversmy storage Public Clouds Public/Private Clouds CONFIGURATION AUTOMATION GOVERNANCE GLOBAL SERVICES Internal DC my serversmy storage BARE METAL Cloud Management Platform IT ORGANIZATION
    22. 22. © 2013 Cloud Technology Partners, Inc. / Confidential 22 A Cloud Management Platforms (CMP) is an integrated suite of tools that provides automated management of public and private cloud environments. CMPs facilitate the operation and build out of cloud services by eliminating the need for cloud silo specific interfaces and end user knowledge of cloud underpinnings. • CMPs provide capabilities including: – Self-service interfaces for • Operations • Monitoring • End User requests – Image provisioning – Metering and billing – Workload optimization via • Policies • Workflow • Roles Based Access Control (RBAC) What is a Cloud Management Platform
    23. 23. © 2013 Cloud Technology Partners, Inc. / Confidential 23 Runtime Governance Repository Logs Policies Policies Monitoring Service Governance is Policy-Driven
    24. 24. © 2013 Cloud Technology Partners, Inc. / Confidential 24 Create a Governance Model Defined Policies Define Policies Design Policies Policy Designs Implement Policies Governance Model Process Model Information Model Service Model
    25. 25. © 2013 Cloud Technology Partners, Inc. / Confidential 25 Gartner’s Cloud Management Platform Reference Architecture Access Management Service Management Service Optimization Resource Management Resources Cloud API CloudManagement Platform Cloud Implementation • Self-service interface • Identity management • Service catalog • Service provisioning • Service governor • Service orchestration • Resource configuration management • Resource monitoring • Resource pools • Virtual and physical resources Source: Gartner, “How to Build an Enterprise Cloud Service Architecture,” March 5, 2012
    26. 26. © 2013 Cloud Technology Partners, Inc. / Confidential 26 • This problem has not gone unnoticed • All of the major software companies have offered solutions • New vendors have entered the market, most of them from the pure cloud perspective • Vendors typically have an application or Infrastructure focus and have expanded from point solutions Vendors Rush in
    27. 27. © 2013 Cloud Technology Partners, Inc. / Confidential 27 Policy Policy Policy Policy Governance/Security Single consolidated control point for governance, orchestration, and delivery Applications  Regulatory compliance policies  SLA policies including autoscaling  Configuration mgmt policies  Security zones policies  Lifecycle event policies  Orchestration policies  Access control/entitlement policies  Workload placement policies  VM quotas and scheduling  Metering/charge back policies  Backup and failover policies  Resource capacity policies  Storage tier policies  Much more… Roles Rights & Permissions Projects Orgs Network Compute Storage OS & OS Config. SOE Agents/Util Security and Environment Config. Code/Artifacts Infrastructure & SOE Platforms Services Topologies/Config App Config. Application Components Cloud Management Platform
    28. 28. © 2013 Cloud Technology Partners, Inc. / Confidential 28 a A Cloud Management Platform provides automation and governance across the application development lifecycle Use policies to provide both consistency and customization: Customize Environment  Dev Security zone  Dev VM quotas  Dev charge back  Public cloud permitted  No autoscaling  No failover Customize Environment  QA Security zone  QA monitoring  QA autoscaling  Private cloud only  QA backup/failover Customize Environment  Prod Security zone  Prod monitoring  Prod auditing  Prod autoscaling  Private cloud only  Prod backup/failover …And Enforce Consistency  SOE packages  App topologies  Reg. compliance Policy Controlled Consistency Policy Controlled Customization Dev Blueprint QA Blueprint UAT Blueprint …And Enforce Consistency  SOE packages  App topologies  Reg. compliance …And Enforce Consistency  SOE packages  App topologies  Reg. compliance
    29. 29. © 2013 Cloud Technology Partners, Inc. / Confidential 29 Ask by email / David.Linthicum@cloudtp.com / www.cloudtp.com Questions?

    ×