O slideshow foi denunciado.
Seu SlideShare está sendo baixado. ×

AWS Business Essentials Day

Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Anúncio
Próximos SlideShares
Cost Optimisation on AWS
Cost Optimisation on AWS
Carregando em…3
×

Confira estes a seguir

1 de 209 Anúncio

AWS Business Essentials Day

AWS Business Essentials helps IT business decision makers understand the concepts and advantages of cloud computing and how a cloud strategy can help you meet your business objectives.

AWS Business Essentials Day 2.2 (full deck)
Module 1: Getting Started with the Cloud
Module 2: Leveraging AWS for Competitive Advantages
Module 3: Cloud Economics
Module 4: Security and Compliance
Module 5: Migrating to the Cloud

AWS Business Essentials helps IT business decision makers understand the concepts and advantages of cloud computing and how a cloud strategy can help you meet your business objectives.

AWS Business Essentials Day 2.2 (full deck)
Module 1: Getting Started with the Cloud
Module 2: Leveraging AWS for Competitive Advantages
Module 3: Cloud Economics
Module 4: Security and Compliance
Module 5: Migrating to the Cloud

Anúncio
Anúncio

Mais Conteúdo rRelacionado

Diapositivos para si (20)

Semelhante a AWS Business Essentials Day (20)

Anúncio

Mais de Amazon Web Services (20)

AWS Business Essentials Day

  1. 1. AWS Business Essentials © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Version 3.1
  2. 2. Module 1: Getting Started with the Cloud
  3. 3. AWS Business Essentials Module 1: Getting Started with the Cloud Module 2: Leveraging AWS for Competitive Advantages Module 3: Cloud Economics Module 4: Security and Compliance Module 5: Migrating to the Cloud
  4. 4. What’s in Module 1 • What is cloud computing? • Why do organizations leverage cloud computing services? • Who is using cloud computing services?
  5. 5. What is Cloud Computing? © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 5
  6. 6. the on-demand delivery of IT resources and applications via the Internet, with pay-as-you-go pricing Anywhere internet, anywhere cloud Cloud Computing: What is Cloud Computing?
  7. 7. Cloud: ServicesOn-Premises: Physical • Compute and networking • Storage • Database • Application services • Deployment and management IT Resources and Applications
  8. 8. ElasticInflexible  Large initial purchases  Labor, patches, and upgrade cycles  Systems administration  Fixed capacity  Procurement and setup  Limited geographic regions No upfront investment Low on-going costs Focus on innovation Flexible capacity Speed and agility Global reach on demand IT Resources and Applications
  9. 9. The Cloud Isn’t An “All or Nothing” Choice On-Premises Resources Integration Cloud Resources
  10. 10. Pay AsYou Go & On Demand Customer Attrition Infrastructure Cost $ time Large Capital Expenditure Opportunity Cost Predicted Demand Traditional Hardware Actual Demand Cloud
  11. 11. Why do organizations leverage Cloud Computing services? © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 11
  12. 12. Resource Optimization Operational Efficiency Speed to Market AWS Three Advantages and Benefits
  13. 13. & • Reduce the time to get resources available (just minutes). • Lower the cost and time to experiment and develop. • Increase agility for your organization. Increase Agility through Experimentation Speed to Market
  14. 14. Speed to Market: Go global in minutes # AWS Regions Availability Zones Planned Regions # 14
  15. 15. Speed to Market: Selecting a region Determine the right region for your services, applications, and data based on these factors Proximity to customers (latency) Data governance, legal requirements Services available within the region Costs (vary by region)
  16. 16. Speed to Market: Availability Zones ap-southeast-1 (Singapore) ap-southeast-1a ap-southeast-1b ap-southeast-1c datacenter(s) datacenter(s) datacenter(s) © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. 16
  17. 17. Elastic Cloud-Based Resources Actual demand Resources scaled to demand Waste Customer Dissatisfaction Actual Demand Predicted Demand Rigid On-Premises Resources Resource Optimization Stop Guessing Capacity
  18. 18. Resource Optimization: Edge locations Edge locations Multiple edge locations Regional edge caches © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. 18 Edge locations host a CDN forWeb sites, Dynamic/static, Streaming Requests routed to the nearest edge location Faster content delivery
  19. 19. On-premises traditional data center On-premises virtualized data center CAPEX OPEX OPEX AWS CAPEX OPEX Cost savings from running internal IT more efficiently Cost savings from moving to a public cloud provider Operational Efficiency Trading CAPEX for OPEX
  20. 20. Benefit from Massive Economies of Scale Operational Efficiency
  21. 21.  Increase agility through experimentation  Stop guessing capacity  Trade CAPEX for OPEX  Go global in minutes  Benefit from massive economies of scale Resource Optimization Operational Efficiency Speed to Market A Quick Review
  22. 22. Who is using cloud computing services? © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 22
  23. 23. Enterprises Public Sectors CustomersStartups Over 1 million Active customers in 190 countries
  24. 24. ” “ The move could save the Navy as much as 60% versus the cost of hosting or managing data in its own data centers. CustomerTestimonial: US Navy
  25. 25. Watch the video Customer Testimonial: BMW • Built its new car-as-a-sensor (CARASSO) service in only six months. • Adapt to fast-changing load requirements • Scaling up or down by 2 orders of magnitude in 24 hours. • Provide drivers with continuously updated map information
  26. 26. Watch the video Customer Testimonial: NFL "We chose AWS because of its combination of advanced cloud offering, powerful machine learning capabilities, and experience operating at the scale we need. By powering Next Gen Stats with AWS, we’ll be able to kick off our [season] with even more impactful and meaningful content, uncovering deeper insights into the game of football than we’ve ever done before.” - Matt Swensson, Vice President, Emerging Products and Technology at the NFL With AWS Machine Learning and Artificial Intelligence technology, the NFL has developed ways to visualize the action on the field, uncover deeper insights, and expand the fan experience by offering a broader range of advanced stats.
  27. 27. KeyTakeaways • What is cloud computing? • The on-demand delivery of IT resources and applications via the Internet, with pay-as-you-go pricing. • What are the three key advantages of the cloud? • Faster speed to market. • Optimization of resources. • Increased operational efficiency.
  28. 28. Module 2: Leveraging AWS for Competitive Advantages (Part A)
  29. 29. AWS Business Essentials Module 1: Getting Started with the Cloud Module 2: Leveraging AWS for Competitive Advantages Module 3: Cloud Economics Module 4: Security and Compliance Module 5: Migrating to the Cloud
  30. 30. What’s in Module 2 • Cloud computing framework • Big data • Mobile • Disaster recovery
  31. 31. Cloud Computing Framework © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 31
  32. 32. Cloud Computing Framework • Business challenges • Cloud computing infrastructure • The AWS core services
  33. 33. Business Challenges • Budget constraints • Complex infrastructure management and deployment • Slower scalability • Low speed to market • Security concerns and compliance requirement
  34. 34. Elasticity High Availability Security Speed to Market Resource Optimization Operational Efficiency Cloud Computing Infrastructure
  35. 35. Complicated? Let’s start from 1 User…… ???
  36. 36. Cloud Computing Infrastructure: 1 User • Amazon Route 53 for DNS • A single Amazon EC2 instance • With full stack on this host • Web app • Database • Management • …… Amazon EC2 instance User Amazon Route 53
  37. 37. AWS Compute Services Server rack Host server Hypervisor Guest 1 Guest 2 Guest nAmazon EC2 Elastic virtual servers in the cloud
  38. 38. • General purpose • Compute-optimized • Memory-optimized • Storage-optimized • GPU  From Nano to 8xlarge  Easily resize an instance  Choose an operating system type and version  Create and customize your own AMIs Amazon Machine Image (AMI) Instances Types Sizes Amazon EC2 AWS Compute Services
  39. 39. Compute Networking Database Storage Amazon Route 53 AWS Core Services Summary Amazon EC2
  40. 40. EC2 Instance User Amazon Route 53 Cloud Computing Infrastructure: 1 User Challenges: • Single Point of Failure
  41. 41. Cloud Computing Infrastructure: Users > 1 • Separate out the single host into: • Web host • Database host • Make use of a database service? Web Instance Database Instance User Amazon Route 53
  42. 42. Self-managed Fully managed Database server on Amazon EC2 • Bring Your Own License (BYOL) Amazon DynamoDB • Seamless scalability • Zero administration Amazon RDS • BYOL or • License included Amazon Redshift • Petabyte-scale data • Easy to scale, fast AWS Database Services: Database Options
  43. 43. Cloud Computing Infrastructure: Users > 100 • Separate out the single host into: • Web host • Database host • Amazon RDS: make your life easier Web instance RDS DB instance User Amazon Route 53
  44. 44. Compute Networking Database Storage AWS Core Services Summary Amazon RDS AmazonAurora Amazon Route 53 Amazon EC2
  45. 45. Web instance RDS DB instance User Amazon Route 53 No redundancy No failover Cloud Computing Infrastructure: Users > 1000 Challenge: Too many eggs in one basket
  46. 46. Cloud Computing Infrastructure: Users > 1000 • Solution: High Availability • Another web instance • In another Availability Zone • RDS Multi-AZ • Elastic Load Balancing (ELB) Web Instance RDS DB Instance Active (Multi-AZ) AvailabilityZone AvailabilityZone Web Instance RDS DB Instance Standby (Multi-AZ) Elastic Load Balancing User Amazon Route 53
  47. 47. • Health checks on hosts • Distribution of traffic • Dynamic addition and removal of EC2 hosts Elastic Load Balancing Network Load Balancer: balance traffic on network layer (TCP/SSL, UDP) Application Load Balancer: balance traffic on application level (HTTP, HTTPS) TwoTypes Elastic Load Balancing AWS Compute Services
  48. 48. Compute Networking Database Storage AWS Core Services Summary Elastic Load Balancing Amazon RDS AmazonAurora Amazon Route 53 Amazon EC2
  49. 49. Cloud Computing Infrastructure: Users > 10,000s–100,000s What about performance and efficiency?
  50. 50. Cloud Computing Infrastructure: Users > 10,000s–100,000s Lighten the Load
  51. 51. RDS DB Instance Active (Multi-AZ) Availability Zone Elastic Load Balancing Amazon S3 Amazon Route 53 User Web Instances Cloud Computing Infrastructure: Users > 10,000s–100,000s • Shift some load around • Static content to: • Amazon S3 • Amazon CloudFront Amazon CloudFront
  52. 52. Storage Delete Upload Amazon S3 AWS Storage Services • Object storage and distribution for the internet • 99.999999999% durability • Storage classes • Standard • Standard – Infrequent Access • Intelligent Tiering • Glacier
  53. 53. Shift some load around • Static content to Amazon S3 and Amazon CloudFront • Session/state to Amazon DynamoDB • DB caching to Amazon ElastiCache RDS DB Instance Active (Multi-AZ) AvailabilityZone Elastic Load Balancing Amazon S3 Amazon CloudFront Amazon Route 53 User ElastiCache DynamoDB Web Instances Cloud Computing Infrastructure: Users > 10,000s–100,000s
  54. 54. Compute Networking Database Storage AWS Core Services Summary DynamoDB CloudFrontAmazon S3 Elastic Load Balancing Amazon RDS AmazonAurora Amazon Route 53 Amazon EC2
  55. 55. Auto Scaling!
  56. 56. • Automatic resizing of compute clusters • Define min/max pool sizes • Amazon CloudWatch metrics drive scaling Auto Scaling Amazon CloudWatch • Monitor resources and application automatically AWS Compute and Management Services
  57. 57. Sunday Monday Tuesday Wednesday Thursday Friday Saturday Typical Weekly Traffic to Amazon.com
  58. 58. Sunday Monday Tuesday Wednesday Thursday Friday Saturday Typical Weekly Traffic to Amazon.com Provisioned capacity
  59. 59. November November Traffic to Amazon.com
  60. 60. Provisioned capacity November November Traffic to Amazon.com
  61. 61. NovemberTraffic to Amazon.com 76% 24% November Provisioned capacity
  62. 62. NovemberTraffic to Amazon.com November
  63. 63. Use it from the very beginning! Auto Scaling lets you do this!
  64. 64. AvailabilityZone Amazon Route 53 User Amazon S3 Amazon CloudFront AvailabilityZone Elastic Load Balancing DynamoDB RDS DB Instance Read Replica Web InstanceWeb Instance Web Instance ElastiCache RDS DB Instance Read Replica Web InstanceWeb Instance Web Instance ElastiCacheRDS DB Instance Standby (Multi-AZ) RDS DB Instance Active (Multi-AZ) Cloud Computing Infrastructure: Users > 500,000
  65. 65. Compute Networking Database Storage AWS Core Services Summary Auto Scaling DynamoDB CloudFrontAmazon S3 Elastic Load Balancing Amazon RDS AmazonAurora Amazon Route 53 Amazon EC2
  66. 66. Use automation
  67. 67. Convenience Control AWS CloudFormation AWS OpsWorks • Define infrastructure you want to build • Manage infrastructure • Deploy code into the cloud AWS Elastic Beanstalk Application and Resource Management
  68. 68. RDS DB Instance Active (Multi-AZ) Availability Zone Elastic Load Balancing RDS DB Instance Read Replica RDS DB Instance Read Replica Web Instance Web Instance Web Instance Web Instance Amazon Route 53 User Amazon S3 Amazon CloudFront DynamoDB Amazon SQS ElastiCache Worker Instance Worker Instance Amazon CloudWatch Internal App Instance Internal App Instance Amazon SNS Lambda Cloud Computing Infrastructure: Users > 1 million
  69. 69. Compute Networking Database Storage AWS Core Services Summary AWS Lambda Auto Scaling DynamoDB CloudFrontAmazon S3 Elastic Load Balancing Amazon RDS AmazonAurora Amazon Route 53 Amazon EC2
  70. 70. 32 Data Centers 300K Employees 90K Servers $149B 2014 Revenue 170+ Countries 9K Apps 10K IT employees 500+ Cloud Migrations 137 Years Old $3+B Annual IT Spend Case Study: GE
  71. 71. “Today’s industrial companies have to become digital innovators to thrive”. ---GE CIO, Jim Fowler Huge undertaking moving to cloud 45,000+ employees 11 different regions 7 research centers 85% of the world’s offshore oil rigs $5 billion annual expense on R & D 900 applications Case Study: GE Oil & Gas
  72. 72. • Improve productivity • Reduce downtime • Improve operations • Cut costs of IT Business Development IT Infrastructure • Increased costs • Limited IT resource • Complex deployment and management Case Study: GE Oil & Gas – Challenges
  73. 73. Case Study: GE – Solutions • Build foundational services on AWS: • Monitoring • Backup • DNS • SSO automation • Automate as much as possible to reduce touch times. • Create a “bot army” aligned with loosely coupled microservices. • Build in security at every layer.
  74. 74. Dec ‘14 128 Unintended Consequences • 98% reduction in business outages/incidents • 80% cloud first adoption • 77% faster to deliver business applications • 52% average TCO savings • Improved performance AND security • Culture of self-service & automation • Enhanced the skill sets of employees Progress • 35% reduction in compute assets (792) • 50 applications decommissioned • 15 cloud services created • 15 automated bots developed • Velocity = 50 apps/qtr. These are more important311 complete O&G – Cloud Aware Apr ‘15 206 Mar ‘15 177 Feb ‘15 163 Jan ‘15 131 Nov ‘14 115 Month with Migration Party Q2 ‘14 24 Q3 ‘15Jun ‘15 229 Built Core Services & Automation May ‘15 221 Q3 ‘14 63 Oct ‘14 82 Jul ‘15 245 400 Q4 ‘15 311 Case Study: GE – Results
  75. 75. Case Study: Airbnb
  76. 76. Total number of guests 15M 12M 9M 6M 3M January 2013 4 Million Mar 2009 Sep 2009 Mar 2010 Mar2011 Sep 2011 Mar 2012 Sep 2012 Mar 2013 Sep 2013 Mar 2014 Case Study: Airbnb
  77. 77. Case Study: Airbnb
  78. 78. KeyTakeaways • What are the key features of the cloud computing infrastructure? • Elasticity • High availability • Security
  79. 79. Module 2: Leveraging AWS for Competitive Advantages (Part B)
  80. 80. AWS Business Essentials Module 1: Getting Started with the Cloud Module 2: Leveraging AWS for Competitive Advantages Module 3: Cloud Economics Module 4: Security and Compliance Module 5: Migrating to the Cloud
  81. 81. What’s in Module 2 • Cloud computing framework • Big data • Mobile • Disaster recovery
  82. 82. Big Data © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 82
  83. 83. Big Data • Business challenges • Cloud computing solutions • The AWS big data services 83© 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved.
  84. 84. Who are my top customers and what are they buying? Which devices are showing time for maintenance? What is my product profitability by region? Why is my most profitable region not growing? How much inventory do I have? Has my fraud account expense increased? How is my marketing campaign performing? How is my employee satisfaction trending? Lots and lots of questions Few insights Lots of data Business Challenges
  85. 85. Big Data AWS Cloud Potentially massive data sets Massive, virtually unlimited capacity Iterative and experimental data analysis On-demand infrastructure Frequent peaks and valleys of workload Elasticity Structured and unstructured data Tools and services for diverse data A Natural Fit for Big Data
  86. 86. Cloud Computing Solutions: On-Demand Analytics
  87. 87. Cloud Computing Solutions: DataWarehousing
  88. 88. Core Services Platform Services ElastiCache Amazon RDS DynamoDB Amazon Kinesis Amazon EMR Compute Networking DatabaseStorage CloudFront Amazon Glacier Amazon S3 Amazon EBS Auto Scaling Amazon Route 53 AWS Direct Connect AmazonVPC Amazon EC2 AWS Lambda Elastic Load Balancing AWS Services Summary Amazon Redshift Amazon QuickSight Analytics
  89. 89. Case Study: Illumina • A leader in providing DNA sequencing and array-based technologies. • 90% of all DNA sequencing worldwide is performed on Illumina machines.
  90. 90. Scientific Analysis IT Strategy • Reduce computation cost by 100X • Enable unlimited global scalability • Data centers not core competency • Comprehensive strategy for regulatory compliance Case Study: Illumina – Challenges
  91. 91. Watch the video Case Study: Illumina – Solutions and Results
  92. 92. Mobile © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 92
  93. 93. Mobile • Business challenges • Cloud computing solutions • The AWS mobile services
  94. 94. • What makes your mobile apps unique? • Where are you spending most of your time? • The undifferentiated heavy lifting that today’s apps need? • The great stuff that makes your app unique? Business Challenges © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
  95. 95. Undifferentiated Heavy Lifting
  96. 96. ClientCode ServerCode HandlingTransientNetworkConditions Undifferentiated Heavy Lifting
  97. 97. Cloud Computing Solutions You can focus on what makes your app unique! AWS Mobile Solutions make the undifferentiated heavy lifting easy.
  98. 98. AWS Mobile Services Cloud Computing Solutions
  99. 99. Amazon SNS AWS IAM AWS Mobile Services
  100. 100. Core Services Platform Services Analytics Mobile Services ElastiCache Amazon RDS DynamoDB Amazon Kinesis Amazon EMR Compute Networking DatabaseStorage CloudFront Amazon Glacier Amazon S3 Amazon EBS Auto Scaling Amazon Route 53 AWS Direct Connect AmazonVPC Amazon EC2 Amazon SNS Amazon Cognito AWS Lambda Elastic Load Balancing Amazon Mobile Analytics Amazon Redshift Amazon QuickSight AWS Services Summary
  101. 101. Case Study: HTC • Founded in 1997 • Global footprint • Portfolio: smartphones and tablets • Award-winning mobile devices and industry firsts
  102. 102. Be agile IT Strategy • Rapid release cycle • Unpredictable consumer response • Worldwide deployment • Need someone do it better and more efficiently Case Study: HTC – Challenges
  103. 103. Amazon S3Amazon EC2 Auto Scaling AWS CloudFormation CloudFront DynamoDB Amazon EBSAmazon VPC Amazon SNS Amazon SES Amazon Route 53 Elastic Load Balancing Amazon CloudWatch Case Study: HTC – Solutions • Manage and move terabytes of customer data every day. • Help the CS team with capacity management. • Improve the customer content viewing experience. • Manage user data. • Use multiple AZs: in North America, Europe, and Asia. • Monitor.
  104. 104. • Became more flexible and agile, even with tight release cycles. • Time to market has improved. • Reacted quickly to the rapid user growth in HTC Share Service. • Provided a good customer experience: reducing latency; improving availability. Speed, Customer Satisfaction Cost $ $$$   Case Study: HTC – Results
  105. 105. Disaster Recovery © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 105
  106. 106. Disaster Recovery • Business challenges • Cloud computing solutions • The AWS Services for disaster recovery
  107. 107. • Hardware or software failure • Network outage, power outage • Physical damage to a building • Human error • … Business continuity is broken Business Challenges
  108. 108. • Duplication of infrastructure • Large procurements • Ongoing maintenance • Underutilized resources • Scale infrastructure up and down • Provision resources globally • Change and optimize resources during a DR scenario • Tools for segregation of duties • Automate deployment Traditional Environment vs. AWS Traditional Environment AWS Business Challenges
  109. 109. • Duplication of infrastructure • Large procurements • Ongoing maintenance • Underutilized resources • Scale infrastructure up and down • Provision resources globally • Change and optimize resources during a DR scenario • Tools for segregation of duties • Automate deployment • Provision resources globally • Fast! Traditional Environment AWS Business Challenges Traditional Environment vs. AWS
  110. 110. Cloud Computing Solutions for DR
  111. 111. Pilot Light Warm Standby DR Approaches: Pilot Light andWarm Standby
  112. 112. Pilot Light Pilot Light System Application Server Reverse Proxy/ Caching Server Not Running Slave Database Server Corporate Data Center Database Server Reverse Proxy/ Caching Server Application Server Data Mirroring Replication Amazon Route 53 Pilot Light RecoveryApproach
  113. 113. Pilot Light System Application Server Reverse Proxy/ Caching Server Starts in Minutes Corporate Data Center Database Server Reverse Proxy/ Caching Server Application Server Slave Database Server Data Mirroring Replication Add more capacity if needed Pilot Light Amazon Route 53 Pilot Light Recovery Approach
  114. 114. Scaled Down Standby Application Server Reverse Proxy/ Caching Server Slave Database Server Data Mirroring Replication Application Data Source Cut Over Amazon Route 53Corporate Data Center Database Server Reverse Proxy/ Caching Server Application Server Warm Standby Warm Standby Recovery Approach
  115. 115. Scaled Up and Out Application Server Reverse Proxy/ Caching Server Slave Database Server Application Data Source Cut Over Amazon Route 53 Corporate Data Center Database Server Reverse Proxy / Caching Server Application Server Warm Standby Data Mirroring Replication Warm Standby Recovery Approach
  116. 116. Amazon VPC Internet Corporate Data Center Internet and Corporate Data Center Other VPCs VPC Connectivity Internet Gateway Virtual Private Gateway Internet Gateway and Virtual Private Gateway VPC Peering and Transit Gateway Gateway Connections: AWS Networking Services: Amazon Virtual Private Cloud
  117. 117. Core Services Platform Services Analytics Mobile Services ElastiCache Amazon RDS DynamoDB Amazon Kinesis Amazon EMR Compute Networking DatabaseStorage CloudFront Amazon Glacier Amazon S3 Amazon EBS Auto Scaling Amazon Route 53 AWS Direct Connect AmazonVPC Amazon EC2 Amazon SNS Amazon Cognito AWS Lambda Elastic Load Balancing Amazon Mobile Analytics Amazon Redshift Amazon QuickSight Deployment and Management AWS CloudTrail CloudWatch AWS CloudFormation IAM AWS OpsWorks AWS Services Summary
  118. 118. Workshop: Chatham House Rule • “Unconference” • Collaborative, participant-driven discussion • Loose structure • Questions are encouraged • Chatham House Rule applies • Everything stays in this room When a meeting, or part thereof, is held under the Chatham House Rule, participants are free to use the information received, but neither the identity nor the affiliation of the speaker(s), nor that of any other participant, may be revealed.
  119. 119. Workshop: Chatham House Rule • Topic • What is your challenge around IT systems/operations/architecture • Name a time when an application/environment worked well at small scale or testing scales, but had challenges as it grew. • Talk about a time when IT cost overruns caused projects to be put in jeopardy or even cancelled. • How could you use AWS services and solutions to help with your IT objectives? • Schedule • GroupActivity – 15 minutes • Group LightningTalks – 10~15 minutes: 3 minutes /group • ClosingThoughts – 5 minutes
  120. 120. Module 3: Cloud Economics
  121. 121. AWS Business Essentials Module 1: Getting Started with the Cloud Module 2: Leveraging AWS for Competitive Advantages Module 3: Cloud Economics Module 4: Security and Compliance Module 5: Migrating to the Cloud
  122. 122. What’s in Module 3 • AWS pricing principles • The simple monthly calculator • TCO • Cost optimization
  123. 123. AWS pricing principles © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 123
  124. 124. Benefit from AWS Economies of Scale Pay as you go Pay less per unit by using more  Pay less when you reserve  Four Basic Principles
  125. 125. • No minimum commitments or long-term contracts • No upfront expense • Low variable costs • Pay only for what you use 1: Pay AsYou Go
  126. 126. 1: Pay AsYou Go
  127. 127. • Save more as your usage grows • Pay less per GB • Get volume discounts by reserving more 2: Pay Less per Unit by Using More
  128. 128. 2: Pay Less per Unit by Using More
  129. 129. • Get a bigger discount when you pay more upfront • Get a significantly discounted hourly rate • Overall savings of up to 75% 3: Pay LessWhenYou Reserve
  130. 130. 3: Pay LessWhenYou Reserve
  131. 131. Optimize and combine purchase types: On-Demand Reserved Spot Dedicated Spiky workloads Steady-state workloads Time-insensitive workloads Highly sensitive workloads  Pay by the hour  No long-term commitments  Pay upfront  50-75% lower hourly rate  Unused EC2 capacity  Isolated, steady- state workloads Free Tier: Get started on AWS with free usage & no commitment. Pricing Principles for Compute
  132. 132. • Lower price and more customers/usage • Lower cost and continuous innovation • Lower prices Benefit from AWS Economies of Scale
  133. 133. The simple monthly calculator © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 133
  134. 134. • A tool to estimate price for numerousAWS services • Estimate monthly bill • A single instance • Individual services • Individual or multiple prices • Appraise complete solutions • Templateshttp://calculator.s3.amazonaws.com/index.html The Simple Monthly Calculator
  135. 135. Single Service Pricing – EC2
  136. 136. Single Service with PriceWindow
  137. 137. Add A Second Service – Amazon S3
  138. 138. TCO © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 138
  139. 139. What IsTCO? Comparative total cost of ownership analysis 1) On-premises/co-location vs. onAWS 2) Acquisition cost + operating costs 3) Entire infrastructure environment or specific workload
  140. 140. ≠ On-premises/co-location Not Easy to Compare! Total Cost of Ownership Amazon Web Services
  141. 141. Hardware—server, rack chassis PDUs, Tor switches (+maintenance) Software—OS, virtualization licenses (+maintenance) Facilities cost Hardware—storage disks, SAN/FC switches Storage admin costs Network hardware—LAN switches, load balancer bandwidth costs Network admin costs Server admin4 Space Power Cooling Facilities cost Space Power Cooling Facilities cost Space Power Cooling Server costs Storage costs Network costs IT labor costs 1 2 3 illustrative Costs Involved in Data Center Maintenance
  142. 142. AWSTCO Calculator https://awstcocalculator.com AWS Economics Center http://aws.amazon.com/economics/ Case studies and research http://aws.amazon.com/economics/ Resources to GetYou Started
  143. 143. ANNUALGUESTS SERVED Global Food and Hospitality Leader Case Study: Delaware North
  144. 144. • Meet increased customer requirements • Rapidly deploy new solutions • Require an even greater commitment of resources Worldwide Operations IT Pain • High costs • Manage, upgrade, and replace about 225 servers Case Study: Delaware North – Challenges
  145. 145. Technical Operational Financial Success of 50 websites moving New global headquarters building Evaluation process: 3 Criteria Case Study: Delaware North – Opportunity
  146. 146. Could save $3.5 million • Eliminate 91% of data center servers • Move almost all applications to AWS in 6 months • Continue a 24/7 global business while migrating Case Study: Delaware North – Solutions and Results
  147. 147. • Growth • Enhanced customer experience 24/7 business • Operational efficiency Business Goal Resource Optimization Speed to Market Operational Efficiency • Robust security compliance • Enhanced disaster recovery • Increased computing capacity • One day to provision new businesses • Just minutes to push out a service • Continuous cost optimization and reduction Case Study: Delaware North – Results
  148. 148. Cost Optimization © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 148
  149. 149. On- Premises Lift & Shift Instance Right- Sizing Improved Elasticity Measure, Monitor, Improve Optimized EC2 Storage Optimization Serverless Architecture Managed Services True AWS- Optimized Traditional TCO Comparisons Lowering TCO Through Cost Optimization
  150. 150. going from… to… pay for what you use pay for what you need What Is Cost Optimization? © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
  151. 151.  Right- sizing  Reserved Instances  Increase Elasticity  Measure, monitor, and improve The Four Pillars of Cost Optimization
  152. 152. • Select the appropriate instance • Downsize instances • Leverage AmazonCloudWatch metrics 1: Right-Sizing
  153. 153. * Dependent on specific AWS service, size/type, and region 2: Reserved Instances/Capacity • Reserved Instances/Capacity • Amazon EC2 • Amazon RDS • Amazon DynamoDB • Amazon Redshift • Amazon ElastiCache • Commitment level • 1 year • 3 years
  154. 154. 2: Reserved Instances • Step 1: RI Coverage • Cover always-on resources. • Target 70–80% always-on coverage. • Step 2: RI Utilization • Leverage RI flexibility to increase utilization. • Merge and split RIs as needed. • Target 95% RI utilization rate.
  155. 155. 3: Increase Elasticity • Turn off nonproduction instances • Dev/test, nonproduction instances. • Autoscale production • Use Auto Scaling to scale up and down based on demand and usage (eg, spikes).
  156. 156. More, smaller instances vs. fewer, larger instances 29 m4.large @ $0.120/hr $2,505.60/mo* 59 t2.medium @ $0.052/hr $2,208.96/mo* *Assumes Linux instances in the US-East (N. Virginia) Region at 720 hours per month Using Right-sizing and Elasticity to Lower Cost
  157. 157. Cost Optimization Opportunities 4: Measure, Monitor, and Improve 1. Auto-tag resources. 2. Identify always-on nonprod. 3. Identify instances to downsize. 4. Recommend RIs to purchase. 5. Dashboard your status. 6. Report on savings.
  158. 158. AWS Trusted Advisor Cost Explorer 4: Measure, Monitor, and Improve – Tools • Optimize your AWS environment. • Reduce cost, increase performance, and improve security. • View graphs of your costs: the last 13 months. • Forecast your likely costs: the next 3 months. • View time data by day or month.
  159. 159. ✔ ✔ ✔ ✔✘ ✘ ✘ ✘ $ $ $ $ $ Cycle of Cost Optimization
  160. 160. Key Takeaways •What are the different purchase options of EC2 instances? • On-Demand • Reserved instances • Spot instances
  161. 161. Module 4: Security and Compliance
  162. 162. AWS Business Essentials Module 1: Getting Started with the Cloud Module 2: Leveraging AWS for Competitive Advantages Module 3: Cloud Economics Module 4: Security and Compliance Module 5: Migrating to the Cloud
  163. 163. What’s in Module 4 • Overview of cloud security • Security of the cloud • Security in the cloud
  164. 164. Overview of cloud security © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 164
  165. 165. “Why did we pick AWS for Capital One? We believe we can operate more securely in their cloud than in our own data centers.” - Rob Alexander – CIO, Capital One "The financial service industry attracts some of the worst cyber criminals."
  166. 166. Customer Data Integrity AWS Infrastructure Platforms Controls Security Is AWS Top Priority
  167. 167. AWS Compliance • Maintain alignment with global requirements. • Validate security control environment. • Enable you to assess organization’s compliance. • Satisfy your regulators by automating compliance tasks.
  168. 168. Customer Data Platform & Application Management Operating system, network, and firewall configuration Client-side data encryption & data integrity authentication Network traffic protection encryption / integrity / identity Server-side encryption file system and/or data Optional – Opaque data: 0s and 1s (in transit/at rest) Customer AWS Endpoints AWS NetworkingDatabasesStorageCompute Edge Locations Availability Zones Regions AWS Global Infrastructure Foundation Services Shared Responsibility Model for Infrastructure Services
  169. 169. Shared Responsibility Model for Managed Services Customer Data Client-side data encryption & data integrity authentication Network traffic protection encryption / integrity / identity Optional – Opaque data: 0s and 1s (in transit/at rest) Customer AWS Endpoints AWS NetworkingDatabasesStorageCompute Edge Locations Availability Zones Regions AWS Global Infrastructure Foundation Services Platform & Application Management Firewall Configuration Operating system & NetworkConfiguration
  170. 170. Customer Data Client-side data encryption & data integrity authentication AWS Endpoints AWS NetworkingDatabasesStorageCompute Edge Locations Availability Zones Regions AWS Global Infrastructure Foundation Services Optional – Opaque data: 0s and 1s (in transit/at rest) Client-side data encryption provided by the platform protection of data at rest Network traffic protection provided by the platform protection of data in transit Platform & Application Management Operating system, network, and firewall configuration Shared Responsibility Model for Abstracted Services
  171. 171. Security of the Cloud © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 171
  172. 172. AWS Security Control Framework 1. Physical and environmental security 2. IT operations 3. Access controls 4. Security policy and governance controls 5. Change management
  173. 173. 1: Physical Security • Building • Perimeter and entry • Security staff and surveillance • Two-factor authentication • Escort
  174. 174. • Fire detection and suppression • Power • Climate and temperature • Monitoring equipment • Storage device decommissioning 1: Environmental Security
  175. 175. Physical Security Environmental Security Continuous Audit 1: Physical and Environmental Security
  176. 176. Logging  Prevent unauthorized access from being undetected Vulnerability Management  Third-party penetration testing Secure Communication  Prevent sensitive information in transit Data Management  Detect suspicious activities 2: IT Operations
  177. 177. Segregation Account Audit Background Checks Credentials Policy Data Security 3: Access Controls
  178. 178. 4: Security Policy and Governance Controls • Governance Guidance for operations and information security • Risk Assessment Mitigate risks and reduce exposure to vulnerabilities • Compliance Prevent inadvertent violation of laws & regulations
  179. 179. Document and communicate the change Plan implementation of change Test changes Peer-review of change Attain approval for the change by authorized team members Review all changes monthly 5: Change Management Controls
  180. 180. • Auditors and standards from different countries • Certifications/ Attestations Validated Global Security of the Cloud
  181. 181. Security in the Cloud © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 181
  182. 182. • Asset management • Data security • Network security • Security tools and services • Access controls • Automate security operations Security Solutions
  183. 183. Asset Identification Asset Inventory Secure Management Change Management Audit Assets Amazon CloudWatch AWS Config Asset Management
  184. 184. Review: PConnection methods P Key management policies P Encryption methods Understand where data resides Identify key management policies Ensure appropriate controls Data Security
  185. 185. Network Security Always use security groups Augment security groups with network ACLs Use trusted connections Design network security in layers Best Practices
  186. 186. SecurityTools and Services Encryption Key Management Service (KMS) CloudHSM Client-Side Encryption Networking Virtual Private Cloud Web Application Firewall Compliance ConfigCloudTrailService Catalog Identity Identity Access Management (IAM) Active Directory Integration SAML Federation
  187. 187. Access Controls • Grant permissions to individual users/groups • Configure a strong password policy for users/groups • Enable MFA for privileged users • Delegate by using roles instead of by sharing credentials • Rotate credentials regularly • Monitor activity in your AWS account
  188. 188. Automate Security Operations • Identify Your Workloads Moving to AWS Rationalize Security Requirements Define Data Protections and Controls Document Security Architecture Build/deploy Security Architecture 1. Decide what to do (Strategy) 2. Analyze and document (outside of AWS) Identify Stakeholders 3. Automate, deploy, and monitor Automate Security Operations 4. Certify Continuously Monitor Audit and Certification Testing andGame Days
  189. 189. Achievable Global Security and Compliance in the Cloud • Auditors and standards from different countries • Certifications/ Attestations
  190. 190. Watch the video One of the largest US banks, 1988 CustomerTestimonial : Capital One
  191. 191. KeyTakeaways • What is “security of the cloud” referring to? • Security measures that AWS implements and operates • Physical and Environmental Security of AWS data centers • IT operations and access controls • Security policy and governance controls • Change management • AWS certifications and attestations • What is “security in the cloud” referring to? • Security measures that the customer implements and operates • Achieving data and network security by leveragingAWS security tools and services • Enforcing access controls onAWS • Automating security operation and governance
  192. 192. Module 5: Migrating to the Cloud
  193. 193. AWS Business Essentials Module 1: Getting Started with the Cloud Module 2: Leveraging AWS for Competitive Advantages Module 3: Cloud Economics Module 4: Security and Compliance Module 5: Migrating to the Cloud
  194. 194. What’s in Module 5 •The four steps to cloud success: • Explore • Experiment • Engage • Enable
  195. 195. Explore © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 195
  196. 196. Cloud Journey Preparation Attend industry events Talk with industry peers Run your own workshops AWS documentation and forums • AWS Blog • AWS Self-Paced Lab • AWSYouTube Channel • AWS OnlineCourse Deeper Dive into the Cloud
  197. 197. Experiment © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 197
  198. 198. • Digital • Storage • Backup • Test and Development • Static website • Web/mobile application service • Virtual desktop Ideal initial projects Use free tier Low risk Small scale IdentifyYour First Project
  199. 199. Engage © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 199
  200. 200. Cloud Account Manager Solutions Architect support engineer (CSE) Pro-Serve Consultant Technical Account Manager Subject matter experts (SME) You SMEs Customer Support teams AWS Is Here forYou!
  201. 201. Online In a classroom Take a Class Online Live AWS services Practice with a Lab Advance your career Validate your expertise Get AWS Certified AWSTraining and Certification AWS Helps DevelopYour Skills
  202. 202. AWS Partner Ecosystem • Consulting Partners • Technology Partners • System Integrators • Specialist Partners • HPC • DevOps • Analytics • Find a suitable partner at http://www.aws-partner-directory.com
  203. 203. 35 Categories 2700 Listings 205,000,000 EC2 Instance Hours AWS Marketplace
  204. 204. Enable © 2019 Amazon Web Services, Inc. or its Affiliates. All rights reserved. 204
  205. 205. • Develop a framework • Act as the interface • Provide data and cost governance “Give me a lever long enough and a fulcrum on which to place it, and I shall move the world.” -Archimedes CCOE Create a Cloud Center of Excellence
  206. 206. Migration Strategies
  207. 207. KeyTakeaways • How could you get in touch with AWS cloud? • Attend industry events; Re:Invent, Summit and AWSome Days. • Review AWS documentation and forums:AWS Blog, AWSYouTube Channel, AWS Online Course. • Run AWS Labs. • Develop your Skills through training and certification. • Leverage a large team of: Account Manager, SA,TAM, Pro-Serve Consultant and Partners.
  208. 208. Thank You
  209. 209. © 2019 Amazon Web Services, Inc. or its affiliates. All rights reserved. This work may not be reproduced or redistributed, in whole or in part, without prior written permission from Amazon Web Services, Inc. Commercial copying, lending, or selling is prohibited. Corrections or feedback on the course, please email us at: aws-course- feedback@amazon.com. For all other questions, contact us at: https://aws.amazon.com/contact-us/aws-training/. All trademarks are the property of their owners. Thank You

×