Migrating Applications to the Cloud

Similar documents
Welcome to the DISA Cloud Symposium

Cloud Overview. Mr. John Hale Chief, DISA Cloud Portfolio February, 2018 UNITED IN SERVICE TO OUR NATION UNCLASSIFIED 1

About the DISA Cloud Playbook

What is milcloud 2.0?

Privileged User Access and Management

DISA CLOUD CLOUD SYMPOSIUM

Building a Secure and Compliant Cloud Infrastructure. Ben Goodman Principal Strategist, Identity, Compliance and Security Novell, Inc.

Enterprise Voice Services Unclassified and Classified Voice Services

Defense Information Systems Agency

Fundamental Concepts and Models

Mobile Derived Credentials Purebred Information Brief

The Challenge of Cyberspace Defense and CSSP Services

Enterprise Services & Unified Capabilities Development & Delivery

DISN Evolution. TDM Elimination. Mr. Jessie L. Showers, JR., SES Infrastructure Executive (IE) 15 June 2017 UNITED IN SERVICE TO OUR NATION

Cloud Computing introduction

Multiprotocol Label Switching MPLS 101 Global Packet Transport Rollout

Chapter 4. Fundamental Concepts and Models

Defense Information Systems Agency (DISA) Department of Defense (DoD) Cloud Service Offering (CSO) Initial Contact Form

COMPLIANCE IN THE CLOUD

Enterprise Ground Services (EGS) Overview. SMC/AD Col Jim Planeaux GSAW Presentation 2 Mar 2016 Distribution A: Approved for Public Release

Getting Hybrid IT Right. A Softchoice Guide to Hybrid Cloud Adoption

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions

AFCEA BELVOIR. Industry Day. Joint Service Provider Overview. Victor O. Shirley Chief of Staff Joint Service Provider April 4, 2018

DEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY. Cyber Security. Safeguarding Covered Defense Information.

Secure Cloud Computing Architecture (SCCA)

Accelerate your Azure Hybrid Cloud Business with HPE. Ken Won, HPE Director, Cloud Product Marketing

Cloud Computing. Presentation to AGA April 20, Mike Teller Steve Wilson

Cloud First Policy General Directorate of Governance and Operations Version April 2017

Secure Cloud Computing Architecture (SCCA)

IT Enterprise Services. Capita Private Cloud. Cloud potential unleashed

Supporting the Cloud Transformation of Agencies across the Public Sector

Why Converged Infrastructure?

Taking your next integration or BPM project to the cloud WebSphere Integration User Group, 12 July 2012 IBM Hursley

Fujitsu World Tour 2018

Cloud Computing Strategy

Migration to Cloud Computing: Roadmap for Success

Innovations in Identity & Access Management (IdAM)

Cloud Managed Services for Government (CMSG) A secure strategy for the Department of Defense at an IBM-operated, Level 5, DoD Facility

Cloud Computing An IT Paradigm Changer

Infrastructure modernization with Microsoft Azure

10 Considerations for a Cloud Procurement. March 2017

CLOUD COMPUTING PRIMER

Government IT Modernization and the Adoption of Hybrid Cloud

Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud

Metro Ethernet for Government Enhanced Connectivity Drives the Business Transformation of Government

Cloud Computing Strategy

Service Provider Consulting

Dell EMC Hyper-Converged Infrastructure

Network Implications of Cloud Computing Presentation to Internet2 Meeting November 4, 2010

INFS 214: Introduction to Computing

Click to edit Master title style

EMC Strategy Overview: Journey To The Private Cloud

Introduction to Cloud Computing

IBM Cloud Security for the Cloud. Amr Ismail Security Solutions Sales Leader Middle East & Pakistan

Cloud Computing: Making the Right Choice for Your Organization

The Path to Composable Infrastructure. David Bailey Director, Hybrid IT, HPE Stu Hammer Director, Application Delivery, HPE

ArcGIS in the Cloud. Andrew Sakowicz & Alec Walker

Clouds in the Forecast. Factors to Consider for In-House vs. Cloud-Based Systems and Services

Using Crowbar to Deploy Your OpenStack Cloud. Adam Spiers Vincent Untz John H Terpstra

Cloud Computing Lecture 4

Why Microsoft Azure is the right choice for your Public Cloud, a Consultants view by Simon Conyard

06 March INVESTOR DAY 2018 Sabre GLBL Inc. All rights reserved. 1

Data Center Management and Automation Strategic Briefing

Shaping the Cloud for the Healthcare Industry

ECE Enterprise Storage Architecture. Fall ~* CLOUD *~. Tyler Bletsch Duke University

Disaster Unpreparedness June 3, 2013

New Zealand Government IBM Infrastructure as a Service

The Latest EMC s announcements

LEAD YOUR CLOUD TRANSFORMATION. Copyright 2013 EMC Corporation. All rights reserved.

BUILDING A PRIVATE CLOUD. By Mark Black Jay Muelhoefer Parviz Peiravi Marco Righini

Future of the Data Center

A guide for IT professionals. implementing the hybrid cloud

Understanding Cloud Migration. Ruth Wilson, Data Center Services Executive

Leveraging the Cloud for Law Enforcement. Richard A. Falkenrath, PhD Principal, The Chertoff Group

1-2-3 Webinar: Demystifying the Cloud

Providing Cybersecurity Inventory, Compliance Tracking, and C2 in a Heterogeneous Tool Environment

Mind your Business We manage your IT

NetBackup as a Service

I D C T E C H N O L O G Y S P O T L I G H T. V i r t u a l and Cloud D a t a Center Management

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Cloud Computing Introduction & Offerings from IBM

Government Data Center Modernization

Azure Stack: The hybrid cloud revolution

Cloud Confidence: Simple Seamless Secure. Dell EMC Data Protection for VMware Cloud on AWS

Accelerate Your Cloud Journey

COMPTIA CLO-001 EXAM QUESTIONS & ANSWERS

CLOUD COMPUTING READINESS CHECKLIST

Cloud Computing Briefing Presentation. DANU

HOW IT INVESTMENT STRATEGIES HELP AND HINDER GOVERNMENT S ADOPTION OF CLOUD & AI

Building Trust in the Era of Cloud Computing

Introduction to Cloud Computing. [thoughtsoncloud.com] 1

Naval Enterprise Networks Industry Day #2 NGEN Re-compete Acquisition Approach

Infrastructure to the Cloud. May 23, 2017

What you need to know about cloud backup: your guide to cost, security, and flexibility. 8 common questions answered

DoD Mobility Mobility Product Security Certification Processes

Virtustream and VMware Enable Mission-Critical Hybrid Cloud

Federal Data Center Consolidation Initiative (FDCCI) Workshop III: Final Data Center Consolidation Plan

Networks

Next Generation Enterprise Network- Recompete (NGEN-R) Industry Day

TRANSFORMING TO IT-AS-A- SERVICE

Transcription:

Migrating Applications to the Cloud Mr. John Hale Chief, DISA Cloud Services May, 2018 1

Disclaimer The information provided in this briefing is for general information purposes only. It does not constitute a commitment on behalf of the United States Government to provide any of the capabilities, systems or equipment presented and in no way obligates the United States Government to enter into any future agreements with regard to the same. The information presented may not be disseminated without the express consent of the United States Government. 2

Cloud Migration Steps Survey Existing Applications Application Rationalization Decisions/Funding Migration Activities Lesson s Learned Rinse, Repeat! 3

Impact Levels Impact Level 2 (IL2) Unclassified Data (public data) requires shared or dedicated infrastructure Impact Level 4 (IL4) Unclassified Sensitive Data (FOU, CUI, etc) required shared or dedicated infrastructure with strong evidence of virtual separation controls and monitoring Impact Level 5 (IL5) Unclassified Sensitive Data (NSS, PIAA, HIPA) required dedicated infrastructure Impact Level 6 (IL6) Classified Data (Secret, etc) required dedicated infrastructure approved for classified information 4

Application Categorization Cloud Adoption 101 Cloud Ready Cloud Appropriate Not Appropriate Financial Application architecture supports cloud adoption without requiring costly changes. Mission area will break even in costs. Cloud pricing models can address current application delivery and availability. A small investment is needed to update applications. The application scales and can take advantage of the cloud maintenance model. Application would have to be completely reengineered to make it cloud ready. The costs to modernize the application are too significant to be beneficial. Security The application s security/impact level is supported by cloud technology. The application has baked in security or a strong plan to acquire required cloud security. Application meets most cloud security standards. Application can leverage provided cloud security. Application does not meet DoD security policy or security standards for on or off premise cloud environments. Application does not securely operate in the cloud. 5

Application Categorization (Cont.) Cloud Adoption 101 Cloud Ready Cloud Appropriate Not Appropriate Operations Modernized backup and recovery standards and processes. Software-based resiliency model. Application management is not host-based. Application functions can be sustained in the cloud successfully. Evolving application architecture that will address rapid infrastructure changes and failovers. Application has too many dependencies on other systems and/or interfaces. Complicated hardware. Application is hardware dependent for failovers and redundancy. Contracting There are vendors with cloud capabilities that meet mission requirements. There is a contracting vehicle that support capability acquisition. Application Requirements are clearly identified. No contract available to move the application to the cloud. Undefined application requirements. 6

What is cloud? In reality, cloud is: Utility Billing Scalable Management Portal Real-time Elasticity Security Services 7

Cloud Models Infrastructure as a Service (IaaS) Infrastructure Applications YOU are Responsible Data Runtime Middleware O/S Virtualization Application & Environment Security Infrastructure Security Cloud Service Provider Managed/Responsibility Servers Storage Networking 8

Cloud Models (Cont.) Platform as a Service (PaaS) Infrastructure YOU are Responsible Applications Data Runtime Application Security Environment & Infrastructure Security Middleware Cloud Service Provider Managed/Responsibility O/S Virtualization Servers Storage Networking 9

Cloud Models (Cont.) Software as a Service (SaaS) Infrastructure Shared Responsibility (YOU and the Cloud Service Provider) Applications Data Runtime Data Security Application, Environment, & Infrastructure Security Cloud Service Provider Managed/Responsibility Middleware O/S Virtualization Servers Storage Networking 10

Lessons Learned Technical Challenges Applications not cloud ready - some may never be ready due to cost to modernize Not all app owners have access to skills and resources to modernize apps for the cloud milcloud 2.0 Commercial cloud business model not always aligned to DoD heavy transactional data I/O requirements... easier for isolated applications or minimal I/O to legacy systems. (High I/O drives cost) DoD working to provide direct network connection to small number of commercial cloud providers to offset this cost and eliminate data meters Applications Existing DoD Security Solutions are not cloud aware Secure Cloud Computing Architecture (SCCA) deployed January 2018 to provide basic security services in a shared cloud environment 11

Lessons Learned (Cont.) Business Management Roadblocks Business decisions challenging Lack of a single place for application owners across DoD to find all available Cloud solutions and understand which one to choose (features, price, etc.) App owners don't understand new paradigm and responsibilities with commercial IaaS missing key cost in analysis (i.e. system administration, application of security, etc.) Current hosting costs don't show subsidized component costs (electric, HVAC, building space, etc.) making apples to apples comparison difficult Funding not available for application owners to modify apps to be cloud-ready Application rationalization data should help to decide which apps get funding for modernization Policies for specific types of data (NC3, OCO) protect where data can be processed and/or stored for mission assurance App owners don t always understand how to translate requirements to commercial facilities (search and seizure of commercial property, data sovereignty, etc.) 12

13

DEFENSE INFORMATION SYSTEMS AGENCY The IT Combat Support Agency www.disa.mil /USDISA @USDISA 14

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback