Bringing Governance to an Existing Cloud at NASA's JPL (ENT201) | AWS re:Invent 2013
Upcoming SlideShare
Loading in...5
×
 

Bringing Governance to an Existing Cloud at NASA's JPL (ENT201) | AWS re:Invent 2013

on

  • 1,688 views

Amazon Web Services provides JPL a vast array of capabilities to store, process, and analyze mission data. JPLers were early to adopt AWS services to build complex solutions. However, we quickly grew ...

Amazon Web Services provides JPL a vast array of capabilities to store, process, and analyze mission data. JPLers were early to adopt AWS services to build complex solutions. However, we quickly grew to over 50 AWS accounts, 80 IAM users, and hundreds of resources. A team of engineers inside JPL's Office of the CIO developed a cloud governance model. The true challenge was implementing it on existing deployments. Learn about our model and how we overcame the challenges.

Statistics

Views

Total Views
1,688
Views on SlideShare
1,023
Embed Views
665

Actions

Likes
1
Downloads
22
Comments
0

3 Embeds 665

http://www.scoop.it 602
https://twitter.com 62
http://webcache.googleusercontent.com 1

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Bringing Governance to an Existing Cloud at NASA's JPL (ENT201) | AWS re:Invent 2013 Bringing Governance to an Existing Cloud at NASA's JPL (ENT201) | AWS re:Invent 2013 Presentation Transcript

  • Bringing Governance to an Existing Cloud at NASA’s Jet Propulsion Laboratory Jonathan Chiang, Matt Derenski – NASA/JPL November 12–15 © 2013 California Institute of Technology. Government sponsorship acknowledged.
  • Introductions • Jonathan Chiang – IT Chief Engineer • Matthew Derenski – Cyber Security Engineer
  • Agenda • • • • • • Provide a brief background of JPL Detail why JPL uses AWS Understand JPL use cases for AWS Describe JPL’s early engagement with AWS Review JPL’s implementation of its governance plan Utilizing governance to achieve organizational efficiency • Measuring the value
  • What is JPL? • We are a Federally Funded Research and Development Center (FFRDC) managed by Caltech • We have 21 spacecraft and 9 instruments conducting active missions • We manage NASA’s Deep Space Network (DSN) • We “dare mighty things”
  • Why JPL use AWS? • • • • Quick and easy to provision/de-provision Reduce CapEx and large initial investments Pay as you go, only for what you use Automation and reusability
  • How JPL uses AWS HPC/Data Processing
  • How JPL Uses AWS Public Outreach Mars Exploration Program Mars.jpl.nasa.gov Eyes on the Solar System Eyes.jpl.nasa.gov Night Sky Network Nightsky.jpl.nasa.gov
  • How JPL Uses AWS Storage, Backup, and Disaster Recovery Mars Exploration Rovers Station Fires
  • How JPL Uses AWS Rapid Development Collaboration Enterprise Applications
  • Early AWS Engagement • Issued 60+ root level AWS accounts to various project teams • Added all accounts to consolidated billing • Associated a single project/task number for chargeback and bill back
  • The Problem
  • Key Principles of JPL’s Governance Model Understand your users and their use cases Apply policy and accountability Provide auditing and traceability Leverage an iterative implementation
  • Account Management Consolidated Billing (No Users or Resources) Consolidated Billing AWS Root – MFA, Managed By IT Sec IAM Accounts Resources MSL Account IAM User 02 MSL Developer IAM User 01 Auditing AMI 1 Hosting Account MER Account IAM User 02 MER Developer AMI 2 AMI 1 IAM User Hosting Provisioning IAM User 01 Auditing AMI 2 +50 More AMI 1 AMI 2
  • Organizational Efficiency (DevOps) • Automated Configuration Management • Monitoring, Notification, Escalation • Networking and Security Operations Development Dev Ops Operations Quality Assurance
  • Measure the Value • Calculate the cost of implementing governance along with the cost of cloud resources • Consider the benefits of organizational efficiencies gained by cloud and governance • Compare agility and speed to market vs. adoption of governance
  • Summary
  • We are eager to hear your feedback on this presentation and on re:Invent. ENT201 Please fill out an evaluation form when you have a chance.