• Like
  • Save

Disaster Recovery in the AWS Cloud - Red Lion Hotels, Washington Trust Bank, IT Lifeline - Webinar

  • 1,888 views
Uploaded on

 

More in: Technology , Business
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
No Downloads

Views

Total Views
1,888
On Slideshare
0
From Embeds
0
Number of Embeds
1

Actions

Shares
Downloads
0
Comments
0
Likes
4

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide
  • Amazon Web Services is steadily expanding its global infrastructure to help customers achieve lower latency and higher throughput. As our customers grow their businesses, AWS will continue to provide infrastructure that meets their global requirements.
  • You can choose to deploy and run your applications in multiple physical locations within the AWS cloud. Amazon Web Services are available in geographic Regions. When you use AWS, you canspecify the Region in which your data will be stored, instances run, queues started, and databases instantiated.For most AWS infrastructure services, including Amazon EC2, there are eight regions: US East (Northern Virginia), US West (Northern California), EU (Ireland), Asia Pacific (Singapore) and Asia Pacific (Tokyo), AWS GovCloud (US), US West (Oregon), and South America (Sao Paulo).Within each Region are Availability Zones (AZs). Availability Zones are distinct locations that are engineered to be insulated from failures in other Availability Zones and provide inexpensive, low latency network connectivity to other Availability Zones in the same Region. By launching instances in separate Availability Zones, you can protect yourapplications from a failure (unlikely as it might be) that affects an entire zone. Regions consist of one or more Availability Zones, are geographically dispersed, and are in separate geographic areas or countries. The Amazon EC2 service level agreement commitment is 99.95% availability for each Amazon EC2 Region.
  • Examining AWS, you’ll see that the same security isolations are employed as would be found in a traditional datacenter. These include physical datacentre security, separation of the network, isolation of the server hardware, and isolation of storage. AWS customers have control over their data: they own the data, not us; they can encrypt their data at rest and in motion, just as they would in their own datacenter.  Amazon Web Services provides the same, familiar approaches to security that companies have been using for decades. Importantly, it does this while also allowing the flexibility and low cost of cloud computing. There is nothing inherently at odds about providing on-demand infrastructure while also providing the security isolation companies have become accustomed to in their existing, privately-owned environments.AWS is a secure, durable technology platform with industry-recognized certifications and audits: PCI DSS Level 1, ISO 27001, FISMA Moderate, HIPAA, SAS 70 Type II. Our services and data centers have multiple layers of operational and physical security designed to protect the integrity and safety of your data. Visit our Security Center to learn more http://aws.amazon.com/security/.Certifications and Accreditations: AWS has successfully completed a SAS70 Type II Audit, and will continue to obtain the appropriate security certifications and accreditations to demonstrate the security of our infrastructure and services. PCI DSS: We finalized our 2011 PCI compliance audit, publishing our extensive Report on Controls (ROC) with an expanded scope. Our new November 30, 2011 PCI Attestation of Compliance, a document from our auditor stating we are compliant with all 12 PCI security standard domains, is available now for customers considering or working on moving PCI systems to AWS. The new Attestation of Compliance document includes some key changes this year: This year we’ve added RDS, ELB, and IAM as in-scope services. The addition of these services is fantastic news for PCI customers since they can now leverage RDS to store cardholder and transaction data, use ELB to manage card transaction traffic, and rely on IAM features as validated control mechanisms that satisfy PCI security standard requirements. Consistent with last year, EC2, S3, EBS, and VPC continue to be in scope.  Physical Security: Amazon has many years of experience in designing, constructing, and operating large scale data centers. AWS infrastructure is housed in Amazon-controlled data centers throughout the world. Only those within Amazon who have a legitimate business need to have such information know the actual location of these data centers, and the data centers themselves are secured with a variety of physical barriers to prevent unauthorized access.Secure Services: Each of the services within the AWS cloud is architected to be secure and contains a number of capabilities that restrict unauthorized access or usage without sacrificing the flexibility that customers demand. Data Privacy: AWS enables users to encrypt their personal or business data within the AWS cloud and publishes backup and redundancy procedures for services so that customers can gain greater understanding of how their data flows throughout AWS.“In essence, the security system of AWS’s platform has been added to our existing security systems. We now have a security posture consistent with that of a multi-billion dollar company.” - Jim Warren, CIO, Recovery Accountability and Transparency Board (RATB)
  • What were the drivers forcing you to consider cloud?RLH reached the capacity limits of existing backup system and, due to the age of the system, a complete replacement was necessary.  Other IT projects happening simultaneously made it difficult for us to scope the capacity of a replacement system, creating substantial risk of over-sizing the replacement system.  The scalability of the cloud model addressed this issue.We think of backup & recovery as a keeping-the-lights-on effort, and want our internal IT staff to stay focused on more strategic business initiatives.  Also, IT Lifeline does backup & recovery for a living – because this is their core competency we believe that they are capable of executing more effectively in this critical area.
  • How did your company address compliance issues related to your industry?With respect to SOX, the tools used by IT Lifeline meet our governance requirements regarding backup process audits, testing, and encryption/security.  And the AWS security certifications exceed our requirements regarding SOX.With respect to PCI, we are using tokenization to eliminate the storage of card data in our systems, so our backups are out of scope.
  • How did you compare the costs of cloud with on-premise infrastructure?RLH compared the IT Lifeline BlackCloud operating costs to our current operational costs, including hardware & software support as well as depreciation costs.RLH anticipates that, just based on backup needs alone, the BlackCloud solution will be as much as 20% less expensive than the current RLH backup infrastructure.  Once a full recovery solution is considered, the BlackCloud solution is substantially less expensive than a traditional in-house backup & recovery model. 
  • How did you compare the costs of cloud with on-premise infrastructure?RLH compared the IT Lifeline BlackCloud operating costs to our current operational costs, including hardware & software support as well as depreciation costs.RLH anticipates that, just based on backup needs alone, the BlackCloud solution will be as much as 20% less expensive than the current RLH backup infrastructure.  Once a full recovery solution is considered, the BlackCloud solution is substantially less expensive than a traditional in-house backup & recovery model.
  • Top 3 TakeawaysThis model is more cost effective than traditional on-prem BC/DR strategies.BlackCloud scales to fit our business needs without major CapEx investments.RLH can now be assured that this critical backup & recovery service is being effectively provided by IT professionals who specialize in this area.

Transcript

  • 1. Disaster Recovery in the Cloud Why Customers are ChoosingRecovery Services Built on AWS
  • 2. Welcome Stelio D’Alo Principal Marketing Manager Storage & DR Amazon Web Services
  • 3. Webinar How To’s• How can I submit a question?• How can I get a copy of the presentation?Special Note: Webinar is being recorded
  • 4. What We’ll Cover• What were the drivers forcing you to consider cloud?• How did you address compliance issues related to your industry?• How did you compare the costs of cloud with on- premise infrastructure?• What were the challenges when presenting the solution to the Executive Team and Finance?• Top 3 Takeaways
  • 5. Please Welcome Matt Gerber David Barbieri Chris GreenChief Executive Officer Senior Vice President & Vice President & Director, IT-Lifeline Chief Information Officer IT Infrastructure Systems Red Lion Hotels Washington Trust Bank
  • 6. About IT-Lifeline • Company founded in 2002 • Over 10 years experience in disaster recovery services in regulated industriesMatt Gerber • ½ Petabyte of data & 2,000+/- CEO nodes under management IT-Lifeline
  • 7. About Washington Trust Bank • Oldest and largest privately-owned commercial bank in the PNW • Over 50 financial centers in WA, ID, & OR Chris Green • Nearly 750 Employees VP & Director IT Infrastructure • Manage over 1,000 PC‟s andWashington Trust Bank close to 250 servers
  • 8. About Red Lion Hotels • Parent company founded in 1937 • Over 48 Red Lion Hotels in CA, CO, ID, MT, NV, NM, OR, UT, WA & B.C. David Barbieri • Employ upwards of 2,500Senior VP & CIO employeesRed Lion Hotels
  • 9. Amazon Web Services Overview
  • 10. AWS Provides a Global InfrastructureGovCloud US West US West US East South EU Asia Asia (US ITAR (Northern (Oregon) (Northern America (Ireland) Pacific Pacific Region) California) Virginia) (Sao Paulo) (Singapore) (Tokyo) AWS Regions AWS Edge Locations
  • 11. Data on the AWS Infrastructure is Durable Customer Decides Where Applications and Data Reside
  • 12. AWS is Built for Enterprise Security Standards Certifications Physical Security HW, SW, Network SOC 1 Type 2 Datacenters in Systematic change (formerly SAS-70) nondescript facilities management ISO 27001 Physical access Phased updates strictly controlled deployment PCI DSS for EC2, S3, EBS, VPC, RDS, Must pass two-factor Safe storage ELB, IAM authentication at decommission least twice for floor FISMA Moderate Automated access Compliant Controls monitoring and self- Physical access audit HIPAA & ITAR Compliant logged and audited Advanced network Architecture protection
  • 13. Relevant AWS Services for DR Solutions Amazon Simple Storage Service (Amazon S3) Amazon Import/Export Amazon Elastic Compute Cloud (Amazon EC2) AWS Storage Gateway Amazon Route 53
  • 14. AWS Storage is Ideal for Backup and DR Amazon Simple Storage Service (Amazon S3) • Highly durable blob storage • Excellent for backup and archive Amazon Elastic Block Store (Amazon EBS) and EBS snapshots • Persistent data volumes for Amazon EC2 instances • Redundant within a single Availability Zone • Snapshot backups provide long term durability, and volume sharing / cloning capability within a Region
  • 15. The Scale of AWS: Amazon S3 Growth
  • 16. AWS Adoption Momentum Infrastructure-as-a-Service Leader in 2011 Gartner IaaS Leader in 2011 Forrester Market Share Leader Magic Quadrant Hadoop Wave
  • 17. Panel Discussion
  • 18. What were thedrivers forcing you to consider cloud?
  • 19. Driving Forces for Cloud • On demand capacity translates into significantly lower costs and higher flexibility for customers Matt GerberChief Executive Officer IT-Lifeline • On demand capacity means we can scale our business without traditional capex
  • 20. Driving Forces for Cloud • Reached the capacity limits of existing backup system • Need to keep internal IT staff David Barbieri focused on more strategicSenior Vice President &Chief Information Officer Red Lion Hotels business initiatives
  • 21. Driving Forces for Cloud • WTB has been using “cloud” computing for several years. • Moving to AWS was driven by Chris Green our partnership with ITL.Vice President & Director,IT Infrastructure Systems Washington Trust Bank
  • 22. How did you addresscompliance issues related to your industry?
  • 23. Addressing Compliance • Roadmap provides for use of both cloud storage and cloud recovery Matt Gerber • As highly regulated customersChief Executive Officer IT-Lifeline and regulators get more comfortable we can move to recovery in cloud
  • 24. Addressing Compliance • For SOX ITL meets our governance requirements regarding backup process audits, testing, and encryption/security David BarbieriSenior Vice President & • For PCI, we are using tokenization toChief Information Officer Red Lion Hotels eliminate the storage of card data in our systems
  • 25. Addressing Compliance • Falls under the jurisdiction of the provider with the exception of our private cloud. Chris Green • With ITL, our archive data willVice President & Director,IT Infrastructure Systems remain encrypted at AWS. Washington Trust Bank
  • 26. How did you compare the costs of cloud withon-premise infrastructure?
  • 27. Cloud vs. On-Premise • Compared per GB costs for our disk versus cloud disk • More importantly, compared Matt Gerber the cost of recoveryChief Executive Officer IT-Lifeline infrastructure. Proper recovery design significantly reduces infrastructure costs.
  • 28. Cloud vs. On-Premise • BlackCloud solution will be as much as 20% less expensive than the current RLH backup infrastructure • Full recovery without investing in a David BarbieriSenior Vice President & cold standby infrastructure equatesChief Information Officer Red Lion Hotels to substantial savings
  • 29. Cloud vs. On-Premise • Private cloud: leveraged existing assets and technology. • ITL‟s offering of CommVault/ Chris Green AWS solution is more costVice President & Director,IT Infrastructure Systems effective. Washington Trust Bank
  • 30. What were the challenges when presenting thesolution to the Executive Team and Finance?
  • 31. Presenting the Solution • Control (or the perception of it) • Organizational skill sets • The promise of cost savings Matt Gerber was the least significant areaChief Executive Officer IT-Lifeline of debate or concern
  • 32. Presenting the Solution • We had already identified „the cloud‟ as a risk-related issue and therefore had already educated our board and exec team David Barbieri • The move eliminates certainSenior Vice President &Chief Information Officer Red Lion Hotels limitations with our current disaster recovery plan, so our Exec team is enthusiastic about the move
  • 33. Top 3 Takeaways
  • 34. Top 3 Takeaways 1. DR offers a low risk first step into the potential benefits of leveraging cloud infrastructure 2. Cloud enables you to take a Matt GerberChief Executive Officer different approach to solving a IT-Lifeline specific problem 3. Cloud also allows you to take a different approach to scaling your business
  • 35. Top 3 Takeaways 1. More cost effective than traditional on-prem BC/DR strategies. 2. Scales to fit our business needs without major CapEx investments. David BarbieriSenior Vice President & 3. Critical backup & recovery serviceChief Information Officer Red Lion Hotels is effectively provided by IT professionals who specialize in this area.
  • 36. Top 3 Takeaways 1. Cloud computing is the “new wave.” 2. Compliance for financial Chris Green institutions still evolving.Vice President & Director,IT Infrastructure Systems Washington Trust Bank 3. Present application/value.
  • 37. Questions Matt Gerber David Barbieri Chris GreenChief Executive Officer Senior Vice President & Vice President & Director, IT-Lifeline Chief Information Officer IT Infrastructure Systems Red Lion Hotels Washington Trust Bank
  • 38. For More Information Matt Gerber David Barbieri Chris GreenChief Executive Officer Senior Vice President & Vice President & Director, IT-Lifeline Chief Information Officer IT Infrastructure Systems Red Lion Hotels Washington Trust Bankmgerber@itlifeline.net David.Barbieri@redlion.com CGreen@watrust.com