CLOUD COMPUTING READINESS CHECKLIST

Similar documents
COMPTIA CLO-001 EXAM QUESTIONS & ANSWERS

A Checklist for Compliance in the Cloud 1. A Checklist for Compliance in the Cloud

TB+ 1.5 Billion+ The OnBase Cloud by Hyland 600,000,000+ content stored. pages stored

Lakeshore Technical College Official Policy

Total Cost of Ownership: Benefits of the OpenText Cloud

What can the OnBase Cloud do for you? lbmctech.com

Total Cost of Ownership: Benefits of ECM in the OpenText Cloud

Choosing a Secure Cloud Service Provider

Business Technology Briefing: Fear of Flying, And How You Can Overcome It

SUBJECT: REQUEST FOR PROPOSALS FOR HARBOR DEPARTMENT CLOUD COMPUTING SERVICES

Building a Secure and Compliant Cloud Infrastructure. Ben Goodman Principal Strategist, Identity, Compliance and Security Novell, Inc.

Virtustream Cloud and Managed Services Solutions for US State & Local Governments and Education

EXAM - CL CompTIA Cloud Essentials Exam. Buy Full Product.

CONSIDERATIONS BEFORE MOVING TO THE CLOUD

Information Technology Security Plan Policies, Controls, and Procedures Identify Governance ID.GV

Accelerate Your Enterprise Private Cloud Initiative

INTO THE CLOUD WHAT YOU NEED TO KNOW ABOUT ADOPTION AND ENSURING COMPLIANCE

ECSA Assessment Report

IBM Case Manager on Cloud

AUTOTASK ENDPOINT BACKUP (AEB) SECURITY ARCHITECTURE GUIDE

HIPAA RISK ADVISOR SAMPLE REPORT

IaaS Buyer s Checklist.

The Business of Security in the Cloud

IBM Global Technology Services Provide around-the-clock expertise and protect against Internet threats.

Cloud First Policy General Directorate of Governance and Operations Version April 2017

IT Consulting and Implementation Services

EU General Data Protection Regulation (GDPR) Achieving compliance

Choosing the Right Solution for Strategic Deployment of Encryption

IBM Security Services Overview

Security and Privacy Governance Program Guidelines

IBM Security Intelligence on Cloud

Cloud Managed Services for Government (CMSG) A secure strategy for the Department of Defense at an IBM-operated, Level 5, DoD Facility

Version 1/2018. GDPR Processor Security Controls

Google Cloud & the General Data Protection Regulation (GDPR)

Choosing the Right Cloud. ebook

TARGET2-SECURITIES INFORMATION SECURITY REQUIREMENTS

Data Security and Privacy at Handshake

Data Security: Public Contracts and the Cloud

IT your way - Hybrid IT FAQs

Manchester Metropolitan University Information Security Strategy

Five Key Considerations for Selecting Cloud Recovery Services

Cloud Computing Standard 1.1 INTRODUCTION 2.1 PURPOSE. Effective Date: July 28, 2015

Florida Government Finance Officers Association. Staying Secure when Transforming to a Digital Government

Why Continuity Matters

New York Department of Financial Services Cybersecurity Regulation Compliance and Certification Deadlines

Perfect Balance of Public and Private Cloud

WHITE PAPER- Managed Services Security Practices

CASE STUDY: USING THE HYBRID CLOUD TO INCREASE CORPORATE VALUE AND ADAPT TO COMPETITIVE WORLD TRENDS

Sage Data Security Services Directory

Cloud Services. Infrastructure-as-a-Service

Managing SaaS risks for cloud customers

ERP Solution to the Cloud

Shaping the Cloud for the Healthcare Industry

Cloud-based data backup: a buyer s guide

IBM Cloud Security for the Cloud. Amr Ismail Security Solutions Sales Leader Middle East & Pakistan

Appendix 3 Disaster Recovery Plan

IT People has been offering end-to-end IT outsourcing & staffing solutions to companies since two decades.

University of Pittsburgh Security Assessment Questionnaire (v1.7)

AWS continually manages risk and undergoes recurring assessments to ensure compliance with industry standards.

Building YOUR Privacy Program: One Size Does Not Fit All. IBM Security Services

WITH ACTIVEWATCH EXPERT BACKED, DETECTION AND THREAT RESPONSE BENEFITS HOW THREAT MANAGER WORKS SOLUTION OVERVIEW:

Cloud Computing, SaaS and Outsourcing

10 Considerations for a Cloud Procurement. March 2017

Migration to Cloud Computing: Roadmap for Success

Why the cloud matters?

Cloud Operations for Oracle Cloud Machine ORACLE WHITE PAPER MARCH 2017

Information Technology General Control Review

COMPLIANCE IN THE CLOUD

FDIC InTREx What Documentation Are You Expected to Have?

