SlideShare uma empresa Scribd logo

Reimagining Data Management in the Cloud at NASA and CMS

Amazon Web Services
Amazon Web Services

The AWS Governance@Scale framework provides customers with the blueprint for enterprise cloud success. These best practices, first adopted by AWS to manage thousands of cloud accounts, is now being used by National Aeronautics and Space Administration (NASA) and Centers for Medicare & Medicaid Services (CMS) to accelerate cloud adoption and provide a frictionless end user experience in the cloud. Despite each agency having a distinct, unique mission, through Governance@Scale, each customer is delivering a controlled but flexible cloud environment to their staff, and they're making it even easier to migrate applications and cost-effectively deploy new solutions with greater agility than ever before.

1 de 45
P U B L I C S E C T O R S U M M I T WASHINGTON, DC
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Reimagine the Public Cloud Experience with AWS Governance@Scale Mark McInerney Deputy Project Manager, Earth Science Data & Information System NASA 3 1 9 0 0 5 Brett Miller CMS Senior Solutions Architect & Technical Program Manager AWS Brian Price President & CEO cloudtamer.io
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Agenda Achieving the common goals of unique missions Reimagining data in the cloud at NASA Reimagining user onboarding and orchestration in the cloud at Centers for Medicare & Medicaid Services (CMS) AWS Governance@Scale 101 Automating Governance@Scale
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
© 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved. 5 There’s more to cloud transformation than this… © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
© 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved. 6 Successful cloud transformation looks like this… © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T The typical AWS adoption reality Amazon Simple Storage Service (Amazon S3) Project 1 AWS Account Amazon Elastic Compute Cloud (Amazon EC2) Project 2 AWS Account Amazon S3 Amazon EC2 Amazon Relational Database Service (Amazon RDS) Stage 1 Specific Systems Limited Accounts Minimal Services Stage 2 Numerous Systems Multiple Accounts Many Services Amazon S3 Project 1 AWS Account Amazon EC2 Amazon Virtual Private Cloud (Amazon VPC) Amazon S3 Project 2 AWS Account Amazon EC2 Amazon VPC Amazon EMR Amazon Kinesis Amazon Redshift Project 3 AWS Account Amazon S3 Project 4 AWS Account Amazon EC2 Project 5 AWS Account Amazon API Gateway Amazon Simple Queue Service (Amazon SQS) Amazon WorkSpaces Amazon Elastic Container Service (Amazon ECS) AWS Elastic BeanstalkAmazon S3 Amazon EC2 Amazon EMR
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Common governance challenges Organizational Support Business Unit Autonomy Multi-Account Strategy Integration Delegation
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Goals for NASA and CMS • Accelerate cloud adoption • Deliver a controlled, but flexible, cloud environment to staff • Make it easier to migrate applications and cost effectively deploy new solutions with greater agility than ever before
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Earth Science Data Collections of the Earth Observing System Data and Information System (EOSDIS) 11NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov • Land • Cover & Usage • Surface temperature • Soil moisture • Surface topography • Ocean Dynamics • Surface temperature • Surface wind fields & Heat flux • Surface topography • Ocean color NASA Operating Missions • Airborne • International Space Station • Field Campaigns • International Partners March 2017 • Atmosphere • Winds & Precipitation • Aerosols & Clouds • Temperature & Humidity • Solar radiation • Cryosphere • Sea/Land Ice & Snow Cover • Human Dimensions • socioeconomic data (e.g., population, infrastructure, ..)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T EOSDIS Organization 12 NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T NASA’s EOSDIS provides end- to-end capabilities for managing NASA’s Earth science data from satellites, aircraft, field measurements, and various other programs. EOSDIS is responsible for a data collection that is large in volume and projected to grow rapidly over the next several years. High-Level EOSDIS End-to-End EOSDIS Applications capture and clean data downlink Education process archive subset distribute Research Users 13NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T 80 TBs/day generation 400 TBs/day reprocessing 300 GB Granules 150 PBs @ 50 Gbps processing speed for months NISAR Mission 14NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov NASA-ISRO Synthetic Aperture Radar (NISAR)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T EOSDIS Data System Evolution Growth of Mission Data & Processing: Projected rapid archive growth and the need to effectively process significantly larger volumes of new mission data requires rethinking existing architectures. Data Systems: More cost-effective, flexible, and scalable data system ingest, archive, and distribution solutions are needed to keep pace with new mission advancement. Science Users: Significantly larger data volumes requires additional ways to access and utilize this data, with “Data Close to Compute” or Data Lake”. 15 NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov Motivationfor Cloud Projected Data Volumes
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Earthdata Cloud (EDC) ● “Managed” commercial cloud for EOSDIS on AWS ● Improves the efficiency of NASA’s data systems operations – maintaining free/open data policy ● Designed for EOSDIS applications and mission data ingest, archive, distribution ● Increase opportunity for researchers and commercial users to access/process petabytes of data quickly without the need for data management 16NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T 07 Community Development Model 06 Metrics Management 05 Budget Controls 04 Organizational Governance 03 Data Services & analytics 02 Mission Data Management 01 Cloud Platform Infrastructure Components of the Earthdata Cloud 17NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud Platform Infrastructure 01 Project Level Components and Core Elements User Access / Support Services Networking Governance of Cloud Accounts Common Services and Controls 07 Community Development Model 06 Metrics Management 05 Budget Controls 04 Organizational Governance 18 Certification and Accreditation Strategy Security Services NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud Platform Infrastructure 01 Project Level Components and Core Elements User Access / Support Services Networking Governance of Cloud Accounts Common Services and Controls 07 Community Development Model 06 Metrics Management 05 Budget Controls 04 Organizational Governance 19 Certification and Accreditation Strategy Security Services NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov 05 Budget Controls
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Earthdata Cloud Platform Infrastructure Maximizes Flexibility Provide projects the freedom to implement solutions that fit their problem domains Maximizes Autonomy Be a platform, not a gate; foster experimentation/innovation and support production needs of application owners Shared Services & Controls Platform manages common shared services & controls to reduce duplication, system complexity, and cost across EOSDIS 20NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov Cloud Platform Infrastructure Common Services and Controls A multi-account, Infrastructure-as-a-Service (IaaS) cloud platform operating on AWS under a single top-level “payer account”, providing shared cloud services and controls to EOSDIS.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Common Services and Controls Components of the EOSDIS Earthdata Cloud (EDC) 21 1. NASA-Approved Amazon Services - vetted AWS and third-party SAAS services and process to add new. Focus is on using AWS cloud-native services 2. Code Deployment Services - DevOps CICD Pipeline to security scan code, build, and deploy into EDC 3. Use of Infrastructure as Code including re-useable template to define a multi-account ecosystem 4. cloudtamer.io Identity and Access Management to: • Rotate AWS access keys • Apply session limits • Provide role-based access control Cloud Platform Infrastructure Common Services and Controls
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T User Access Cloud Platform Infrastructure Governance of Cloud Accounts Components of the EOSDIS Earthdata Cloud (EDC) 22 1. User Authentication • Grant uniform access and experience to end users from multiple identity management systems (NAMS (SAML) / Internal directory / Active Directory) • Enforce and validate minimum authentication levels via two-factor authentication • Ensure that users only have access commensurate to the authentication type with cloudtamer.io • Secure PIV/Token login, NASA NAMS account provisioning 2. User Authorization • Control who views finances, who accesses AWS resources, and who manages finance • cloudtamer.io manages AWS Identity and Access Management (IAM) roles and policies at an organizational level
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Account Structure Components of the EOSDIS Earthdata Cloud (EDC) 23 • Single Payer Account using AWS Organization and Consolidated billing • Multi-Account structure divided into NASA / Mission-defined organizational units • Isolation based on organizational units • Isolation based on application development, test, and production accounts • Isolation of Management and Security accounts from end user environment • Track AWS expenses to NASA organizations and funding sources Cloud Platform Infrastructure Governance of Cloud Accounts
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T The Antideficiency Act (ADA) and Pay-as-You-Go 4Points The ADA act prohibits federal agencies from obligations or expending federal funds in advance or in excess of an appropriation, and from accepting voluntary services. Federal employees who violate the Antideficiency Act are subject to two types of sanctions: administrative and penal. Employees may be subject to appropriate administrative discipline including, when circumstances warrant, suspension from duty without pay or removal from office. In addition, employees may also be subject to fines, imprisonment, or both. Budget Controls 24 NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T The cloudtamer.io account-level view • Enforces individual AWS account-level budget through “budget caps” • Provides account-alert spend monitoring and budget control actions • Allows for flexible access levels: • Top-level view for ESDIS management & business teams • Account view for APP-Admins & Developers as needed 25NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov Budget Controls
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Pre-Production Near-term Application and Data Onboarding 26 Global Hydrology Resource Center (GHRC) mission data into EDC production end of 2019 GHRC * Alaska Satellite Facility (ASF) NASA-ISRO Synthetic Aperture Radar (NISAR) mission data into EDC production early 2022 (Dec 2021 launch) NISAR * NASA’s Goddard Earth Science Data and Information Services Center (GES DISC) Giovani visualization & analysis tool in EDC to support ESD analytics capabilities, pre-production environment 2019 Giovani + Alaska Satellite Facility (ASF) Spaceborne Imaging Radar-C (SIR-C) mission data into EDC production early 2020 SIR-C * ESDIS Global Imagery Browse Service in The Cloud (GITC), NGAP2.0 pre-production environment GITC + Physical Oceanography (PO) Data Active Archive Center (DAAC) Surface Water Ocean Topography (SWOT) mission data into EDC production 2022 SWOT * Sentinel-1 ASF Sentinel-1 mission in production on Earthdata Cloud (NGAP2.0) Common Metadata Repository ESDIS / EED Common Metadata Repository (CMR) in production on Earthdata Cloud (NGAP1.0) Earthdata Search Client ESDIS / EED Earthdata Search Client (EDSC) in production on Earthdata Cloud (NGAP1.0). 1 2 3 Production GHRC SIR-C * Mission Data + Application 6 key projects in queue for production into the Earthdata Cloud NISAR SWOT GITC Giovani ESDIS/DAAC dataset prioritization activity underway to determine mission data onboarding Oct 1, 2019 NASAs Earthdata Cloud (EDC) – http://earthdata.nasa.gov
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud computing at the Centers for Medicare & Medicaid Services 70+ applications running in AWS Shared Services providing a variety of security and operational capabilities including VPN, Active Directory, Gold Image AMIs, Log Aggregation and Analytics 28 hush-naidoo-382152-unsplash
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud computing objectives at CMS • Reusability: productize cloud computing resources and services at CMS • Easy-to-adopt: clear onboarding, education, and training for teams • Developer-first: build modular components and support dev community • Cost-effective: reduce operating cost and create a governance structure to support cost transparency and better business owner education • Adaptable: build on modern software technology stack, leveraging infrastructure as code 29
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T With growth, comes obstacles… ● Efficiency in bringing in new users and applications in the cloud ● Flexible services for both the novice and advanced cloud user ● Cost and onboarding transparency ● Growing complexity to meet security and compliance needs and obtain ATOs 30
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Taking the next steps…CMS AWS West Project • An opportunity to build out a “greenfield” cloud environment for the future without disruption to ongoing operations in the Legacy CMS AWS East or the constraints of the current cloud environment • Align with leadership’s vision for a modern cloud infrastructure and suite of services, structured as 9 workstreams collaborating and coordinating to get work completed 31
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Guiding principles • Iterative forward progress – deliver a Minimum Viable Product (MVP) with a “greenfield” approach over two 30/60/90 day MVP cycles • Early stakeholder engagement – USDS serving as Product Owner(s), IUSG/OIT/CMS as System Owner(s), and WNMG/OC/CMS as Business Owner(s) • Full transparency – working in the open using ALM tools such as Jira, Confluence, Hipchat, and GitHub • Tackle big risks early – agile delivery to deliver units of value quickly, think about onboarding and team education and satisfaction from the beginning • Approach with humility – this is a complex effort, solicit feedback early and often, apply lessons learned from previous cloud migration and operations; build on previous knowledge and efforts • Great user experience – through formal and self-serve training, comprehensive agile onboarding, and improved governance and cost model 32
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T AWS Governance@Scale framework • Provides customers with the blueprint for enterprise cloud success • We drink our own champagne: these best practices were first adopted by AWS to manage thousands of cloud accounts
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Three principles of Governance@Scale Account management • Align AWS accounts with the organization through a common interface. Standardize and streamline provisioning, maintenance, and access control policies for many AWS accounts and workloads Cost enforcement • Ensure AWS accounts and workloads do not exceed budget Compliance automation • Accelerate security authorizations, provide continuous monitoring and configuration management, and enforce security controls
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Embracing the AWS Governance@Scale framework • Account automation • Budget planning • Identity & access automation • Security automation 36 • Budget enforcement • Policy enforcement • Identity federation • Identity & access automation
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T • Enforces fiscal and compliance policies with more than notifications • Provides native access to cloud capabilities. It’s not a cloud broker • Easy access for technical staff to create the resources they need • Easy for senior leadership to enact financial and compliance oversight as adoption scales cloudtamer.io enables organizations to manage their cloud presence at scale
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud@Scale: Account Management Company X Dept. A Project 1 Project 2 Project 3 Dept. B Project 4 Project 5 Dept. C Project 6 • Centralized management of all cloud accounts • Federated single sign-on and 2-factor authentication (MFA) • Automated, self-service account creation with native Console, CLI, and API access Account Management
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud@Scale: Budget Enforcement Company X Dept. A Project 1 Project 2 Project 3 Dept. B Project 4 Project 5 Dept. C Project 6 • Centralized management of all cloud accounts • Federated single sign-on and 2-factor authentication (MFA) • Automated, self-service account creation with native Console, CLI, and API access Account Management Budget Enforcement • Hierarchical budget alignment to projects and organizational units with real-time spend tracking • Configurable enforcement actions to alert, freeze spending, and terminate cloud resources
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud@Scale: Compliance Automation • Inheritable rules to enforce and share policies, configurations, and approved resources • Cloud rule and policy exemption workflows to simplify change management • Integration with GRC tools to validate account configuration and accelerate accreditation Company X Dept. A Project 1 Project 2 Project 3 Dept. B Project 4 Project 5 Dept. C Project 6 Compliance Automation • Centralized management of all cloud accounts • Federated single sign-on and 2-factor authentication (MFA) • Automated, self-service account creation with native Console, CLI, and API access Account Management Budget Enforcement • Hierarchical budget alignment to projects and organizational units with real-time spend tracking • Configurable enforcement actions to alert, freeze spending, and terminate cloud resources
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Visit cloudtamer.io in booth 618
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Related breakouts Do Your Cloud Users Keep You Up At Night? 5 Keys to Better Rest Wednesday, 1:50 -2:10pm, Partner Theater on Expo Floor Brian Price, cloudtamer.io Making Cloud Procurement Easy with AWS Marketplace, Automation, and Governance Wednesday, 3:50-4:40pm, Room 201 Best Friends Animal Society, University of Notre Dame, NASA, AWS
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Thank you! © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Mark McInerney Deputy Project Manager, Earth Science Data & Information System NASA mark.mcinerney@nasa.gov Brett Miller CMS Senior Solutions Architect & Technical Program Manager AWS brettmi@amazon.com Brian Price President & CEO cloudtamer.io bprice@cloudtamer.io
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T

Recomendados

#EarthOnAWS | AWS Public Sector Summit 2017
#EarthOnAWS | AWS Public Sector Summit 2017#EarthOnAWS | AWS Public Sector Summit 2017
#EarthOnAWS | AWS Public Sector Summit 2017Amazon Web Services
 
HPC Clusters in the (almost) Infinite Cloud
HPC Clusters in the (almost) Infinite CloudHPC Clusters in the (almost) Infinite Cloud
HPC Clusters in the (almost) Infinite CloudAmazon Web Services
 
Innovation-at-Hyper-scale-Outlook-on-Emerging-Technologies
Innovation-at-Hyper-scale-Outlook-on-Emerging-TechnologiesInnovation-at-Hyper-scale-Outlook-on-Emerging-Technologies
Innovation-at-Hyper-scale-Outlook-on-Emerging-TechnologiesAmazon Web Services
 
Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight...
Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight... Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight...
Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight...Amazon Web Services
 
Developing a successful big data business strategy
Developing a successful big data business strategyDeveloping a successful big data business strategy
Developing a successful big data business strategySebastian Darrington
 
Data Lake na área da saúde- AWS
Data Lake na área da saúde- AWSData Lake na área da saúde- AWS
Data Lake na área da saúde- AWSAmazon Web Services LATAM
 
How to Choose The Right Database on AWS - Berlin Summit - 2019
How to Choose The Right Database on AWS - Berlin Summit - 2019How to Choose The Right Database on AWS - Berlin Summit - 2019
How to Choose The Right Database on AWS - Berlin Summit - 2019Randall Hunt
 
Building Data Lakes and Analytics on AWS. IPExpo Manchester.
Building Data Lakes and Analytics on AWS. IPExpo Manchester.Building Data Lakes and Analytics on AWS. IPExpo Manchester.
Building Data Lakes and Analytics on AWS. IPExpo Manchester.javier ramirez
 

Recomendados

#EarthOnAWS | AWS Public Sector Summit 2017
#EarthOnAWS | AWS Public Sector Summit 2017#EarthOnAWS | AWS Public Sector Summit 2017
#EarthOnAWS | AWS Public Sector Summit 2017Amazon Web Services
 
HPC Clusters in the (almost) Infinite Cloud
HPC Clusters in the (almost) Infinite CloudHPC Clusters in the (almost) Infinite Cloud
HPC Clusters in the (almost) Infinite CloudAmazon Web Services
 
Innovation-at-Hyper-scale-Outlook-on-Emerging-Technologies
Innovation-at-Hyper-scale-Outlook-on-Emerging-TechnologiesInnovation-at-Hyper-scale-Outlook-on-Emerging-Technologies
Innovation-at-Hyper-scale-Outlook-on-Emerging-TechnologiesAmazon Web Services
 
Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight...
Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight... Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight...
Networking Patterns and Practices: A Case Study of NASA Goddard Space Flight...Amazon Web Services
 
Developing a successful big data business strategy
Developing a successful big data business strategyDeveloping a successful big data business strategy
Developing a successful big data business strategySebastian Darrington
 
Data Lake na área da saúde- AWS
Data Lake na área da saúde- AWSData Lake na área da saúde- AWS
Data Lake na área da saúde- AWSAmazon Web Services LATAM
 
How to Choose The Right Database on AWS - Berlin Summit - 2019
How to Choose The Right Database on AWS - Berlin Summit - 2019How to Choose The Right Database on AWS - Berlin Summit - 2019
How to Choose The Right Database on AWS - Berlin Summit - 2019Randall Hunt
 
Building Data Lakes and Analytics on AWS. IPExpo Manchester.
Building Data Lakes and Analytics on AWS. IPExpo Manchester.Building Data Lakes and Analytics on AWS. IPExpo Manchester.
Building Data Lakes and Analytics on AWS. IPExpo Manchester.javier ramirez
 
Building-a-Modern-Data-Platform-in-the-Cloud.pdf
Building-a-Modern-Data-Platform-in-the-Cloud.pdfBuilding-a-Modern-Data-Platform-in-the-Cloud.pdf
Building-a-Modern-Data-Platform-in-the-Cloud.pdfAmazon Web Services
 
Accelerating Time to Science Using Cloud
Accelerating Time to Science Using CloudAccelerating Time to Science Using Cloud
Accelerating Time to Science Using CloudAmazon Web Services
 
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...Amazon Web Services
 
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...Shayon Sanyal
 
Unlocking Open Data in the Cloud
Unlocking Open Data in the CloudUnlocking Open Data in the Cloud
Unlocking Open Data in the CloudAmazon Web Services
 
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcom
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcomRethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcom
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcomhybrid cloud
 
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...Amazon Web Services
 
Building a modern data platform in the cloud. AWS DevDay Nordics
Building a modern data platform in the cloud. AWS DevDay NordicsBuilding a modern data platform in the cloud. AWS DevDay Nordics
Building a modern data platform in the cloud. AWS DevDay Nordicsjavier ramirez
 
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...Amazon Web Services
 
Build Data Lakes & Analytics on AWS: Patterns & Best Practices
Build Data Lakes & Analytics on AWS: Patterns & Best PracticesBuild Data Lakes & Analytics on AWS: Patterns & Best Practices
Build Data Lakes & Analytics on AWS: Patterns & Best PracticesAmazon Web Services
 
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018Amazon Web Services
 
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...Amazon Web Services
 
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...Building with Purpose - Built Databases: Match Your Workloads to the Right Da...
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...Amazon Web Services
 
Building Data Lakes and Analytics on AWS
Building Data Lakes and Analytics on AWSBuilding Data Lakes and Analytics on AWS
Building Data Lakes and Analytics on AWSAmazon Web Services
 
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018Amazon Web Services
 
Cloud Computing Berkley
Cloud Computing BerkleyCloud Computing Berkley
Cloud Computing Berkleykrmartin_dal
 
Journey Through the AWS Cloud - Big Data Analysis
Journey Through the AWS Cloud - Big Data AnalysisJourney Through the AWS Cloud - Big Data Analysis
Journey Through the AWS Cloud - Big Data AnalysisAmazon Web Services
 
FSV302_An Architecture for Trade Capture and Regulatory Reporting
FSV302_An Architecture for Trade Capture and Regulatory ReportingFSV302_An Architecture for Trade Capture and Regulatory Reporting
FSV302_An Architecture for Trade Capture and Regulatory ReportingAmazon Web Services
 
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018Amazon Web Services
 
From raw data to business insights. A modern data lake
From raw data to business insights. A modern data lakeFrom raw data to business insights. A modern data lake
From raw data to business insights. A modern data lakejavier ramirez
 
Modern Data Platform on AWS
Modern Data Platform on AWSModern Data Platform on AWS
Modern Data Platform on AWSAmazon Web Services
 
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019Amazon Web Services
 

Mais conteúdo relacionado

Mais procurados

Building-a-Modern-Data-Platform-in-the-Cloud.pdf
Building-a-Modern-Data-Platform-in-the-Cloud.pdfBuilding-a-Modern-Data-Platform-in-the-Cloud.pdf
Building-a-Modern-Data-Platform-in-the-Cloud.pdfAmazon Web Services
 
Accelerating Time to Science Using Cloud
Accelerating Time to Science Using CloudAccelerating Time to Science Using Cloud
Accelerating Time to Science Using CloudAmazon Web Services
 
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...Amazon Web Services
 
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...Shayon Sanyal
 
Unlocking Open Data in the Cloud
Unlocking Open Data in the CloudUnlocking Open Data in the Cloud
Unlocking Open Data in the CloudAmazon Web Services
 
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcom
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcomRethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcom
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcomhybrid cloud
 
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...Amazon Web Services
 
Building a modern data platform in the cloud. AWS DevDay Nordics
Building a modern data platform in the cloud. AWS DevDay NordicsBuilding a modern data platform in the cloud. AWS DevDay Nordics
Building a modern data platform in the cloud. AWS DevDay Nordicsjavier ramirez
 
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...Amazon Web Services
 
Build Data Lakes & Analytics on AWS: Patterns & Best Practices
Build Data Lakes & Analytics on AWS: Patterns & Best PracticesBuild Data Lakes & Analytics on AWS: Patterns & Best Practices
Build Data Lakes & Analytics on AWS: Patterns & Best PracticesAmazon Web Services
 
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018Amazon Web Services
 
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...Amazon Web Services
 
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...Building with Purpose - Built Databases: Match Your Workloads to the Right Da...
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...Amazon Web Services
 
Building Data Lakes and Analytics on AWS
Building Data Lakes and Analytics on AWSBuilding Data Lakes and Analytics on AWS
Building Data Lakes and Analytics on AWSAmazon Web Services
 
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018Amazon Web Services
 
Cloud Computing Berkley
Cloud Computing BerkleyCloud Computing Berkley
Cloud Computing Berkleykrmartin_dal
 
Journey Through the AWS Cloud - Big Data Analysis
Journey Through the AWS Cloud - Big Data AnalysisJourney Through the AWS Cloud - Big Data Analysis
Journey Through the AWS Cloud - Big Data AnalysisAmazon Web Services
 
FSV302_An Architecture for Trade Capture and Regulatory Reporting
FSV302_An Architecture for Trade Capture and Regulatory ReportingFSV302_An Architecture for Trade Capture and Regulatory Reporting
FSV302_An Architecture for Trade Capture and Regulatory ReportingAmazon Web Services
 
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018Amazon Web Services
 
From raw data to business insights. A modern data lake
From raw data to business insights. A modern data lakeFrom raw data to business insights. A modern data lake
From raw data to business insights. A modern data lakejavier ramirez
 

Mais procurados (20)

Building-a-Modern-Data-Platform-in-the-Cloud.pdf
Building-a-Modern-Data-Platform-in-the-Cloud.pdfBuilding-a-Modern-Data-Platform-in-the-Cloud.pdf
Building-a-Modern-Data-Platform-in-the-Cloud.pdf
 
Accelerating Time to Science Using Cloud
Accelerating Time to Science Using CloudAccelerating Time to Science Using Cloud
Accelerating Time to Science Using Cloud
 
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...
Auto Scaling: The Fleet Management Solution for Planet Earth - CMP201 - re:In...
 
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...
DAT219-R2 - Build on Amazon RDS for SQL Server (Builder's Session, re:Invent ...
 
Unlocking Open Data in the Cloud
Unlocking Open Data in the CloudUnlocking Open Data in the Cloud
Unlocking Open Data in the Cloud
 
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcom
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcomRethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcom
Rethinking the cloud_-_limitations_and_oppotunities_-_2011_nexcom
 
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...
Build a High-Performance, Cloud-Native, Open-Source Platform on AWS & Save Mi...
 
Building a modern data platform in the cloud. AWS DevDay Nordics
Building a modern data platform in the cloud. AWS DevDay NordicsBuilding a modern data platform in the cloud. AWS DevDay Nordics
Building a modern data platform in the cloud. AWS DevDay Nordics
 
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...
Best practices for Running Spark jobs on Amazon EMR with Spot Instances | AWS...
 
Build Data Lakes & Analytics on AWS: Patterns & Best Practices
Build Data Lakes & Analytics on AWS: Patterns & Best PracticesBuild Data Lakes & Analytics on AWS: Patterns & Best Practices
Build Data Lakes & Analytics on AWS: Patterns & Best Practices
 
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018
What's New with Amazon Redshift ft. Dow Jones (ANT350-R) - AWS re:Invent 2018
 
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...
EUT302_Data Ingestion at Seismic Scale Best Practices for Processing Petabyte...
 
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...Building with Purpose - Built Databases: Match Your Workloads to the Right Da...
Building with Purpose - Built Databases: Match Your Workloads to the Right Da...
 
Building Data Lakes and Analytics on AWS
Building Data Lakes and Analytics on AWSBuilding Data Lakes and Analytics on AWS
Building Data Lakes and Analytics on AWS
 
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018
Building Your First Serverless Data Lake (ANT356-R1) - AWS re:Invent 2018
 
Cloud Computing Berkley
Cloud Computing BerkleyCloud Computing Berkley
Cloud Computing Berkley
 
Journey Through the AWS Cloud - Big Data Analysis
Journey Through the AWS Cloud - Big Data AnalysisJourney Through the AWS Cloud - Big Data Analysis
Journey Through the AWS Cloud - Big Data Analysis
 
FSV302_An Architecture for Trade Capture and Regulatory Reporting
FSV302_An Architecture for Trade Capture and Regulatory ReportingFSV302_An Architecture for Trade Capture and Regulatory Reporting
FSV302_An Architecture for Trade Capture and Regulatory Reporting
 
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018
Leadership Session: AWS Database and Analytics (DAT206-L) - AWS re:Invent 2018
 
From raw data to business insights. A modern data lake
From raw data to business insights. A modern data lakeFrom raw data to business insights. A modern data lake
From raw data to business insights. A modern data lake
 

Semelhante a Reimagining Data Management in the Cloud at NASA and CMS

AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019Amazon Web Services
 
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Summits
 
Building Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS Summit
Building Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS SummitBuilding Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS Summit
Building Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS SummitAmazon Web Services
 
Modern-Application-Design-with-Amazon-ECS
Modern-Application-Design-with-Amazon-ECSModern-Application-Design-with-Amazon-ECS
Modern-Application-Design-with-Amazon-ECSAmazon Web Services
 
Cyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per Day
Cyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per DayCyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per Day
Cyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per DayAmazon Web Services
 
Database su AWS scegliere lo strumento giusto per il giusto obiettivo
Database su AWS scegliere lo strumento giusto per il giusto obiettivoDatabase su AWS scegliere lo strumento giusto per il giusto obiettivo
Database su AWS scegliere lo strumento giusto per il giusto obiettivoAmazon Web Services
 
Migrate and Modernize Your Database
Migrate and Modernize Your DatabaseMigrate and Modernize Your Database
Migrate and Modernize Your DatabaseAmazon Web Services
 
Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...
Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...
Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...Amazon Web Services
 
갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...
갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...
갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...Amazon Web Services Korea
 
Big Data@Scale_AWSPSSummit_Singapore
Big Data@Scale_AWSPSSummit_SingaporeBig Data@Scale_AWSPSSummit_Singapore
Big Data@Scale_AWSPSSummit_SingaporeAmazon Web Services
 
How Different Large Organizations are Approaching Cloud Adoption
How Different Large Organizations are Approaching Cloud AdoptionHow Different Large Organizations are Approaching Cloud Adoption
How Different Large Organizations are Approaching Cloud AdoptionAmazon Web Services
 
Preparing Your Data for Cloud Analytics & AI/ML
Preparing Your Data for Cloud Analytics & AI/MLPreparing Your Data for Cloud Analytics & AI/ML
Preparing Your Data for Cloud Analytics & AI/MLAmazon Web Services
 
Creating Serverless apps for NASA in GovCloud
Creating Serverless apps for NASA in GovCloudCreating Serverless apps for NASA in GovCloud
Creating Serverless apps for NASA in GovCloudChris Shenton
 
Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019
Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019
Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019javier ramirez
 
Data Warehousing in the Cloud - AWS Summit Sydney
Data Warehousing in the Cloud - AWS Summit SydneyData Warehousing in the Cloud - AWS Summit Sydney
Data Warehousing in the Cloud - AWS Summit SydneyAmazon Web Services
 
Building with Purpose-Built Databases: Match Your Workload to the Right Database
Building with Purpose-Built Databases: Match Your Workload to the Right DatabaseBuilding with Purpose-Built Databases: Match Your Workload to the Right Database
Building with Purpose-Built Databases: Match Your Workload to the Right DatabaseAmazon Web Services
 
All Databases Are Equal, But Some Databases Are More Equal than Others: How t...
All Databases Are Equal, But Some Databases Are More Equal than Others: How t...All Databases Are Equal, But Some Databases Are More Equal than Others: How t...
All Databases Are Equal, But Some Databases Are More Equal than Others: How t...javier ramirez
 
進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲
進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲
進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲Amazon Web Services
 
Increasing the Use and Value of Earth Science Data and Information
Increasing the Use and Value of Earth Science Data and InformationIncreasing the Use and Value of Earth Science Data and Information
Increasing the Use and Value of Earth Science Data and InformationAmazon Web Services
 

Semelhante a Reimagining Data Management in the Cloud at NASA and CMS (20)

Modern Data Platform on AWS
Modern Data Platform on AWSModern Data Platform on AWS
Modern Data Platform on AWS
 
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
 
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019
 
Building Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS Summit
Building Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS SummitBuilding Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS Summit
Building Data Lakes for Analytics on AWS - ADB201 - Anaheim AWS Summit
 
Modern-Application-Design-with-Amazon-ECS
Modern-Application-Design-with-Amazon-ECSModern-Application-Design-with-Amazon-ECS
Modern-Application-Design-with-Amazon-ECS
 
Cyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per Day
Cyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per DayCyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per Day
Cyber Data Lake: How CIS Analyzes Billions of Network Traffic Records per Day
 
Database su AWS scegliere lo strumento giusto per il giusto obiettivo
Database su AWS scegliere lo strumento giusto per il giusto obiettivoDatabase su AWS scegliere lo strumento giusto per il giusto obiettivo
Database su AWS scegliere lo strumento giusto per il giusto obiettivo
 
Migrate and Modernize Your Database
Migrate and Modernize Your DatabaseMigrate and Modernize Your Database
Migrate and Modernize Your Database
 
Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...
Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...
Built & Delivered in Six Months Using Serverless Technical Patterns and Micro...
 
갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...
갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...
갤럭시 규모의 인공지능 서비스를 위한 AWS 데이터베이스 아키텍처 - 김상필 솔루션 아키텍트 매니저, AWS / 김정환 데브옵스 엔지니어,...
 
Big Data@Scale_AWSPSSummit_Singapore
Big Data@Scale_AWSPSSummit_SingaporeBig Data@Scale_AWSPSSummit_Singapore
Big Data@Scale_AWSPSSummit_Singapore
 
How Different Large Organizations are Approaching Cloud Adoption
How Different Large Organizations are Approaching Cloud AdoptionHow Different Large Organizations are Approaching Cloud Adoption
How Different Large Organizations are Approaching Cloud Adoption
 
Preparing Your Data for Cloud Analytics & AI/ML
Preparing Your Data for Cloud Analytics & AI/MLPreparing Your Data for Cloud Analytics & AI/ML
Preparing Your Data for Cloud Analytics & AI/ML
 
Creating Serverless apps for NASA in GovCloud
Creating Serverless apps for NASA in GovCloudCreating Serverless apps for NASA in GovCloud
Creating Serverless apps for NASA in GovCloud
 
Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019
Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019
Building a Modern Data Platform on AWS. Public Sector Summit Brussels 2019
 
Data Warehousing in the Cloud - AWS Summit Sydney
Data Warehousing in the Cloud - AWS Summit SydneyData Warehousing in the Cloud - AWS Summit Sydney
Data Warehousing in the Cloud - AWS Summit Sydney
 
Building with Purpose-Built Databases: Match Your Workload to the Right Database
Building with Purpose-Built Databases: Match Your Workload to the Right DatabaseBuilding with Purpose-Built Databases: Match Your Workload to the Right Database
Building with Purpose-Built Databases: Match Your Workload to the Right Database
 
All Databases Are Equal, But Some Databases Are More Equal than Others: How t...
All Databases Are Equal, But Some Databases Are More Equal than Others: How t...All Databases Are Equal, But Some Databases Are More Equal than Others: How t...
All Databases Are Equal, But Some Databases Are More Equal than Others: How t...
 
進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲
進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲
進化中的遊戲產業-以微服務架構-全球布局與現代化資料庫策略來打造高成長遊戲
 
Increasing the Use and Value of Earth Science Data and Information
Increasing the Use and Value of Earth Science Data and InformationIncreasing the Use and Value of Earth Science Data and Information
Increasing the Use and Value of Earth Science Data and Information
 

Mais de Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateAmazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSAmazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareAmazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAmazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSAmazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckAmazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without serversAmazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 

Mais de Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Reimagining Data Management in the Cloud at NASA and CMS

  • 1. P U B L I C S E C T O R S U M M I T WASHINGTON, DC
  • 2. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Reimagine the Public Cloud Experience with AWS Governance@Scale Mark McInerney Deputy Project Manager, Earth Science Data & Information System NASA 3 1 9 0 0 5 Brett Miller CMS Senior Solutions Architect & Technical Program Manager AWS Brian Price President & CEO cloudtamer.io
  • 3. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Agenda Achieving the common goals of unique missions Reimagining data in the cloud at NASA Reimagining user onboarding and orchestration in the cloud at Centers for Medicare & Medicaid Services (CMS) AWS Governance@Scale 101 Automating Governance@Scale
  • 4. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
  • 5. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved. 5 There’s more to cloud transformation than this… © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
  • 6. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved. 6 Successful cloud transformation looks like this… © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
  • 7. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T The typical AWS adoption reality Amazon Simple Storage Service (Amazon S3) Project 1 AWS Account Amazon Elastic Compute Cloud (Amazon EC2) Project 2 AWS Account Amazon S3 Amazon EC2 Amazon Relational Database Service (Amazon RDS) Stage 1 Specific Systems Limited Accounts Minimal Services Stage 2 Numerous Systems Multiple Accounts Many Services Amazon S3 Project 1 AWS Account Amazon EC2 Amazon Virtual Private Cloud (Amazon VPC) Amazon S3 Project 2 AWS Account Amazon EC2 Amazon VPC Amazon EMR Amazon Kinesis Amazon Redshift Project 3 AWS Account Amazon S3 Project 4 AWS Account Amazon EC2 Project 5 AWS Account Amazon API Gateway Amazon Simple Queue Service (Amazon SQS) Amazon WorkSpaces Amazon Elastic Container Service (Amazon ECS) AWS Elastic BeanstalkAmazon S3 Amazon EC2 Amazon EMR
  • 8. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Common governance challenges Organizational Support Business Unit Autonomy Multi-Account Strategy Integration Delegation
  • 9. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Goals for NASA and CMS • Accelerate cloud adoption • Deliver a controlled, but flexible, cloud environment to staff • Make it easier to migrate applications and cost effectively deploy new solutions with greater agility than ever before
  • 10. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
  • 11. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Earth Science Data Collections of the Earth Observing System Data and Information System (EOSDIS) 11NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov • Land • Cover & Usage • Surface temperature • Soil moisture • Surface topography • Ocean Dynamics • Surface temperature • Surface wind fields & Heat flux • Surface topography • Ocean color NASA Operating Missions • Airborne • International Space Station • Field Campaigns • International Partners March 2017 • Atmosphere • Winds & Precipitation • Aerosols & Clouds • Temperature & Humidity • Solar radiation • Cryosphere • Sea/Land Ice & Snow Cover • Human Dimensions • socioeconomic data (e.g., population, infrastructure, ..)
  • 12. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T EOSDIS Organization 12 NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
  • 13. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T NASA’s EOSDIS provides end- to-end capabilities for managing NASA’s Earth science data from satellites, aircraft, field measurements, and various other programs. EOSDIS is responsible for a data collection that is large in volume and projected to grow rapidly over the next several years. High-Level EOSDIS End-to-End EOSDIS Applications capture and clean data downlink Education process archive subset distribute Research Users 13NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
  • 14. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T 80 TBs/day generation 400 TBs/day reprocessing 300 GB Granules 150 PBs @ 50 Gbps processing speed for months NISAR Mission 14NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov NASA-ISRO Synthetic Aperture Radar (NISAR)
  • 15. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T EOSDIS Data System Evolution Growth of Mission Data & Processing: Projected rapid archive growth and the need to effectively process significantly larger volumes of new mission data requires rethinking existing architectures. Data Systems: More cost-effective, flexible, and scalable data system ingest, archive, and distribution solutions are needed to keep pace with new mission advancement. Science Users: Significantly larger data volumes requires additional ways to access and utilize this data, with “Data Close to Compute” or Data Lake”. 15 NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov Motivationfor Cloud Projected Data Volumes
  • 16. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Earthdata Cloud (EDC) ● “Managed” commercial cloud for EOSDIS on AWS ● Improves the efficiency of NASA’s data systems operations – maintaining free/open data policy ● Designed for EOSDIS applications and mission data ingest, archive, distribution ● Increase opportunity for researchers and commercial users to access/process petabytes of data quickly without the need for data management 16NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
  • 17. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T 07 Community Development Model 06 Metrics Management 05 Budget Controls 04 Organizational Governance 03 Data Services & analytics 02 Mission Data Management 01 Cloud Platform Infrastructure Components of the Earthdata Cloud 17NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
  • 18. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud Platform Infrastructure 01 Project Level Components and Core Elements User Access / Support Services Networking Governance of Cloud Accounts Common Services and Controls 07 Community Development Model 06 Metrics Management 05 Budget Controls 04 Organizational Governance 18 Certification and Accreditation Strategy Security Services NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
  • 19. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud Platform Infrastructure 01 Project Level Components and Core Elements User Access / Support Services Networking Governance of Cloud Accounts Common Services and Controls 07 Community Development Model 06 Metrics Management 05 Budget Controls 04 Organizational Governance 19 Certification and Accreditation Strategy Security Services NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov 05 Budget Controls
  • 20. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Earthdata Cloud Platform Infrastructure Maximizes Flexibility Provide projects the freedom to implement solutions that fit their problem domains Maximizes Autonomy Be a platform, not a gate; foster experimentation/innovation and support production needs of application owners Shared Services & Controls Platform manages common shared services & controls to reduce duplication, system complexity, and cost across EOSDIS 20NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov Cloud Platform Infrastructure Common Services and Controls A multi-account, Infrastructure-as-a-Service (IaaS) cloud platform operating on AWS under a single top-level “payer account”, providing shared cloud services and controls to EOSDIS.
  • 21. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Common Services and Controls Components of the EOSDIS Earthdata Cloud (EDC) 21 1. NASA-Approved Amazon Services - vetted AWS and third-party SAAS services and process to add new. Focus is on using AWS cloud-native services 2. Code Deployment Services - DevOps CICD Pipeline to security scan code, build, and deploy into EDC 3. Use of Infrastructure as Code including re-useable template to define a multi-account ecosystem 4. cloudtamer.io Identity and Access Management to: • Rotate AWS access keys • Apply session limits • Provide role-based access control Cloud Platform Infrastructure Common Services and Controls
  • 22. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T User Access Cloud Platform Infrastructure Governance of Cloud Accounts Components of the EOSDIS Earthdata Cloud (EDC) 22 1. User Authentication • Grant uniform access and experience to end users from multiple identity management systems (NAMS (SAML) / Internal directory / Active Directory) • Enforce and validate minimum authentication levels via two-factor authentication • Ensure that users only have access commensurate to the authentication type with cloudtamer.io • Secure PIV/Token login, NASA NAMS account provisioning 2. User Authorization • Control who views finances, who accesses AWS resources, and who manages finance • cloudtamer.io manages AWS Identity and Access Management (IAM) roles and policies at an organizational level
  • 23. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Account Structure Components of the EOSDIS Earthdata Cloud (EDC) 23 • Single Payer Account using AWS Organization and Consolidated billing • Multi-Account structure divided into NASA / Mission-defined organizational units • Isolation based on organizational units • Isolation based on application development, test, and production accounts • Isolation of Management and Security accounts from end user environment • Track AWS expenses to NASA organizations and funding sources Cloud Platform Infrastructure Governance of Cloud Accounts
  • 24. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T The Antideficiency Act (ADA) and Pay-as-You-Go 4Points The ADA act prohibits federal agencies from obligations or expending federal funds in advance or in excess of an appropriation, and from accepting voluntary services. Federal employees who violate the Antideficiency Act are subject to two types of sanctions: administrative and penal. Employees may be subject to appropriate administrative discipline including, when circumstances warrant, suspension from duty without pay or removal from office. In addition, employees may also be subject to fines, imprisonment, or both. Budget Controls 24 NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov
  • 25. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T The cloudtamer.io account-level view • Enforces individual AWS account-level budget through “budget caps” • Provides account-alert spend monitoring and budget control actions • Allows for flexible access levels: • Top-level view for ESDIS management & business teams • Account view for APP-Admins & Developers as needed 25NASA Earthdata Cloud (EDC) – http://earthdata.nasa.gov Budget Controls
  • 26. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Pre-Production Near-term Application and Data Onboarding 26 Global Hydrology Resource Center (GHRC) mission data into EDC production end of 2019 GHRC * Alaska Satellite Facility (ASF) NASA-ISRO Synthetic Aperture Radar (NISAR) mission data into EDC production early 2022 (Dec 2021 launch) NISAR * NASA’s Goddard Earth Science Data and Information Services Center (GES DISC) Giovani visualization & analysis tool in EDC to support ESD analytics capabilities, pre-production environment 2019 Giovani + Alaska Satellite Facility (ASF) Spaceborne Imaging Radar-C (SIR-C) mission data into EDC production early 2020 SIR-C * ESDIS Global Imagery Browse Service in The Cloud (GITC), NGAP2.0 pre-production environment GITC + Physical Oceanography (PO) Data Active Archive Center (DAAC) Surface Water Ocean Topography (SWOT) mission data into EDC production 2022 SWOT * Sentinel-1 ASF Sentinel-1 mission in production on Earthdata Cloud (NGAP2.0) Common Metadata Repository ESDIS / EED Common Metadata Repository (CMR) in production on Earthdata Cloud (NGAP1.0) Earthdata Search Client ESDIS / EED Earthdata Search Client (EDSC) in production on Earthdata Cloud (NGAP1.0). 1 2 3 Production GHRC SIR-C * Mission Data + Application 6 key projects in queue for production into the Earthdata Cloud NISAR SWOT GITC Giovani ESDIS/DAAC dataset prioritization activity underway to determine mission data onboarding Oct 1, 2019 NASAs Earthdata Cloud (EDC) – http://earthdata.nasa.gov
  • 27. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
  • 28. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud computing at the Centers for Medicare & Medicaid Services 70+ applications running in AWS Shared Services providing a variety of security and operational capabilities including VPN, Active Directory, Gold Image AMIs, Log Aggregation and Analytics 28 hush-naidoo-382152-unsplash
  • 29. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud computing objectives at CMS • Reusability: productize cloud computing resources and services at CMS • Easy-to-adopt: clear onboarding, education, and training for teams • Developer-first: build modular components and support dev community • Cost-effective: reduce operating cost and create a governance structure to support cost transparency and better business owner education • Adaptable: build on modern software technology stack, leveraging infrastructure as code 29
  • 30. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T With growth, comes obstacles… ● Efficiency in bringing in new users and applications in the cloud ● Flexible services for both the novice and advanced cloud user ● Cost and onboarding transparency ● Growing complexity to meet security and compliance needs and obtain ATOs 30
  • 31. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Taking the next steps…CMS AWS West Project • An opportunity to build out a “greenfield” cloud environment for the future without disruption to ongoing operations in the Legacy CMS AWS East or the constraints of the current cloud environment • Align with leadership’s vision for a modern cloud infrastructure and suite of services, structured as 9 workstreams collaborating and coordinating to get work completed 31
  • 32. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Guiding principles • Iterative forward progress – deliver a Minimum Viable Product (MVP) with a “greenfield” approach over two 30/60/90 day MVP cycles • Early stakeholder engagement – USDS serving as Product Owner(s), IUSG/OIT/CMS as System Owner(s), and WNMG/OC/CMS as Business Owner(s) • Full transparency – working in the open using ALM tools such as Jira, Confluence, Hipchat, and GitHub • Tackle big risks early – agile delivery to deliver units of value quickly, think about onboarding and team education and satisfaction from the beginning • Approach with humility – this is a complex effort, solicit feedback early and often, apply lessons learned from previous cloud migration and operations; build on previous knowledge and efforts • Great user experience – through formal and self-serve training, comprehensive agile onboarding, and improved governance and cost model 32
  • 33. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
  • 34. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T AWS Governance@Scale framework • Provides customers with the blueprint for enterprise cloud success • We drink our own champagne: these best practices were first adopted by AWS to manage thousands of cloud accounts
  • 35. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Three principles of Governance@Scale Account management • Align AWS accounts with the organization through a common interface. Standardize and streamline provisioning, maintenance, and access control policies for many AWS accounts and workloads Cost enforcement • Ensure AWS accounts and workloads do not exceed budget Compliance automation • Accelerate security authorizations, provide continuous monitoring and configuration management, and enforce security controls
  • 36. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Embracing the AWS Governance@Scale framework • Account automation • Budget planning • Identity & access automation • Security automation 36 • Budget enforcement • Policy enforcement • Identity federation • Identity & access automation
  • 37. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T
  • 38. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T • Enforces fiscal and compliance policies with more than notifications • Provides native access to cloud capabilities. It’s not a cloud broker • Easy access for technical staff to create the resources they need • Easy for senior leadership to enact financial and compliance oversight as adoption scales cloudtamer.io enables organizations to manage their cloud presence at scale
  • 39. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud@Scale: Account Management Company X Dept. A Project 1 Project 2 Project 3 Dept. B Project 4 Project 5 Dept. C Project 6 • Centralized management of all cloud accounts • Federated single sign-on and 2-factor authentication (MFA) • Automated, self-service account creation with native Console, CLI, and API access Account Management
  • 40. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud@Scale: Budget Enforcement Company X Dept. A Project 1 Project 2 Project 3 Dept. B Project 4 Project 5 Dept. C Project 6 • Centralized management of all cloud accounts • Federated single sign-on and 2-factor authentication (MFA) • Automated, self-service account creation with native Console, CLI, and API access Account Management Budget Enforcement • Hierarchical budget alignment to projects and organizational units with real-time spend tracking • Configurable enforcement actions to alert, freeze spending, and terminate cloud resources
  • 41. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Cloud@Scale: Compliance Automation • Inheritable rules to enforce and share policies, configurations, and approved resources • Cloud rule and policy exemption workflows to simplify change management • Integration with GRC tools to validate account configuration and accelerate accreditation Company X Dept. A Project 1 Project 2 Project 3 Dept. B Project 4 Project 5 Dept. C Project 6 Compliance Automation • Centralized management of all cloud accounts • Federated single sign-on and 2-factor authentication (MFA) • Automated, self-service account creation with native Console, CLI, and API access Account Management Budget Enforcement • Hierarchical budget alignment to projects and organizational units with real-time spend tracking • Configurable enforcement actions to alert, freeze spending, and terminate cloud resources
  • 42. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Visit cloudtamer.io in booth 618
  • 43. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Related breakouts Do Your Cloud Users Keep You Up At Night? 5 Keys to Better Rest Wednesday, 1:50 -2:10pm, Partner Theater on Expo Floor Brian Price, cloudtamer.io Making Cloud Procurement Easy with AWS Marketplace, Automation, and Governance Wednesday, 3:50-4:40pm, Room 201 Best Friends Animal Society, University of Notre Dame, NASA, AWS
  • 44. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Thank you! © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T Mark McInerney Deputy Project Manager, Earth Science Data & Information System NASA mark.mcinerney@nasa.gov Brett Miller CMS Senior Solutions Architect & Technical Program Manager AWS brettmi@amazon.com Brian Price President & CEO cloudtamer.io bprice@cloudtamer.io
  • 45. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R S U M M I T