Six Degrees Group www.6dg.co.uk
Campbell Williams (@CampbellW)
Agenda
An Attempt at Clarity A Cautionary Tale
Not All Clouds Are Equal
Navigating the Journey to Cloud Determining Value (People Matter)
An Attempt
at Clarity
Things That Are Not the Same
Internet
Web
The Importance of the Article The Internet The Web A Cloud
YOU decide what your cloud or clouds look like. One size does not fit all and it never has.
If it sounds familiar, it probably is…
“XYZ as a Service”
“Capex v Opex”
The customer should tell the supplier how they wish to source ICT – not the other way around
Public
Hybrid
Private
• A multi-tenant resource pool (no or low SLA)
• Self-service and self-managed (via browser portal) • Accessible (often only) over the Internet
• Single-tenant, fully dedicated environment • Firewall, load balancing, high availability
configuration and WAN connectivity bundled in
• Supplier builds and manages the private cloud
• A combination of two or more clouds
• Used for diversity, burst or moving workloads • Over-hyped (little live-live) and under-utilised • Inevitable future – little exists in one place only
Virtual Private
• Multi-tenant but ring-fenced environment • Firewall, load balancing, high availability
configuration and WAN connectivity options • Self-service or managed service available
Pedantic and Semantic Purists…
“If users are disappointed when they find out the environment doesn’t have self-provisioning, or an elastic resources pool, they can get discouraged.”
Sublime:
“The next time they need a VM on the fly, where will they turn?”
Spot the Difference
Ways to Pay for a Car
Taxi – Metered Minicab – Journey Rate Hire – Day Rate
Lease – Monthly Rate Buy Outright
ICO: 8 Common Failings
1. Failure to keep software security up-to-date
2. SQL injection
3. Running unnecessary services
4. Poor decommissioning
5. Insecure storage of passwords
6. Failure to encrypt online communications
7. Processing data in inappropriate areas
8. Default credentials including passwords
Source: Information Commissioner’s Office Presentation @ Cloud World Forum June 2014
Things That Still Matter
Data Protection Laws
Security
Guidelines (CESG)
Common Sense Intellectual Property
Data Sovereignty
A
Cautionary
Tale
How To Get It Wrong
5 Public Cloud Suppliers (PAYG/self-service models) NONE had defined roles and responsibilities
NONE had service level reporting metrics
NONE had data retention and destruction policies NONE had data privacy requirements
The Small Print:
"Under a predefined contract, the contract terms are prescribed by the cloud provider. As such, these contracts typically do not impose requirements on the provider beyond meeting a base level of service and availability. Nor do they address Federal IT
security, privacy, data production, or retention and destruction requirements.
Furthermore, the provider is often empowered to modify the contract unilaterally
Not All
Clouds Are
Equal
Divergent Forces Happy Medium as Defined by the Customer Stability Scalability Predictability Elasticity Service-level Self-service
Divergent Forces Binary State so Pick your Poison Somewhere Anywhere Private Public Managed Unmanaged
Navigating
the Journey
How To Decide on “Fit”
Configuration Ownership
Requirement Application Hosting, Web Hosting, Managed Backup, BC/DR, Burst
Virtualisation
Tenanting Single or Multi-tenant Platform
Own or Rent
Build + Manage, Managed Service or No Virtualisation
Firewalls, Load Balancers, Private WAN, etc
Determining
Value (People
The Cloud Value Stack
Infrastructure as a Service (Compute and Storage) Diversity and Resilience
Managed Hosting
Managed Backup and DR
Managed Security & Compliance
These still matter – assess them carefully
(Who builds them? You can’t automate the unknown)
Somebody has to build and manage these areas
(You can’t commoditise people – it’s neither easy nor cheap)
In
In Conclusion: Key Takeaways
Understand the differences in cloud services
– IaaS v PaaS v SaaS (and all derivatives) – Public v Private v Hybrid
Figure out what you want to do first
Not all clouds are equal and one size doesn’t fit all
– Remember the divergent forces (and laws of physics)
Ignore the hype – focus on what really matters
Remember people element – somebody has to manage it
Six Degrees Group www.6dg.co.uk
Thank You
Any Questions?
@CampbellW
