AWS Webcast - Datacenter Migration to AWS
Seu SlideShare está sendo baixado.
×
Confira estes a seguir
Recomendadas
Mais Conteúdo rRelacionado
Diapositivos para si (20)
Quem viu também gostou (20)
Semelhante a CSC AWS re:Invent Enterprise DevOps session (20)
Mais de Tom Laszewski (20)
Mais recentes (20)
CSC AWS re:Invent Enterprise DevOps session
- 1. Eddie Satterly, CTO, Big Data and Analytics CSC November 13, 2014 I Las Vegas
- 2. Highly Competitive Market New Competition Unexpected, younger , agi le Client Improved Cost Control and Margins Greater Flexibility Faster Time to Market Heightened Security Changing Expectations Pace of Technology Change Urgent Business Demands Slow application release cycles Constant IT resource delays Aging apps; complex and costly infrastructure Lack of IT innovation with “80/20” budgets And IT ... Current IT Operating Models Just Can’t Keep Up The solution: A flexible, efficient application-centric hybrid cloud ecosystem
- 3. from this … … to this DevOps is a discipline to increase the pace and frequency of software releases without sacrificing quality Dev wants to compress their cycle times and focus on coding and creativity IT Ops wants to keep pace with faster change while improving reliability
- 4. 1 Increase the speed and frequency of software releases Start Finish Before Provision Dev Build Provision Test Deploy 2 Fewer production defects and easier roll-back Catch defects before Production, which are an order of magnitude more costly to resolve After Dev Test Defect Costs Design Test Production SDLC
- 5. Develop Test UAT Operate Application Lifecycle Infrastructure Lifecycle Platform2 Platform2a Platform2…n Platform1 Platform1a Platform Lifecycle
- 6. Application Develop Test UAT Operate Lifecycle Infrastructure Lifecycle Platform2 Platform2a Platform2…n Platform1 Platform1a Platform Lifecycle Completely separate, disjointed lifecycles IT resource provisioning delays Manual platform configuration Configuration mismatches and errors Poor automation across silos Extremely Long Cycle Times > 612 months RESULT: Extremely IT Resource Intensive:
- 7. Develop Test UAT Operate IaaS IaaS Portal Access from a portal (not directly from SDLC tools) Delays for manual configuration remain Insufficient cloud governance and security controls Needed: IaaS + PaaS Automation CloudFormation, OpsWorks, BeanStalk orchestrated with Agility
- 8. Developers want access to platforms When building and managing applications, which of the following 55% 75% 0% 20% 40% 60% 80% 100% App server Web server Database Storage objects Operating system JVM/JRE Other None of above 2% 8% 47% 54% 72% 79% services do you want to have access to? Source: Forrester Cloud Developer Survey
- 9. CSC Agility Platform Application-Based SLAs Key Business Value Enabler for IT • Application SLAs not limited to AWS SLAs • IT can deliver SLAs based on application requirements • Enabled by policies, thresholds, alerts, actions, auto-scaling, bursting, and auto-provisioning
- 10. CSC Agility Platform and AWS reference architecture Cloud Implementation CSC AWS Managed Services Resource Management Resources • VM Backup / Restore • Patch Mgmt, Anti-Virus • OS Support & Monitoring • SPOC Cloud Svc Desk, Billing • Resource configuration management • Resource monitoring • Resource pools • Virtual and physical resources Source: Gartner, “How to Build an Enterprise Cloud Service Architecture,” March 5, 2012 Amazon Web Services Connectors Access Management Service Management Service Optimization • Self-service interface • Service catalog • Service provisioning • Service governor • Service orchestration CSC Agility Platform Cloud Mgmt Platform Cloud Management Platform • Agility Platform Cloud Connectors (2)
- 11. Example Implementation: CSC Agility Platform and AWS
- 12. Policy-Based, Pro-Active Security Key Business Value Enabler for IT Security Zone Encrypt Driver Secure encryption keys • Internal Agility Platform key store • Support external key stores with KMIP Zoned security model SOE enforcement on instances • Mandate software packages that can’t be removed/changed • Native integration with virtual and physical firewalls including AWS Security Groups • Embed agents and utilities to secure instances (HIDS, AV, etc.) Secure access • Identity management (AD, LDAP, SAML) • Deny remote root access to machines, create user accounts by default • Proxy all guest access requests through Agility Platform to enforce policies • Workloads across hybrid clouds can join AD domains using policies Secure logs for auditing Secure data in transit • Secure VPN tunneling with AWS CGW and VGW • Proxy integration • Virtual DHCP Secure data at rest • Runs on AWS EBS • File system encryption • Deploy multitier apps components across different AWS VPC subnets (Web server to DMZ, etc.) Cloud A Cloud B … Cloud “n”
- 13. The Importance of Application Blueprints Design Develop Test UAT Operate git Platform Engineer Dev Blueprint Common Application Blueprint QA Blueprint UAT Blueprint Prod Blueprint Multitier applications of any size and scale that can be modeled and deployed to any AWS Region
- 14. How to model and orchestrate complex, multi-tier workloads Graphically design multitier applications and platforms Deploy infrastructure independent blueprints to AWS and on premise EC2, S3, EIP, EBS, others…
- 15. Design Develop Test UAT Operate SDLC Tool Chain: git Extensible, application-centric policy controls enable true self-service automation Cloud Management Platform Internal Private External Private AWS
- 16. a Use policies to provide both consistency and Customize Environment customization: Dev Security zone Dev VM quotas Dev chargeback Public cloud permitted No autoscaling No failover Customize Environment QA Security zone QA monitoring QA autoscaling Private cloud only QA backup/failover Customize Environment Prod Security zone Prod monitoring Prod auditing Prod autoscaling Private cloud only Prod backup/failover … And Enforce Consistency SOE packages App topologies Reg. compliance … And Enforce Consistency SOE packages App topologies Reg. compliance … And Enforce Consistency SOE packages App topologies Reg. compliance Policy Controlled Customization Policy Controlled Consistency Dev Blueprint QA Blueprint UAT Blueprint
- 17. Policy Policy Policy Policy Governance/Security Rights and Permissions Applications Roles Projects Orgs App Configuration Code/Artifacts Platforms Topologies/Configuration Services Application Components Infrastructure and SOE Security and Environment Configuration SOE Agents/Utilization OS and OS Configuration Network Compute Storage Regulatory compliance policies SLA policies including autoscaling Configuration management policies Security zones policies Lifecycle event policies Orchestration policies Access control/entitlement policies Workload placement policies Quotas and scheduling Metering/chargeback policies Backup and failover policies Resource capacity policies Storage tier policies Much more … Cloud Management Platform
- 18. Develop Test UAT Operate git Promote with Code Dev Blueprint UAT Blueprint Prod Blueprint QA Blueprint Promote with Code Promote with Code Design Visual dashboard to promote code and environments across SDLC stages Customize lifecycle stages and approval processes Integrate with existing tool chains
- 19. Firewall Cloud Mgmt Platform On-demand platforms and apps that end users really need Automate workflow across existing tool chains Governance, visibility, and cost transparency that managers require Automate application release and promotion Detect and remediate configuration changes Leverage hybrid architectures Develop Test UAT Production git Platform Apps s Infrastructu re Web Servers App Servers Database Servers Firewall Load Balancer4 Maste r Slave Blueprint Web Servers App Servers Database Servers Firewall Load Balancer4 Maste r Slave Web Servers App Servers Database Servers Load Balancer4 Maste r Slave
- 20. Profile of a CSC Agility Platform and AWS Customer “We’ve gone from spending 50% of our operating budget on infrastructure to just 26%. A nearly 75% investment in apps and information rather than infrastructure – that’s huge.” (Wall Street Journal) Increase Innovation App updates/deployment up almost 3x, from 1,200 to 3,000 changes a month. Lowered Costs for “Keeping Lights On” Cut IT operations costs by $100 million a year. IT Budget Innovation Operations
