Practical Guide to Cloud Computing Version 2 Read whitepaper at www.cloud-council.org/resource-hub Sept, 2015
The Cloud Standards Customer Council THE Customer s Voice for Cloud Standards! 2011/2012 Deliverables Practical Guide to Cloud Computing Practical Guide to Cloud SLAs Security for Cloud Computing Impact of Cloud Computing on Healthcare Provide customer-lead guidance to multiple cloud standards-defining bodies Establishing criteria for open standards based cloud computing 500+ Organizations participating 2013/2014 Deliverables Convergence of SoMoClo Analysis of Public Cloud SLAs Cloud Security Standards Migrating Apps to Public Cloud Social Business in the Cloud Big Data in the Cloud PGCC Version 2 Migrating Apps: Performance Rqmnts Cloud Interoperability/Portability 2015 Projects (partial) Update to Security for Cloud Computing whitepaper Update to Practical Guide to Cloud SLAs Cloud Reference Architectures for Web App Hosting, Mobile, Big Data Analytics Practical Guide to PaaS Practical Guide to Hybrid Cloud http://cloud-council.org 2
Practical Guide to Cloud Computing, Version 2 Published April, 2014 Practical reference to help apply cloud to business challenges Aims to remedy confusion & uncertainty by providing comprehensive & actionable information Explains in nontechnical language the key concepts of cloud computing & how to best adopt cloud to solve enterprise problems 10 Steps to the Successful Adoption of Cloud 1 Assemble your decision team 2 Develop business case and an enterprise cloud strategy 3 Select cloud deployment model(s) 4 Select cloud service model(s) 5 Determine who will develop, test and deploy the cloud services 6 Develop governance policies and service agreements 7 Assess and resolve security and privacy issues 8 Integrate (cloud solution(s)) with existing enterprise services 9 Develop a proof-of-concept before moving to production 10 Manage the Cloud Environment 3
Practical Guide to Cloud Computing, Version 2 Revision Highlights New Executive Overview Rationale section has been trimmed significantly Service agreements step in the Roadmap extended to include governance policies New security and privacy step added to the Roadmap Major revisions to Integration step of Roadmap Other Roadmap sections updated to reflect the evolution of business & technical aspects of cloud computing References added to several CSCC whitepapers 4
Step 1: Assemble your decision team Bringing IT and Line of Business together to leverage the Cloud Strategic (CEO/Senior Management) Vision Terms of reference Guidelines Tactical (CIO/CTO) Business Analysis Technical Analysis Operational (IT, Finance etc.) Procurement Implementation Operation Business leaders will leverage cloud to increase sales/revenues Senior Management leadership is critical Technical leaders drive detailed business and technical analysis Legal / Admin integral to team support Education is important at all levels and varies by recipient 5
Step 2: Develop business case & enterprise cloud strategy Comprehensive Strategic Plan reduces potential impacts and facilitates future decisions Key Elements of Strategic Planning Educate the team Establish short & long term goals Understand required services and functionality Identify required skills Execute a thorough cost analysis Assess the impact to service levels Identify clear success goals and metrics to measure progress Consider the existing IT environment Understand Legal/Regulatory Requirements Track results for an extended time Understand the exit process 6
Step 3: Select cloud deployment model(s) Establish criteria for selecting the right deployment model Options Private (On-site) Private (Outsourced) Public Community Hybrid Considerations Criticality of cloud services Type of workload Migration costs Elasticity Security threats Multi-tenancy 7
Step 4: Select cloud service model(s) Many organizations face the challenge of staging a gradual adoption of cloud capabilities, incrementally advancing their IT environment A direct move to SaaS may be advisable for many SMBs Analyze PaaS offerings in terms of TCO/ROI and risks such as vendor lock-in, interoperability and existing IT infrastructure IaaS reduces Capex and provides access to IT capacity that would otherwise not be available 8
Step 5: Determine who will develop, test and deploy cloud services Maximize resources to accelerate Cloud adoption Options In-house development and deployment Cloud Provider development and deployment Independent cloud service development provider Off the shelf cloud service offerings Critical Factors Cost Responsiveness Flexibility Considerations Available skills Start up considerations Updates to existing services Testing / deployment 9
Step 6: Develop governance policies & service agreements Cloud computing service agreements should be evaluated in conjunction with specific needs, expectations, governance processes and other cultural considerations Public Cloud Service Agreements: What to Expect & What to Negotiate Considerations Policies Culture Governance Objectives Metrics / Measures T&C s / AUP SLAs Remediation & Compensation 10
Step 7: Assess and resolve security & privacy issues Security and privacy are risk management issues Cloud Security Standards: What to Expect & What to Negotiate Cloud Security Risks Loss of governance Compliance and legal risk Responsibility ambiguity Isolation failure Data protection Insecure or incomplete data deletion Handling of security incidents Service unavailability Management interface vulnerability Vendor lock-in Business failure of the provider Malicious behavior of insiders 11
Step 8: Integrate with existing enterprise services Integration involves a number of different components, both within the organization and within the cloud service provider Data integration - Applications & services share common data - Synch required between in-house data and data in a cloud service Process integration Application or service invokes operations provided by another as part of some workflow Management capabilities - Monitor cloud services - Control cloud services Business capabilities - Usage - Reporting - Invoicing - Payments 12
Step 9: Develop PoC before moving to production PoC is critical to validating that proposed cloud services deliver required functionality and meets expected ROI PoC Team Implementation Activities Information Technology Architects Systems administrators Senior developers Customer support Functional representative Manage alignment of solution with business user and key stakeholder expectations during the POC Verify the cloud service delivers required functionality Verify that all processes work Verify data recovery activities, formatting, migration, etc. Verify integration with management & monitoring systems Ensure that the help desk can address questions and problems quickly Develop a back out plan should there be unexpected problems in the early stages of production 13
Step 10: Manage the cloud environment Ensure that the right people understand that the Cloud Services are meeting expectations Both technical and customer support must be considered Shared responsibility Enterprise (CIO and Customer Support) Cloud Service Provider SLA will establish process for: Identifying problems Establishing who is responsible Defines resources responsible to resolve the problem (from both consumer and provider) Metrics are important People do what you inspect, not what you expect! Understand trends with existing services Identify changes to improve ROI, customer satisfaction Establish baseline for future services 14
Call to Action Join the CSCC Now! To have an impact on customer use case based standards requirements To learn about all Cloud Standards within one organization To help define the CSCC s future roadmap Membership is free & easy: http://www.cloud-council.org/application Get Involved! Join one or more of the CSCC Working Groups http://www.cloud-council.org/workinggroups.htm 15
Additional Resources Customer Cloud Architecture for Big Data and Analytics http://bit.ly/1ifdwni Customer Cloud Architecture for Mobile http://bit.ly/1cgs5xj Web Application Hosting Cloud Solution Architecture http://bit.ly/1dboszm Practical Guide to Cloud Service Agreements, V2 http://bit.ly/1iqxrdg Public Cloud Service Agreements: What to Expect & What to Negotiate http://bit.ly/1gkbi8o Practical Guide to Cloud Computing, V2 http://bit.ly/1mwd9mz Security for Cloud Computing: 10 Steps to Ensure Success, V2 http://bit.ly/1l3d9gz Cloud Security Standards: What to Expect & What to Negotiate http://bit.ly/18fzfl3 Interoperability and Portability for Cloud Computing: A Guide http://bit.ly/1fg7lkk Migrating Applications to Public Cloud Services: Roadmap for Success http://bit.ly/1b9ygjy Impact of Cloud Computing on Healthcare http://bit.ly/1b9zp42 16
Thank You 17