Roles. Ecosystem Flow of Information between Roles Accountability

Similar documents
DevOps and Continuous Delivery USE CASE

Cloud Essentials for Architects using OpenStack

UP! TO DOCKER PAAS. Ming

Multi-Cloud and Application Centric Modeling, Deployment and Management with Cisco CloudCenter (CliQr)

CloudCenter for Developers

Multi-Cloud and Application Centric Modeling, Deployment and Management with Cisco CloudCenter (CliQr)

DevOps Tooling from AWS

RightScale 2018 State of the Cloud Report DATA TO NAVIGATE YOUR MULTI-CLOUD STRATEGY

Red Hat OpenStack Platform 10 Product Guide

Please give me your feedback

Security and Compliance at Mavenlink

Azure DevOps. Randy Pagels Intelligent Cloud Technical Specialist Great Lakes Region

Deliver End-to-End Systems Management for Cisco Data Centers That Run Microsoft Applications

Cloud Going Mainstream All Are Trying, Some Are Benefiting; Few Are Maximizing Value

Digital Transformation with HPE Cloud Management October 26, Copyright 2016 Vivit Worldwide

CLOUD INFRASTRUCTURE ARCHITECTURE DESIGN

Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services. Redhat Summit 2015

Cloud Going Mainstream All Are Trying, Some Are Benefiting; Few Are Maximizing Value

Customer s journey into the private cloud with Cisco Enterprise Cloud Suite

STREAMLINING THE DELIVERY, PROTECTION AND MANAGEMENT OF VIRTUAL DESKTOPS. VMware Workstation and Fusion. A White Paper for IT Professionals

Build Converged Infrastructures With True Systems Management

CREATING A CLOUD STRONGHOLD: Strategies and Methods to Manage and Secure Your Cloud

Cloud solution consultant

Course Overview This five-day course will provide participants with the key knowledge required to deploy and configure Microsoft Azure Stack.

Accelerate at DevOps Speed With Openshift v3. Alessandro Vozza & Samuel Terburg Red Hat

Cloud Going Mainstream All Are Trying, Some Are Benefiting; Few Are Maximizing Value. An IDC InfoBrief, sponsored by Cisco September 2016

Application Deployment

SECURING AWS ACCESS WITH MODERN IDENTITY SOLUTIONS

P a g e 1. Teknologisk Institut. Online kursus k SysAdmin & DevOps Collection

Accelerate Your Enterprise Private Cloud Initiative

Cisco CloudCenter Use Case Summary

Introduction to AWS GoldBase. A Solution to Automate Security, Compliance, and Governance in AWS

Cloud solution consultant

Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases. Lutz Lange Solution

Modelos de Negócio na Era das Clouds. André Rodrigues, Cloud Systems Engineer

Taking your next integration or BPM project to the cloud WebSphere Integration User Group, 12 July 2012 IBM Hursley

Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

Automating the Software-Defined Data Center with vcloud Automation Center

Docker Universal Control Plane Deploy and Manage On-Premises, Your Dockerized Distributed Applications

Adopting Modern Practices for Improved Cloud Security. Cox Automotive - Enterprise Risk & Security

Data Center and Cloud Automation

Hybrid Cloud Automation using Cisco CloudCenter API

Powerful Insights with Every Click. FixStream. Agentless Infrastructure Auto-Discovery for Modern IT Operations

Cloud Customer Architecture for Securing Workloads on Cloud Services

OpenShift 3 Technical Architecture. Clayton Coleman, Dan McPherson Lead Engineers

Security Readiness Assessment

Hybrid Cloud Management: Transforming hybrid cloud delivery

Cloud Computing. Amazon Web Services (AWS)

VMWARE PIVOTAL CONTAINER SERVICE

NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2

AALOK INSTITUTE. DevOps Training

Citrix Workspace Cloud

REDEFINING THE ENTERPRISE

How to Keep UP Through Digital Transformation with Next-Generation App Development

Genomics on Cisco Metacloud + SwiftStack

Accelerate your Software Delivery Lifecycle with IBM Development and Test Environment Services

Automating the Software-Defined Data Center with vcloud Automation Center

Automating the Software-Defined Data Center with vcloud Automation Center

Aspirin as a Service: Using the Cloud to Cure Security Headaches

ArcGIS in the Cloud. Andrew Sakowicz & Alec Walker

DevNet Workshop-Hands-on with CloudCenter and Jenkins

Optimisation drives digital transformation

DevOps Anti-Patterns. Have the Ops team deal with it. Time to fire the Ops team! Let s hire a DevOps unit! COPYRIGHT 2019 MANICODE SECURITY

Transforming IT: From Silos To Services

IBM s Integrated Data Management Solutions for the DBA

Cisco Enterprise Cloud Suite Overview Cisco and/or its affiliates. All rights reserved.