Getting Hybrid IT Right. A Softchoice Guide to Hybrid Cloud Adoption

01.0 Policy Responsibilities and Oversight

Information Security in Corporation

The case for cloud-based data backup

Service Description: CNS Federal High Touch Technical Support

VMware vcloud Air Accelerator Service

Cloud Computing and Its Impact on Software Licensing

Practical Guide to Cloud Computing Version 2. Read whitepaper at

Cloud Computing: Making the Right Choice for Your Organization

Maximize Your Assets Securely and Cost Effectively

Securing Your Cloud Introduction Presentation

hcloud Deployment Models

Security Information & Policies

RADIAN6 SECURITY, PRIVACY, AND ARCHITECTURE

White Paper. How to Write an MSSP RFP

1-2-3 Webinar: Demystifying the Cloud

How unified backup and cloud enable your digital transformation success

Breaking Through the Cloud: A LABORATORY GUIDE TO CLOUD COMPUTING

INFORMATION TECHNOLOGY ( IT ) GOVERNANCE FRAMEWORK

Canada Life Cyber Security Statement 2018

BRINGING CLARITY TO THE CLOUD

Transforming your IT infrastructure Journey to the Cloud Mike Sladin

CLOUD COMPUTING PRIMER

Kenna Platform Security. A technical overview of the comprehensive security measures Kenna uses to protect your data

Data Inventory and Classification, Physical Devices and Systems ID.AM-1, Software Platforms and Applications ID.AM-2 Inventory

CompTIA Cloud Essentials Certification Exam Objectives EXAM NUMBER: CLO-001

Automate sharing. Empower users. Retain control. Utilizes our purposebuilt cloud, not public shared clouds

IT Attestation in the Cloud Era

Deliver Data Protection Services that Boost Revenues and Margins

ENDNOTE SECURITY OVERVIEW INCLUDING ENDNOTE DESKTOP AND ONLINE

Modernizing Servers and Software

Transcription:

CLOUD COMPUTING READINESS DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO

DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO

1 CONTENTS INTRODUCTION 1 WILL MY COMPANY BENEFIT FROM TRANSITIONING SERVICES TO THE CLOUD? 2 CLOUD READINESS OVERVIEW 3 SECURITY CONCERNS 4 PERSONNEL CONSIDERATIONS 5 LOCATION CONSIDERATIONS 6 RELIABILITY CONSIDERATIONS 7 PERFORMANCE CONSIDERATIONS 8 FINANCIAL CONSIDERATIONS 9 LEGAL CONSIDERATIONS 10 APPENDIX 11 CLOUD TRANSITION IMPACT ANALYSIS WORKSHEET 12 MIGRATION PROCESS 13 HOW TO GET YOUR COMPANY READY FOR THE CLOUD 14

INTRODUCTION: HOW SHOULD THIS GUIDE BE USED? Moving your IT systems to the cloud offers many benefits including reduced costs, flexibility, increased efficiency, and in many cases, better performance and security. But preparing to make use of cloud computing also requires proper preparation. SaaS, PaaS, and IaaS all present several key differences in terms of security, performance, reliability, and management. This guide will help you assess your readiness to transition to cloud computing and identify any areas that need to be re-evaluated. After reading through these checklists and determining your company s current cloud computing readiness, you ll have the tools you need to start preparing for your transition. If you have further questions or want to learn more about cloud computing and how to most effectively use it, contact Denovo, 1-877-4-DENOVO, or visit www.denovo-us.com CHAPTER 1: WILL MY COMPANY BENEFIT FROM TRANSITIONING SERVICES TO THE CLOUD? Although most companies will benefit from transitioning some or all of their IT services into the cloud, not all will. Start with these questions to help determine whether your company should transition to cloud computing. What is your company s current IT infrastructure expenditure? Is cloud computing likely to reduce costs? How much does usage fluctuate over time? Would your company benefit from a more elastic solution? Does your company need to add applications or functionality but can t make a large capital expenditure for additional IT infrastructure? Is your IT department able to effectively provide maintenance and security, and maximize efficiency for your IT infrastructure? Will your company benefit strategically or financially from a reduction in IT focus? Does your company need to secure sensitive data on proprietary servers? Will the increased accessibility of the cloud improve your company s performance? DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO 2

CHAPTER 2: CLOUD READINESS OVERVIEW Use these questions to get a brief overview of your company s current cloud computing readiness and to identify areas that need to be addressed. Do you currently have a Cloud Adoption Strategy or, even better, an Application Hosting Decision Framework? What is the extent of your company s current IT usage? How quickly would you like to transition to the cloud? Have you prepared a cost-benefit analysis of the transition? Do you have a team capable of managing the transition? Do you store sensitive data? Are you prepared to transition data securely? Do you plan to use IaaS, PaaS, or SaaS? Will the increased accessibility of the cloud improve your company s performance? Have you assessed and rated each of your application based on importance to the business? Cost to maintain? Alternative application/functionality that could reduce maintenance and support cost? Have you evaluated the level of customizations you have and how many you are actually are using vs. the ones you no longer use? Have you considered the effort to reduce customizations and possibly overlay solutions that can reduce the customizations of your ERP system? 3

CHAPTER 3: SECURITY CONCERNS PRO TIP: Visit Cloud Security Alliance website cloudsecurityalliance.org Security is a key concern in using cloud computing technology. This checklist will help you identify key considerations for safely transitioning and securing data. OUTLINING THE SECURITY PLAN Have you made an outline of your top security goals and concerns? What types of assets will be managed by the system? Have key assets been listed and rated based on their sensitivity? How are assets currently managed and how will this change when transitioned to the cloud? Has the right cloud delivery model been assigned based on the assets sensitivity? Has the network topology been mapped? ENUMERATING SAFEGUARDS AND VULNERABILITIES Have the security controls been enumerated, verified, and evaluated? Will all sensitive data stored in the cloud be encrypted? Are remote connections to the cloud properly encrypted? Have you evaluated the security risk of the server s physical location? Are the servers housed in guarded and locked rooms? Have all vulnerabilities been identified and addressed? Are staff properly trained on the new security protocols? COMPLYING WITH REGULATIONS Have you reviewed your cloud vendor s security policies? Do they comply with PCI DSS, SOX, GLBA, HIPAA or other regulations your data may be subject to? Have you drafted any contracts or agreements with your vendor to bridge compliance gaps? DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO 4

CHAPTER 4: PERSONNEL CONSIDERATIONS A company s staff must be properly prepared for the cloud computing transition in order to ensure that it does not interfere negatively with day to day operations. Use these questions to make sure your team is ready. PREPARING YOUR CLOUD ADOPTION TEAM Who will be heading the effort to move systems to the cloud? Has a team been assembled to plan and execute cloud adoption? Who are the key human resource assets for the plan? Is management in full support of the adoption strategy? Do you need to bring on additional staff or consultants to help adopt cloud computing technology? TRAINING THE STAFF How will using cloud computing affect the everyday operations of the company? Will staff need to learn new skills to function after the transition? Has a training plan been drafted? Is there a team in place to train staff on the new technology? Are staff aware of any changes to security protocol that cloud adoption will bring? RECONFIGURING THE IT DEPARTMENT Do the current IT employees have the expertise to properly maintain the new systems? Will this change necessitate hiring additional staff? Will this change make certain staff members redundant and/or unnecessary? 5

CHAPTER 5: LOCATION CONSIDERATIONS Moving to cloud computing means your servers will be physically located in another place. This can have ramifications for your IT infrastructure s speed, security and reliability. Where is your company based and what regions does it serve? Where is the cloud computing provider located? Is the location near your user base (customers or staff)? Will speed be adversely affected by the server s location? Is the location in a politically stable region? Is the location at risk for natural disasters? Does the location have reliable power services? Is the region s primary language English? If not, is there a reliable means of computing with the cloud provider s staff? Can you visit the data center where your cloud will be hosted? DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO 6

CHAPTER 6: RELIABILITY CONSIDERATIONS Ensuring the reliability of your IT infrastructure is a critical step in transitioning to cloud computing. Make sure the cloud will be as reliable as in-house IT infrastructure by going through the following checklist. ASSESSING THE CLOUD PROVIDER S RELIABILITY Does your cloud provider have a reputation for reliability? How long have they been operational? What is their average uptime over the past three years? Do they have a reliability guarantee? Do they use reliability safeguards like backup power sources and redundant servers? Will they promptly inform you of any planned or unplanned outages? Is the cloud provider regularly assessed by a third party auditor? Does the cloud provider offer comprehensive support? Will your in-house IT team be responsible for support? MAKING A CONTINUITY PLAN Do you have a backup system if the cloud goes down for any reason? Is there a contingency plan to continue mission-critical functions if the cloud can t be accessed? Will you store copies of your data in-house? Is your data safe-harbored with a third party who can protect against data loss? 7

CHAPTER 7: PERFORMANCE CONSIDERATIONS One of the primary concerns when moving to the cloud is how it will affect performance. In many cases speed can be improved when using cloud computing solutions. Answer the following questions to make sure your performance is not adversely affected by a transition to the cloud. Is the cloud provider s hardware sufficient to handle your workload? Will you be using the public or private cloud? Will you be using dedicated hardware? What steps will the cloud provider take to ensure consistent performance? Does the cloud provider make any performance guarantees? Will the cloud solution offer the same or better performance compared to an in-house solution? DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO 8

CHAPTER 8: FINANCIAL CONSIDERATIONS Most companies can save considerably when moving systems and applications into the cloud. Use this checklist to help you consider the total financial impact of the move. CLOUD PROVIDER FEES What are the initial set-up fees? How complex is the pricing model? Is it transparent? Can the provider increase fees at regular intervals? Are there fees you can t specify? (e.g. inter VM Traffic, volumes, iops, etc.) MIGRATION COSTS Will there be additional human resource costs associated with the transition? Will there be additional hardware costs associated with the transition? What will be the cost of an outage during migration? PLANNING THE FINANCIAL IMPACT Is your company moving to the cloud to take advantage of reduced overhead? How will the transition costs and provider fees be offset by potential savings? How will moving to the cloud affect your IT costs? Have you drafted a cost-benefit analysis for the move? How will you company finance the transition? What to do with your IT hardware that has not reached end of life? 9

CHAPTER 9: LEGAL CONSIDERATIONS Although often overlooked, legal considerations are extremely important when moving to the cloud. Use this checklist to make sure the transition is made legally. UNDERSTANDING THE LEGAL AGREEMENT WITH YOUR CLOUD PROVIDER Have you read the cloud provider s service level agreement (SLA)? How does the SLA affect your data s property rights? Do you have the full legal rights to the data you will be moving to the cloud? Is the cloud provider s privacy policy compatible with your company s? Does the cloud provider have the right to access your data? If hosted in another country, which law applies to you? COMPLYING WITH REGULATIONS Is your data subject to any government or industry specific regulations? Does the cloud provider comply with those regulations? Who is legally responsible for your data s security? Are you able to audit your cloud provider s compliance with regulations? TERMINATING THE SERVICE What are the terms of cancellation? What will happen to your data after the service is terminated? DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO 10

11 CHAPTER 10: APPENDIX Candidate Services for Cloud Computing Form Template Application Function Importance to Business (Rank 1-4, 1 = most important 4 = least important) Does it need to be secure? Is there a cloud application alternative? (Yes or No) Ideal transition date time frame Can it be cloud hosted? Customization Level (Rank 1-4, 1 = vanilla 4 = highly custom)

CHAPTER 11: CLOUD TRANSITION IMPACT ANALYSIS WORKSHEET Complete one for each application: 1. Asset or application to be transitioned: 2. Is this a mission critical service? 3. Briefly describe its role in your organization: 4. What are the initial set up fees and migration costs? 5. a) What is the direct annual financial cost of operating it in-house? b) What is the annual financial cost of operating it in the cloud? c) Net direct annual financial impact of moving to cloud {a b}: 6. a) What is the estimated cost per minute of downtime for this application? b) What is the current annual downtime operating this application in-house? c) What is the estimated annual downtime operating this application in the cloud? d) Net downtime financial impact {(b c) x a}: 7. How will employee performance be affected by the transition? (Ra ng from -5 to 5, -5 being much worse and 5 being much be er) 8. How will data security be affected by the transition? (Ra ng from -5 to 5, -5 being much worse and 5 being much be er) 9. How will service reliability be affected by the transition? (Ra ng from -5 to 5, -5 being much worse and 5 being much be er) 10. How will application performance be affected by the transition? (Ra ng from -5 to 5, -5 being much worse and 5 being much be er) DAVE WILLIS STEPHEN GOLDSMITH SUBJECT MATTER EXPERTS, CLOUD COMPUTING DENOVO 12

CHAPTER 12: MIGRATION PROCESS Once all of the initial prep work has been completed, it s time to prepare for the actual migration of applications, systems, and data into the cloud. Answer the following questions to ensure the process goes smoothly. PREPARING SOFTWARE, SOLUTIONS AND DATA Has a list of the transitioning services been compiled? Are the required services and software ready for the migration? Has a transition toolkit been created? (The transition toolkit should allow for installation and validation). Have cloud resources been properly allocated for each asset? Have all necessary platform, license, and storage dependencies been accounted for? Has all transitioning data been backed up? Have you calculated the time/downtime required to migrate? Do you migrate/move applications or rebuild from scratch? TESTING THE MIGRATION Have you tested each component before migrating the next? Has each user facing application been tested from the user portal? Are the services and applications performing as expected? 13

14 HOW TO GET YOUR COMPANY READY FOR THE CLOUD Want to learn about how to get ready for cloud computing, which cloud solution is right for your company and more? Denovo provides comprehensive cloud computing solutions for businesses. Contact us at: www.denovo-us.com 1-877-4-DENOVO info@denovo-us.com Subject Matter Experts: Dave Willis dwillis@denovo-us.com Director of National Cloud Sales Denovo Stephen Goldsmith sgoldsmith@denovo-us.com Vice President, Managed Cloud Sales Denovo

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback