Cloud within the Sourcing Continuum

(1)

Belgium-Luxembourg

Eric Michiels

IBM Technical Advisor for the CSI Partners in Belgium-Luxembourg IBM Liaison of the GSE Architecture Working Group

Cloud within the Sourcing Continuum

GSE Regional Conference 2014

Ostend

(2)

Topics

1) The drivers for Cloud Computing

2) Cloud Options

3) IaaS with IBM SoftLayer

4) A Guiding Cloud Architecture

(3)

Belgium-Luxembourg Today’s business infrastructures are becoming inhibitors to business change

Organizations want to transform IT from cost centers, running on-going

operations, to strategic centers of business innovation

(4)

What the business perceives…

What is really required…

Monitoring Lifecycle Management

(5)

What will be needed tomorrow…

(6)

Cloud Computing offers Benefits in many Areas

Strategic

• Enables business transformation • Reduce time-to-market

• Focus on core competencies • Sourcing options Functional • Self-service • Rapid Provisioning • Location independence Economic

• Pay for Use

• Shift CAPEX to OPEX • Economies-of scale Technical • Elasticity • Advanced technology Value delivered Change management Test provisioning Install database

Install of operating system

Provisioning environment

Design and deploy business applications

From traditional To cloud

Months Weeks 1 day 1 day ▄ Months Days or hours 20 minutes 12 minutes 30–60 minutes 51% cost savings Days/Weeks 1) The drivers for Cloud Computing

(7)

IT and Business are attracted to Cloud for different reasons

E ff ici ency T ransf o rmat ion Rethink IT

• Rapidly deliver services

• Integrate services across Cloud environments • Increase efficiency

• Reduce costs and improve ROI of ICT investmens

• Initiate new revenue streams

• Drive faster time to market for new services • Meet changing customer expectations

Reinvent business

**Source: Gartner, Cloud Computing Services, Virtualization Top CIO Wish Lists

(8)

CIO Visionary Plans are evolving: Cloud Computing

moved into the top four over the last 3 years

<2010 >2011

Business Intelligence and Analytics 83%

83% Mobility Solutions 74% 68% Virtualization 68% 75% Cloud Computing 60% 33%

Business Process Management 60%

64%

Risk Management and Compliance 58%

71%

Self-Service Portals 57%

66%

Collaboration and Social Networking 55%

54% Most important visionary plan elements

(Interviewed CIOs could select as many as they wanted)

(9)

Outsourcing and Cloud

• Many CIOs do

not

see Cloud as an

answer to everyhting

– they see

it rather as

an option

– Outsourcing of a legacy environment allows for higher customization

– Cloud allows for higher agility but requires more standardization

– Outsourcing business is far more mature – multi-decade experience

– Of course ... Cloud inevitably has resulted in a shakeout in the outsourcing

industry itself resulting in providers offering alternative value propositions at variable pricing models ...

• Analysts talk about a “Sourcing Continuum”: Cloud Technologies

are part of the Sourcing “Palette”

• Most companies end often with a

mix

of “Traditional On-Premise ICT

Deployment”, “Outsourcing” and “Cloud”  “

Multi-Sourcing

”

• .... Good news for ICT professionals 

– There is plenty of work for people who understand complex systems and

know how to deploy them – even if Cloud automates some or the basic roles...

– Integration between different functions and processes

– Satisfy SLAs  Security, service availability, data integrity, performance, ...

– Business model design based on multiple ICT service provider offerings

(10)

Classes of Cloud or Outsourcing Companies

• The role of Outsourcing is changing and will continue to do so as companies rely increasingly on the Cloud for IT and Business services

• The following high level categories are applicable to both...

– Category 1 – Utility Providers

• Focus: efficiency and cost

• Success factors: availability, security, performance, in short “SLAs” – Category 2 – Business Function Providers

• Focus: deep expertise in particular business disciplines, applying the latest generation of software solutions

• Success factors: scalability, secure configuration to meet business goals, continuous improvement across offerings, modularity, innovation

– Category 3 – Integrators and Value-Adding Business Designers

• Focus: business design and integration of critical services, making organizations more agile and able to adapt their business design “on the fly”

• Success factors: manage complexity of hybrid computing environments, become a

trusted broker, solve interoperability and security challenges, innovation

(11)

The Journey to the Cloud

(12)

Cloud offers a choice of Flavors and associated services to

help businesses get what they want on a “pay-as-you-go” basis

V en do r m an ag es on th e c lou d

Networking Networking Networking Networking

Storage Storage Storage Storage

Servers Servers Servers Servers

Virtualization Virtualization Virtualization Virtualization

Operating system Operating system Operating system Operating system

Middleware Middleware Middleware Middleware

Runtime Runtime Runtime Runtime

(Meta) Data (Meta) Data (Meta) Data (Meta) Data

Application Application Application Application

Traditional on-premises Infrastructure as a service Platform as a service Software as a service Cl ien t m an ag es V en do r m an ag es on th e c lou d V en do r m an ag es on th e c lou d Cl ien t m an ag es Cl ien t m an ag es

Customization; higher costs; slower time to value

Standardization; reduced costs; faster time to value

Businesses are using Cloud to rethink IT and reinvent business. 2) Cloud Options

(13)

The Cloud adoption initiatives can be delivered with multiple

Deployment Models

Cloud Enabled Data Center Cloud Platform Services Cloud Service Provider Business Solution on Cloud

Create a cloud strategy, roadmap, and business model

Private Cloud Enterprise Data Center Managed Private Cloud Enterprise Data Center Dedicated Private Cloud Enterprise Public Cloud Users Shared Private Cloud Enterprises Hybrid Cloud Traditional IT Enterprise Data Center

Tap Into it.

Build it.

Think it.

(14)

Think it.

1. Move your business forward with a cloud strategy and road map Offerings: GTS Infrastructure Strategy and Design GBS Strategy and Change

Build it.

2. Build and Extend Your Enterprise Private/ Hybrid Cloud With IBM IBM Systems & Storage, SmartCloud _{Orchestrator, SmartCloud Provisioning,}

Private Modular Cloud

3. Build Your Service Provider-Grade Cloud Infrastructure With IBM IBM Systems & Storage, SmartCloud _{Orchestrator, SmartCloud Provisioning,}

Private Modular Cloud

Tap into it.

4. Tap into a Fully Managed Infrastructure SmartCloud Enterprise +

SmartCloud for SAP SmartCloud for Oracle

5. Leverage IaaS IBM SoftLayer

6. Optimize Your Marketing in the Cloud IBM Enterprise Marketing Management

IBM SmartCloud Framework

(15)

Belgium-Luxembourg Cloud Components Cloud Services “Consume over Internet”

“Design and Build Private Clouds or Service Provider

Consulting & Implementation Services “Design my cloud” IaaS PaaS SaaS BPaaS Cloud Strategy

IBM SmartCloud Framework

Smarter Cities Social Business

Smarter Commerce Business Analytics

and Optimization

Business Process as a Service Software as a Service

Softlayer

Cloud Managed Services PureApp on Softlayer

Cloud Managed Services for SAP/Oracle 2) Cloud Options

(16)

On-Premise

SmartCloud Provisioning

Traditional HW

Off-Premise

on System

On-Premise

Linux on System z

SmartCloud Orchestration

Speed and Simplicity

Flexibility

The Technology for managing Heterogeneity exists...

(17)

Patterns of Expertise are proven best practices and expertise for complex tasks learned from decades of client and partner engagements that are captured, lab tested and

optimized into a deployable form

What is a Pattern?

• The pre-defined architecture of an application

• For each component of the application (i.e. database, web server, application package, etc)

• Pre-installation on an operating system • Pre-integration across components • Pre-configured & tuned

• Pre-configured Monitoring • Pre-configured Security • Lifecycle Management

• In a deployable form, resulting in repeatable

deployment with full lifecycle management

• Delivering superior results: • Agility: Faster time-to-value

• Efficiency: Reduced costs and resources • Simplicity: Simpler skills requirements

• Control: Lower risk and errors Private _Hybrid _Public

Patterns of Expertise on Premise or in the Cloud

(18)

SoftLayer offers a complete IaaS Portfolio

• Combines bare-metal servers, public cloud instances and private cloud

deployments into distributed hybrid architectures and manage from a single control pane and API

– Common command and control interface across a unified architecture

• All deployed on-demand and provisioned automatically in real-time

• Ideally suited to Big Data deployments, high I/O and latency-sensitive apps

(19)

Service Portfolio

(20)

Global Footprint

$1.2B investment to

grow

40 data centers worldwide

5 continents

Over 40GB of connectivity per rack

India China Tokyo Hong Kong Singapore Melbourne Seattle San Jose Los Angeles Mexico City Denver Chicago Dallas Houston Toronto Montreal BRAZIL

New York City Washington D.C. Miami London Frankfurt Amsterdam Paris Sydney Atlanta

DATA CENTER & NETWORK POINT OF PRESENCE NETWORK POINT OF PRESENCE

(21)

• High-performance public network with transit from 7 tier-1 carriers – Inbound and Private Bandwidth are free of charge – Outbound Bandwidth of 5 TB • Secure “OOB” Management via VPN

• Private network for intra-application and inter-facility communications, access to shared services

• Native IPv6 support with port speed of up to 10 GBP/second • Virtual racks for integrated management

• Complete suite of network services

• Content Delivery Network of 24 nodes  put content geographically closer to the end users with digital transcoding into wide variety of formats

Triple-Network Architecture

(22)

Power Through Automation

(23)

Robust, Full-Featured API

• Improves customer control, reduces error, increases visibility

• SoftLayer API provides 1,600 function calls to over 200 services

• Supports SOAP & XML-RPC interfaces

• Comprehensive documentation, libraries and support

Functions include:

• Automatic server deployment

• Service provisioning

• Reboots & reloads

• Ticketing • Hardware configuration • Software loads • DNS • Network • Storage • Security scans •

(24)

Complete Control

• Mobile and Web-based management portals

• Purchase, provision, deploy and manage infrastructure

• Access to services, tools, automation & tutorials

• Secure access via VPN to management network

(25)

Storage Options

• QuantaStor Storage Servers

• 12 or 24 Drive mass storage servers, bringing you a private SAN or NAS appliance for

more storage with higher security, control and scalability

• Ideal for applications including virtual servers and desktops, video production and

web and application servers

• iSCSI Storage, Replication and Snapshots

• iSCSI Storage allows users to mount remote, enterprise-grade, SAN storage disks as

though they were attached locally

• It is scalable, easily provisioned, and outperforms internal disks, providing a low-cost

alternative to traditional fiber-channel storage solutions.

• FTP/NAS Storage

• File Transfer Protocol (FTP) and Network Attached Storage (NAS) provide fast, reliable

and cost-effective storage for maximum data retention and storage.

• Object Storage

• Built on OpenStack Object Storage, includes features like metadata search, enabling you

to easily store, search, manage and retrieve large amounts of static data. Ideal for

managing large unstructured data sets including virtual machine images, photos, email,

(26)

Security Services

• Physical firewall threat protection is offered with FortiGate devices

(*)

• Devices offered in dedicated and shared/multi-tenant modes of operation

• Security Options

• Vulnerability scanning

• Host based intrusion protection(*)

• Anti-virus(*) and anti-spyware protection

• Firewall(*) and network based threat protection (IPS, DDOS) • Virtual Private Networking - IPSEC(*), SSL, PPTP

• Two factor authentication to the SoftLayer Customer Portal • SSL certificates that enable confidentiality of data-in-transit 3) IaaS with IBM SoftLayer

(27)

Industry and Regulatory Compliance

• Service Organization Control (SOC) 2

• Audits security, availability, process integrity, privacy and confidentiality

• SoftLayer has an unqualified SOC 2 Type II report for all data centers

• Report available to customers and their auditors via NDA

• Safe Harbor

• Certification demonstrates that SoftLayer provides adequate privacy

• Payment Card Industry (PCI)

• SoftLayer is a PCI Level 3 compliant merchant for its handling of PCI regulated data with protection as

defined by the Directive

• This certification is not transferable to customer workloads

(28)

Dynamic, High-Growth Customer Base

Social Media

Software as a Service Mobile and Communications

Marketing and Digital Media

Enterprise Hosting & Service Providers

Games and Entertainment

Platform as a Service

Bump Voxer What’s App Instapaper Yelp

(29)

Top 100,000 most visited websites

(30)

IBM Cloud Computing Reference Architecture (CCRA) 3.0

• The IBM Cloud Computing Reference Architecture (CCRA) saves

organizations time and money by providing detailed documentation on the steps and components required for constructing a cloud implementation

across all deployment models

• Customers can benefit from IBM’s experience in creating public, private and hybrid clouds with one common architecture with reusable assets or product recommendations

• The CCRA allows for a quicker start to creating an industrial strength Cloud with pre-defined use cases and documentation on the architectural requirements or decisions that must be made for security, service

management, performance, scalability and virtualization

• Utilize sound architectural principles to speed development and reduce errors across the entire development process ensuring designs can scale

for efficiencies and can fulfill important Cloud requirements such as elasticity, self-service and flexible sourcing

• Increased business flexibility with a common Cloud reference

architecture across deployment models (private, public or hybrid cloud 4) A Guiding Cloud Architecture

(31)

IBM CCRA Overview

(32)

Example from CCRA – IaaS Layers

Simple IaaS (VMs) Managed IaaS Advanced IaaS

Process Integrated IaaS

VM provisioning &

Tenants, Roles & Authentication Cloud Management VM Image Construction Image Management Usage metering, accounting & Virtualised Infrastructure Monitoring Capacity Management and Planning Events Management Storage Provisioning & Automation Management Network Provisioning & Automation Management Service Orchestration Problem & Incident Management IT Asset Management License Management Change & Configuration Management Service Desk Release Management Patch Management Endpoint Compliance & Management Backup & Restore 1 2 3 4 In creasi n g Cap abil ity 3 Advanced Security (Threat &

vulnerability, identity & access, Security info and events mgmt)

3

Hybrid Cloud Integration

(33)

Future

 Rapidly changing workloads, dynamic patterns

 Dynamic automatic

composition of heterogeneous system

 Autonomic and proactive

Current

 Diverse workload, limited patterns

 Homogeneous resource pooling

 Expert configuration and mapping of workload

Systems of Engagement are making Workloads more Volatile

Traditional

 Few, stable, and well known workloads

 Fixed system hardware, manual scaling

 Hardwired workload, minimal configuration

W1 W2 W3 _W4

R1 R2 R3

Volatile Workload characteristics result from changing Business Requirements

V1 V2 V3 V4 V5 … Vn

V1 V2 V3 V4 V5 V5 ... …. Vn

C

Systems of Engagement are making Workloads more Volatile

(34)

The Need for Software Defined Environments

• Heterogeneity is a key factor in the evolution of the Cloud and requires a paradigm, known as “Software Defined” (Environments)

– First, many Cloud environments evolved “on premise” and are heterogeneous by nature – Second, system infrastructures are becoming compose-able and programmable and thus

heterogeneity can be exploited to achieve optimal outcome

• The exploding number and increased volatility of workloads and applications

coupled with the heterogeneity leads to the situation where deploying and

configuring applications can no further be done in a manual fashion

• A need to automate the deployment and to continuously and optimally

manage these workloads is evident

• This includes both the software and infrastructure for dynamic construction of

workload fit systems  this is what SDE is about

• Capacity requirements can now be addressed through programming the

network, the compute and the storage resources, rather than having to resort to manual rewiring  this enables a more agile operation of the Cloud

(35)

Software Defined Environments ~ Conceptual Overview

.

Workload Abstraction

Functional and Non-Functional requirements that may be discovered as well as specified

Resource Abstraction

Semantically rich abstractions of heterogeneous resource capabilities and

system components

Mapping Workload to Resource

Map requirements to potential system architectures. Proactively orchestrate

infrastructure and workload

Continuous Optimization

Autonomously construct available system architecture to optimize workload outcome

Agility Efficiency Consumability Resource Abstraction Software Defined Compute Software Defined Network Software Defined Storage Workload Abstraction

SDE Unified Control Plane

Allows rich resource abstractions to assemble purpose-fit systems optimized across heterogeneous

resources C C Heterogeneous Compute Resources Virtualized Network

Virtual Storage Layer

M a nage d S e rv ic e s

Top down approach to differentiate with deep understanding of application workloads

Control plane separated from the hardware to the software layer

Programmable infrastructures allow dynamic optimization to

(36)

Managed Services without SDE

Managed Services

include disciplines like:

– Asset management – Metering and billing

along several dimensions – Monitoring and Event Management – Patch Management – Antivirus and Intrusion Detection – Server Activation and Deactivation (ensuring security compliance)

Today …

– Cloud Managed Services are monolithic, static and tightly integrated with the IaaS layer

– They are neither agile, nor easily extensible in ways that would allow them to manage other IaaS stacks or multiple IaaS stacks in the same deployment

– For example, current managed services cannot

manage a Hybrid Cloud environment that allows

excess demand to be pushed from a Private Cloud onto a Public Cloud

(37)

Managed Services with SDE

Tomorrow …

– Managed Services in an SDE will be modular, agile, consumable and dynamically provisioned, independent from the underlying IaaS

abstraction

– Managed Services will be enabled or disabled depending on the needs

of the environment

– They will also be available across all layers of the stack, from the management perspective as well as the application perspective

• An application needing monitoring or billing services could request such services from the management layer

• This allows Managed Services to be offered on any IaaS Layer (e.g. Public

Cloud, Private Cloud, OpenStack, etc.)

– Within SDE, Managed Services will provide much flexibility in Cloud offerings

• Services can then be selected, added, and dynamically bound to any workload component at runtime

(38)

Shifting Towards an Holistic Cloud Ecosystem

Orchestration and Analytics

SmartCloud Orchestrator SmartCloud Analytics

Custom Infrastructure

Patterns of Expertise

Performance

HYBRID CLOUD

Application Lifecycle Management

IBM UrbanCode

Capacity Security Integration

Mobile 3rd_Party Web BPM

Open Ecosystem

Application Performance Mgmt Virtual Storage Center IBM CastIron IBM API Mgr Endpoint Mgr

Identify & Access

Expert Integrated Systems

IBM Pure Systems

Addressing key client use cases

Self-Service Management Workload Optimization Continuous Innovation

Self-Service Management Workload Optimization

Self-Service Management Workload Optimization Continuous Innovation

Self-Service Management

Public Cloud

Software Defined Environment Cloud Operating Environment API Economy

Industry Solutions

Next Generation Platform

Code Name : BlueMix

Jazz Hub Service Engage

API Marketplace

Code Name : Exchange

(39)