A10 HARMONY CONTROLLER

No Limits Cloud Introducing the HPE Helion Cloud Suite July 28, Copyright 2016 Vivit Worldwide

Cloud Connect. Gain highly secure, performance-optimized access to third-party public and private cloud providers

A DEVOPS STATE OF MIND. Chris Van Tuin Chief Technologist, West

ENTERPRISE-GRADE MANAGEMENT FOR OPENSTACK WITH RED HAT CLOUDFORMS

How Security Policy Orchestration Extends to Hybrid Cloud Platforms

20537A: Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack

Road to Private Cloud mit OpenStack Projekterfahrungen

Build Cloud like Rackspace with OpenStack Ansible

GET CLOUD EMPOWERED. SEE HOW THE CLOUD CAN TRANSFORM YOUR BUSINESS.

HITACHI UNIFIED COMPUTE PLATFORM

vrealize Introducing VMware vrealize Suite Purpose Built for the Hybrid Cloud

BeBanjo Infrastructure and Security Overview

Orchestrating the Continuous Delivery Process

Cloud & DevOps April Big Group. April 24, 2015 Friday 1:30-2:30 p.m. Science Center Hall E

EASILY DEPLOY AND SCALE KUBERNETES WITH RANCHER

"Charting the Course... H8Q14S HPE Helion OpenStack. Course Summary

Minimizing the Risks of OpenStack Adoption

Automated Cyber Hardening of Mission Management Systems

DevOps Course Content

Atos Canopy Orchestrated Hybrid Cloud. Mark Nouris - Atos Head of Cloud Michael Kollar Head of Cloud engineering & TIC

EMC Storage Resource Management Suite

Vendor: HP. Exam Code: HP0-D31. Exam Name: Designing HP Data Center and Cloud Solutions. Version: Demo

OpenShift on Public & Private Clouds: AWS, Azure, Google, OpenStack

SUSE s vision for agile software development and deployment in the Software Defined Datacenter

Marc Hornbeek DevOps-the-Gray Principal DevOps Consultant, Trace3 Author, DevOps Test Engineering Course The DevOps Institute

I keep hearing about DevOps What is it?

Fast IT - Policy Driven Infrastructure for the Intercloud World

About KBC KNOW YOUR NETWORK

Introduction to OpenStack

Reimagining OpenStack*

SD-WAN Solution How to Make the Best Choice for Your Business

L105190: Proactive Security Compliance Automation with CloudForms, Satellite, OpenSCAP, Insights, and Ansible Tower

Transcription:

Roles Ecosystem Flow of Information between Roles Accountability

Role Definitions Role Silo Job Tasks Compute Admin The Compute Admin is responsible for setting up and maintaining the physical and virtual infrastructure, from bare metal to cloud service. This role also manages available virtual capacity and hardware procurement. Involved in deploying the cloud. Network Admin The Network Admin is responsible for setting up and maintaining the physical and virtual networking infrastructure, from bare metal to cloud service. This role also manages available virtual capacity and hardware procurement. Storage Admin The Storage Admin is responsible for setting up and maintaining the physical and virtual storage infrastructure, from bare metal to cloud service. This role also manages available virtual capacity and hardware procurement. Support Engineer (Level I) The Support Engineer primarily handles customer support requests, and uses knowledge base, run-books, operational health, reporting, ticketing systems, etc. Primary responsibilities include managing SLA, service health, availability, cloud resources, quotas, RCAs, customer support, billing, etc. Identity/Resource Manager The Identity/Resource Manager is responsible for managing identity and privileges across all tenants (projects). Includes managing domains, resource quotas, and resource consumption. Involved in deploying the cloud. Project Admin The Tenant (Project) Admin is responsible for administration within a single project scope or across multiple projects. Includes managing users, roles, permissions, groups, quotas, service activations, etc. Domain Admin The Domain (Tenant) Admin is responsible for administration within a single domain, which can represent a single business unit, program, physical environment, or individual. Includes managing users, roles, permissions, groups, quotas, service activations, etc. The uses Heat, OOO, and Ironic to create templates. This is an emerging role, and is involved in deploying the cloud. Cloud Application (End User) The Cloud deploys code on cloud resources, and is part of the DevOps environment.

Role Definitions Role Silo Job Tasks App Architect Application (End User) The Cloud Architect is responsible for infrastructure design templates (topologies), deployment profiles, and supporting cloud service architecture. Domain Ops Domain is a team responsible for monitoring workload health, performance, and availability. Involved in deploying cloud. Compliance Compliance is responsible for ensuring that all workloads running in cloud meet organizational security, patching, and compliance requirements. Typically this role touches configuration management, reporting, alerting, and automation tooling. Business Business Ops is responsible for IT spend and budget. They view usage and financial data, typically across projects to plan budget, track spend, and reduce costs. Infrastructure Architect Infrastructure Engineering The Infrastructure Architect is responsible for helping to architect solutions in companies that are looking into technologies like OpenStack. Data Center Data Center Ops is responsible for the physical infrastructure (racking and stacking) of the data center. Hardware Provisioning/Tech Ops Tech Ops is responsible for installing the OS, firmware, and software on the machines in the data center, and providing an inventory of the hardware accessible to the software. HP uses Chef, Socorro, and Use. Infrastructure Service Engineer Infrastructure Engineering The Infrastructure Services Engineer is responsible for services such as Nova, Horizon, Swift, and Keystone. Embedded operations and automation Infrastructure Engineering Embedded Ops understands the deployment process and communicates with the. This is a subrole of the cloud admin. QA Engineer Infrastructure Engineering The QA Engineer is responsible for testing and validation, and communicates with the when creating tools. QA interacts closely with engineering during testing and may run their own Jenkins jobs.

Role Ecosystem Legend Out of scope Business Ops New Role Application Business Integration Points (GIT, Jenkins) Mature Role VM Compute Admin OpenStack OS API Cloud Admin Openstack Metadata Service Application OpenStack Automation Hardware Network Admin Hardware Hardware Provisioning/Tech Op Storage Admin Automation Admin End User Infrastructure Architect Infrastructure Service Engineer Data Center Installation Domain Ops Cloud Ops Project Admin Embedded Cloud Domain Admin Identity Manager App Architect Compliance Manager Identity Mangement

Archive: Cloud Profiles Work in Progress

Current Profiles: What is a User Profile? A user profile describes the characteristics of a person working in a particular job role. For example, the characteristics of a compensation specialist include job title, level of education and training, goals, key tasks, and age range. These characteristics represent a range of values, for example, an age range between 25 and 40. Is a user profile the same as a persona? No, although they are often confused. A user profile describes the range of characteristics for a user role; a persona describes the specific characteristics of a single fictional user based on a user profile. A persona describes the fictional user s personal and job goals, skills, expectations, key tasks, and relationships with other workers. There can be more than one persona for each user profile. Cloud Cloud Infrastructure Architect Embedded DevOps Domain Admin Oracle User Experience Direct (2012). FAQ: How to build User Profiles

Roles: Organization Type: Engineering Cloud Team: AppArchitect Silo: Applications

Roles Cloud Legend Out of scope Cloud New Role App Architect Mature Role Hardware Provisioning/Tech Op Embedded DevOps Application Project Admin OpenStack Automation Compute Admin Domain Ops Hardware Requirements Admin Data Center Ops Domain Admin End User Issue Reporting & Support Customer Support Level 1 Cloud Ops Installation Network Admin Infrastructure Service Engineer Storage Admin Infrastructure Architect Business Customer Identity Mangement

Roles: Level II support Cloud Compute Admin Storage Admin Cloud Organization Type: Team: AppArchitect The Cloud Engineer works in the Engineering group and has work assignments related to the management, automation, and expansion of the cloud. In addition, the Cloud Engineer assists with planning, developing, and implementing a virtualized private cloud, and is responsible for excellent level 3 customer service, application configuration, patching, and security in an enterprise production environment. Silo: Applications

Cloud Silo: What are their key deliverables? The Cloud Engineer is responsible for deploying and managing SaaS applications running on Public and Private Cloud environments. What software/hardware tools do they use? The Cloud Engineer is responsible for deploying and managing SaaS applications on public and private clouds. Icinga (open source NSCA web UI) Hammer - in house tool Scrubber - in house tool Active Directory (Microsoft) [LDAP / SSO] Blacksmith - in house tool (working to open source) PagerDuty (External / Commercial) Responsibilites Deploy multiple cloud applications via automation & orchestration platforms Troubleshoot production events/issues, including cloud infrastructure and application components performance, cost and security goals Build and maintain enterprise monitoring platforms including basic infrastructure checks Skills Bachelor s degree (BA/BS) in Business, Computer Science, Information Systems 5+ years of experience, with at least 2+ years of experience working on a 24x7 cloud production operations team Experience in deploying applications within a production cloud environment (AWS or similar) Understanding of network configuration (DNS, VPN, IP Proxy) Expertise with Linux systems administration (CentOS, RHEL or similar) Experience in scripting languages (Ruby, Bash, Python or similar) Experience with Cloud Infrastructure & Application monitoring tools Experience with orchestration/provisioning solutions (Chef or similar) Work closely and collaboratively with Software Development and DevOps teams to maintain test / staging / production environments to meet uptime,

Roles Cloud Ops Legend Out of scope Cloud New Role App Architect Mature Role Hardware Provisioning/Tech Op Embedded DevOps Application Project Admin OpenStack Automation Compute Admin Domain Ops Hardware Admin Data Center Ops Issue alerts Needs to understand current utilization of the cloud for resource planning Domain Admin End User Customer Support Level 1 Network Admin Knowledge gathering - Needs to understand the infrastructure to properly orchestrate Cloud Ops Infrastructure Service Engineer Installation Storage Admin Infrastructure Architect Controls around customer credential management Business Customer Identity Mangement

Roles: Organization Type: Engineering Automation Engineer Silo: Applications Automation is the connective tissue that makes many collaborative or Agile practices work. Automation can be responsible for testing, version control, and delivery, as well as an array of lower level functions. Automated tasks allow developers and those using their solutions to contribute to the whole without duplication of efforts while still benefitting from the work that others are doing around them.

Silo: Automation Tools Before Engineering Test QA Integration Deployment After Product Group

Roles Legend Out of scope Cloud New Role App Architect Mature Role Hardware Provisioning/Tech Op Embedded DevOps Assistance in automation, such as Chef organization env Resource provisioning Application Primary users of automation framework. Any issues, problem or general assistance Project Admin OpenStack Automation Compute Admin Domain Ops Hardware Data Center Ops Request for account permissions for testing Domain Admin Admin End User Customer Support Level 1 Request for automation services for deploy. Framework for automation development, test and production deployment Cloud Ops Installation Network Admin Infrastructure Service Engineer Storage Admin Infrastructure Architect Auditing requirements and compliance Business Customer Identity Mangement

Roles: Infrastructure Architect Organization Type: Architect Infrastructure Architect The Infrastructure Architect works on the Infrastructure Design team in the organization. The Senior Infrastructure Architect develops the high-level design plan for the overall IT infrastructure architecture that impacts the entire organization. The Senior Infrastructure Architect also gains organizational alignment for all high-level infrastructure plans related to but not limited to Servers, Virtualization, and Storage, and initiates and participates in projects to evaluate technologies and methods for implementing these plans. Team: AppArchitect Silo: Applications

Roles Infrastructure Architect Legend Out of scope Cloud New Role App Architect Mature Role Hardware Provisioning/Tech Op Embedded DevOps Application Project Admin OpenStack Automation Compute Admin Domain Ops Hardware Admin Data Center Ops Domain Admin End User Customer Support Level 1 Information about the existing infrastructure Cloud Ops Installation Network Admin Infrastructure Service Engineer Storage Admin Infrastructure Architect Generalized plan for services Requirements around security, audit and identity theft protection Specific request for resources Business Customer Identity Mangement

Roles: Organization Type: Engineering Embedded DevOps The traditional model is that you take your software to the wall that separates development and operations, and throw it over and forget about it. Not at Amazon. You build it, you run it. This brings developers into contact with the day-today operation of their software. It also brings them into dayto-day contact with the customer. Silo: Applications Werner Vogels, Amazon CTO

Embedded DevOps Silo: Applications Responsibilities Build Automation Tools to Provision Environments and Applications in support of Development, Test and Staging Environment. Build tools to automate production deployments DevOps Teams We were surprised that 16 percent of our survey respondents (1,485 people) were part of a DevOps department, because named DevOps departments have only come into existence in the past five years. Of these respondents, 55 percent identified as DevOps engineers or systems engineers. Recommend Monitoring and Alerting for the Site team Skills 5+ years working as a Linux Systems Administration Strong experience with AWS EC2, VPC, ELB, including tuning and operational issues Strong experience with databases, including tuning and operational issues Incidence of DevOps & System Engineers by Department IT Department DevOps Engineer 129 / 4.6% 144 / 5.4% Systes Engineer 503 / 17.8% 240 / 9.0% Development or Engineering Department Experience with monitoring tools (Nagios, Kibana, Splunk, Cloud Watch, and New Relic) Experience with CI Tools (Circle CI, Jenkins) Experience with Provisioning Automation (Chef, Puppet, Docker, Cloud Formation, etc.) BS or greater in Computer Science, Electrical Engineering or related work is a definite plus We wanted to see whether there are significant differences between people who work in named DevOps departments and those who don t. Although the two groups are quite similar in many respects, we found a few interesting differences. For example, the majority of respondents in DevOps departments work in companies with 20 to 499 employees. Respondents who work in DevOps departments were more likely to work in the entertainment, technology and web software industries than respondents who worked in other departments. They are also slightly more prevalent in California and Texas than in the rest of the United States, although we found no difference in distribution across global regions. Puppet Labs (2014). State of DevOps Report

Embedded DevOps Silo: Applications Puppet Labs 2014 State of DevOps Report More than 9,200 people from 110 countries responded to Puppet Lab s December 2013 survey, making this the largest DevOps survey to date. Size of IT infrastructure by # of servers < 100 28.3% 100-499 23% 500-1,999 16.9% 2,000-4,999 8.4% 5,000-9,999 4.9% 10,000 > 8.5% I don t know 8% NA 2% How Puppet Labs Measured IT Performance Coming up with a quantitative definition of IT performance wasn t easy. After all, how do you measure concepts that can t be measured directly, such as happiness or job satisfaction? In statistics, you do this with what s known as a latent construct. To get a highly reliable and valid latent construct for IT performance, we started with a set of related independent variables: deployment frequency, lead time for changes, mean time to recover and change fail rate. After a lot of refining and statistical testing, we found that change fail rate was not significantly correlated with the other variables leading us to our current definition of IT performance: - deployment frequency, Company size by # of employees 1-4 5.8% 5-9 3.6% 10-19 5.8% 20-99 17.1% 100-499 21.8% 500-999 26.8% 10,000 + 15.8% I Don t Know 2.1% NA 1.3% Industry Technology 22.7% Web Software 10.9% Education 7.5% Finance/Banking 7.4% ENTMT/Media 6.8% Consulting 5.9% Telecom 5.7% Government 4.5% Retail 3.7% Healthcare 3.0% All Others 21.9% Top Practices Correlated with Deployment Frequency Continuous delivery Continuous delivery ensures that your software is always in a releasable state, turning deployment into a non-event that can be performed on demand. Use of version control for all production artifacts When it s easy to recreate environments for testing and troubleshooting, throughput goes up. Top Practices Correlated with Lead Time for Changes Use of version control for all production artifacts The ability to get changes into production repeatedly in a reliable, low risk way depends on the comprehensive use of version control. Automated testing With a reliable and comprehensive set of automated tests, you can quickly gain condence that your code is releasable without lengthy integration and manual regression testing cycles. Top Practices Correlated with Mean Time to Recover (MTTR) Use of version control for all production artifacts When an error is identied in production, you can quickly either redeploy the last good state or x the problem and roll forward, reducing the time to recover. Monitoring system and application health Logging and monitoring systems make it easy to detect failures and identify the events that contributed to them. Proactive monitoring of system health based on threshold and rate-of-change warnings enables us to preemptively detect and mitigate problems. Puppet Labs (2014). State of DevOps Report - lead time for changes and - mean time to recover.

Roles: Level II support Cloud Compute Admin Storage Admin Domain Admin A domain defines administrative boundaries for the management of Identity entities. A domain may represent an individual, company, or operator-owned space. It is used for exposing administrative activities directly to the system users. Organization Type: Team: AppArchitect Silo: Applications A domain is a collection of tenants, users, and roles. Users may be given a domain s administrator role. A domain administrator may create tenants, users, and groups within a domain and assign roles to users and groups.

Domain Admin Silo: Domain This is the highest level. The creator of an account can be referred to as the Domain Administrator. This is a collection of Projects, Users, Groups, and Roles. Project This is a collection of services such as the Compute or Object Storage services. We talk more about how Projects work in the Managing Account Projects article. Groups This is a collection of roles that users can be members of. This makes administration of your user accounts much easier if you have a group of roles that are a common to a set of users. By default each account has a Domain Admin group and a Users group. Users This is the specific account for a person added to a Domain. It can be attached to one or more Projects or Groups and a variety of Roles.

Roles Domain Admin Legend Out of scope Cloud New Role App Architect Mature Role Hardware Provisioning/Tech Op Embedded DevOps Application Project Admin OpenStack Automation Compute Admin Domain Ops Hardware Admin Data Center Ops Domain Admin End User Customer Support Level 1 Cloud Ops Installation Network Admin Infrastructure Service Engineer Storage Admin Infrastructure Architect Business Customer Identity Mangement

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback