From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Disaster Recovery in the Cloud: Why Customers are Choosing Recovery Services Built on AWS
1. Disaster Recovery
in the Cloud
Why Customers are Choosing
Recovery Services Built on AWS
2. Welcome
Stelio D’Alo
Principal Marketing Manager
Storage & DR
Amazon Web Services
3. Webinar How To’s
• How can I submit a question?
• How can I get a copy of the
presentation?
Special Note: Webinar is being recorded
4. What We’ll Cover
• What were the drivers forcing you to consider
cloud?
• How did you address compliance issues related to
your industry?
• How did you compare the costs of cloud with on-
premise infrastructure?
• What were the challenges when presenting the
solution to the Executive Team and Finance?
• Top 3 Takeaways
5. Please Welcome
Matt Gerber David Barbieri Chris Green
Chief Executive Officer Senior Vice President & Vice President & Director,
IT-Lifeline Chief Information Officer IT Infrastructure Systems
Red Lion Hotels Washington Trust Bank
6. About IT-Lifeline
• Company founded in 2002
• Over 10 years experience in
disaster recovery services in
regulated industries
Matt Gerber • ½ Petabyte of data & 2,000+/-
CEO nodes under management
IT-Lifeline
7. About Washington Trust Bank
• Oldest and largest privately-owned
commercial bank in the PNW
• Over 50 financial centers in WA,
ID, & OR
Chris Green • Nearly 750 Employees
VP & Director
IT Infrastructure • Manage over 1,000 PC‟s and
Washington Trust Bank close to 250 servers
8. About Red Lion Hotels
• Parent company founded in 1937
• Over 48 Red Lion Hotels in CA,
CO, ID, MT, NV, NM, OR, UT,
WA & B.C.
David Barbieri • Employ upwards of 2,500
Senior VP & CIO employees
Red Lion Hotels
10. AWS Provides a Global Infrastructure
GovCloud US West US West US East South EU Asia Asia
(US ITAR (Northern (Oregon) (Northern America (Ireland) Pacific Pacific
Region) California) Virginia) (Sao Paulo) (Singapore) (Tokyo)
AWS Regions
AWS Edge Locations
11. Data on the AWS Infrastructure is Durable
Customer Decides Where Applications and Data Reside
12. AWS is Built for Enterprise Security Standards
Certifications Physical Security HW, SW, Network
SOC 1 Type 2 Datacenters in Systematic change
(formerly SAS-70) nondescript facilities management
ISO 27001 Physical access Phased updates
strictly controlled deployment
PCI DSS for EC2,
S3, EBS, VPC, RDS, Must pass two-factor Safe storage
ELB, IAM authentication at decommission
least twice for floor
FISMA Moderate Automated
access
Compliant Controls monitoring and self-
Physical access audit
HIPAA & ITAR
Compliant logged and audited Advanced network
Architecture protection
13. Relevant AWS Services for DR Solutions
Amazon Simple Storage Service (Amazon S3)
Amazon Import/Export
Amazon Elastic Compute Cloud (Amazon EC2)
AWS Storage Gateway
Amazon Route 53
14. AWS Storage is Ideal for Backup and DR
Amazon Simple Storage Service (Amazon S3)
• Highly durable blob storage
• Excellent for backup and archive
Amazon Elastic Block Store (Amazon EBS)
and EBS snapshots
• Persistent data volumes for Amazon EC2 instances
• Redundant within a single Availability Zone
• Snapshot backups provide long term durability, and
volume sharing / cloning capability within a Region
19. Driving Forces for Cloud
• On demand capacity
translates into significantly
lower costs and higher
flexibility for customers
Matt Gerber
Chief Executive Officer
IT-Lifeline
• On demand capacity means
we can scale our business
without traditional capex
20. Driving Forces for Cloud
• Reached the capacity limits of
existing backup system
• Need to keep internal IT staff
David Barbieri
focused on more strategic
Senior Vice President &
Chief Information Officer
Red Lion Hotels
business initiatives
21. Driving Forces for Cloud
• WTB has been using “cloud”
computing for several years.
• Moving to AWS was driven by
Chris Green
our partnership with ITL.
Vice President & Director,
IT Infrastructure Systems
Washington Trust Bank
22. How did you address
compliance issues related
to your industry?
23. Addressing Compliance
• Roadmap provides for use of
both cloud storage and cloud
recovery
Matt Gerber
• As highly regulated customers
Chief Executive Officer
IT-Lifeline and regulators get more
comfortable we can move to
recovery in cloud
24. Addressing Compliance
• For SOX ITL meets our governance
requirements regarding backup
process audits, testing, and
encryption/security
David Barbieri
Senior Vice President &
• For PCI, we are using tokenization to
Chief Information Officer
Red Lion Hotels eliminate the storage of card data in
our systems
25. Addressing Compliance
• Falls under the jurisdiction of
the provider with the exception
of our private cloud.
Chris Green
• With ITL, our archive data will
Vice President & Director,
IT Infrastructure Systems remain encrypted at AWS.
Washington Trust Bank
26. How did you compare
the costs of cloud with
on-premise infrastructure?
27. Cloud vs. On-Premise
• Compared per GB costs for
our disk versus cloud disk
• More importantly, compared
Matt Gerber
the cost of recovery
Chief Executive Officer
IT-Lifeline infrastructure. Proper
recovery design significantly
reduces infrastructure costs.
28. Cloud vs. On-Premise
• BlackCloud solution will be as much
as 20% less expensive than the
current RLH backup infrastructure
• Full recovery without investing in a
David Barbieri
Senior Vice President &
cold standby infrastructure equates
Chief Information Officer
Red Lion Hotels to substantial savings
29. Cloud vs. On-Premise
• Private cloud: leveraged existing
assets and technology.
• ITL‟s offering of CommVault/
Chris Green
AWS solution is more cost
Vice President & Director,
IT Infrastructure Systems effective.
Washington Trust Bank
30. What were the challenges
when presenting the
solution to the Executive
Team and Finance?
31. Presenting the Solution
• Control (or the perception of it)
• Organizational skill sets
• The promise of cost savings
Matt Gerber
was the least significant area
Chief Executive Officer
IT-Lifeline of debate or concern
32. Presenting the Solution
• We had already identified „the
cloud‟ as a risk-related issue and
therefore had already educated our
board and exec team
David Barbieri • The move eliminates certain
Senior Vice President &
Chief Information Officer
Red Lion Hotels
limitations with our current disaster
recovery plan, so our Exec team is
enthusiastic about the move
34. Top 3 Takeaways
1. DR offers a low risk first step into
the potential benefits of leveraging
cloud infrastructure
2. Cloud enables you to take a
Matt Gerber
Chief Executive Officer
different approach to solving a
IT-Lifeline
specific problem
3. Cloud also allows you to take a
different approach to scaling your
business
35. Top 3 Takeaways
1. More cost effective than traditional
on-prem BC/DR strategies.
2. Scales to fit our business needs
without major CapEx investments.
David Barbieri
Senior Vice President & 3. Critical backup & recovery service
Chief Information Officer
Red Lion Hotels is effectively provided by IT
professionals who specialize in this
area.
36. Top 3 Takeaways
1. Cloud computing is the
“new wave.”
2. Compliance for financial
Chris Green
institutions still evolving.
Vice President & Director,
IT Infrastructure Systems
Washington Trust Bank 3. Present application/value.
37. Questions
Matt Gerber David Barbieri Chris Green
Chief Executive Officer Senior Vice President & Vice President & Director,
IT-Lifeline Chief Information Officer IT Infrastructure Systems
Red Lion Hotels Washington Trust Bank
38. For More Information
Matt Gerber David Barbieri Chris Green
Chief Executive Officer Senior Vice President & Vice President & Director,
IT-Lifeline Chief Information Officer IT Infrastructure Systems
Red Lion Hotels Washington Trust Bank
mgerber@itlifeline.net David.Barbieri@redlion.com CGreen@watrust.com
Editor's Notes
Amazon Web Services is steadily expanding its global infrastructure to help customers achieve lower latency and higher throughput. As our customers grow their businesses, AWS will continue to provide infrastructure that meets their global requirements.
You can choose to deploy and run your applications in multiple physical locations within the AWS cloud. Amazon Web Services are available in geographic Regions. When you use AWS, you canspecify the Region in which your data will be stored, instances run, queues started, and databases instantiated.For most AWS infrastructure services, including Amazon EC2, there are eight regions: US East (Northern Virginia), US West (Northern California), EU (Ireland), Asia Pacific (Singapore) and Asia Pacific (Tokyo), AWS GovCloud (US), US West (Oregon), and South America (Sao Paulo).Within each Region are Availability Zones (AZs). Availability Zones are distinct locations that are engineered to be insulated from failures in other Availability Zones and provide inexpensive, low latency network connectivity to other Availability Zones in the same Region. By launching instances in separate Availability Zones, you can protect yourapplications from a failure (unlikely as it might be) that affects an entire zone. Regions consist of one or more Availability Zones, are geographically dispersed, and are in separate geographic areas or countries. The Amazon EC2 service level agreement commitment is 99.95% availability for each Amazon EC2 Region.
Examining AWS, you’ll see that the same security isolations are employed as would be found in a traditional datacenter. These include physical datacentre security, separation of the network, isolation of the server hardware, and isolation of storage. AWS customers have control over their data: they own the data, not us; they can encrypt their data at rest and in motion, just as they would in their own datacenter. Amazon Web Services provides the same, familiar approaches to security that companies have been using for decades. Importantly, it does this while also allowing the flexibility and low cost of cloud computing. There is nothing inherently at odds about providing on-demand infrastructure while also providing the security isolation companies have become accustomed to in their existing, privately-owned environments.AWS is a secure, durable technology platform with industry-recognized certifications and audits: PCI DSS Level 1, ISO 27001, FISMA Moderate, HIPAA, SAS 70 Type II. Our services and data centers have multiple layers of operational and physical security designed to protect the integrity and safety of your data. Visit our Security Center to learn more http://aws.amazon.com/security/.Certifications and Accreditations: AWS has successfully completed a SAS70 Type II Audit, and will continue to obtain the appropriate security certifications and accreditations to demonstrate the security of our infrastructure and services. PCI DSS: We finalized our 2011 PCI compliance audit, publishing our extensive Report on Controls (ROC) with an expanded scope. Our new November 30, 2011 PCI Attestation of Compliance, a document from our auditor stating we are compliant with all 12 PCI security standard domains, is available now for customers considering or working on moving PCI systems to AWS. The new Attestation of Compliance document includes some key changes this year: This year we’ve added RDS, ELB, and IAM as in-scope services. The addition of these services is fantastic news for PCI customers since they can now leverage RDS to store cardholder and transaction data, use ELB to manage card transaction traffic, and rely on IAM features as validated control mechanisms that satisfy PCI security standard requirements. Consistent with last year, EC2, S3, EBS, and VPC continue to be in scope. Physical Security: Amazon has many years of experience in designing, constructing, and operating large scale data centers. AWS infrastructure is housed in Amazon-controlled data centers throughout the world. Only those within Amazon who have a legitimate business need to have such information know the actual location of these data centers, and the data centers themselves are secured with a variety of physical barriers to prevent unauthorized access.Secure Services: Each of the services within the AWS cloud is architected to be secure and contains a number of capabilities that restrict unauthorized access or usage without sacrificing the flexibility that customers demand. Data Privacy: AWS enables users to encrypt their personal or business data within the AWS cloud and publishes backup and redundancy procedures for services so that customers can gain greater understanding of how their data flows throughout AWS.“In essence, the security system of AWS’s platform has been added to our existing security systems. We now have a security posture consistent with that of a multi-billion dollar company.” - Jim Warren, CIO, Recovery Accountability and Transparency Board (RATB)
What were the drivers forcing you to consider cloud?RLH reached the capacity limits of existing backup system and, due to the age of the system, a complete replacement was necessary. Other IT projects happening simultaneously made it difficult for us to scope the capacity of a replacement system, creating substantial risk of over-sizing the replacement system. The scalability of the cloud model addressed this issue.We think of backup & recovery as a keeping-the-lights-on effort, and want our internal IT staff to stay focused on more strategic business initiatives. Also, IT Lifeline does backup & recovery for a living – because this is their core competency we believe that they are capable of executing more effectively in this critical area.
How did your company address compliance issues related to your industry?With respect to SOX, the tools used by IT Lifeline meet our governance requirements regarding backup process audits, testing, and encryption/security. And the AWS security certifications exceed our requirements regarding SOX.With respect to PCI, we are using tokenization to eliminate the storage of card data in our systems, so our backups are out of scope.
How did you compare the costs of cloud with on-premise infrastructure?RLH compared the IT Lifeline BlackCloud operating costs to our current operational costs, including hardware & software support as well as depreciation costs.RLH anticipates that, just based on backup needs alone, the BlackCloud solution will be as much as 20% less expensive than the current RLH backup infrastructure. Once a full recovery solution is considered, the BlackCloud solution is substantially less expensive than a traditional in-house backup & recovery model.
How did you compare the costs of cloud with on-premise infrastructure?RLH compared the IT Lifeline BlackCloud operating costs to our current operational costs, including hardware & software support as well as depreciation costs.RLH anticipates that, just based on backup needs alone, the BlackCloud solution will be as much as 20% less expensive than the current RLH backup infrastructure. Once a full recovery solution is considered, the BlackCloud solution is substantially less expensive than a traditional in-house backup & recovery model.
Top 3 TakeawaysThis model is more cost effective than traditional on-prem BC/DR strategies.BlackCloud scales to fit our business needs without major CapEx investments.RLH can now be assured that this critical backup & recovery service is being effectively provided by IT professionals who specialize in this area.