Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

AWS re:Invent 2016: Governance Strategies for Cloud Transformation (WWPS302)

4,888 views

Published on

Cloud governance is critical to executing a systemic, supportable, and sustainable cloud transformation strategy. This session explores best practices to achieve that model, including standards policies, automation that consistently applies and enforces policies and controls, self-service capabilities that enable agility and speed, and automated monitoring and cost management that ensure operational integrity. A well-developed cloud governance model enables customers to improve operational integrity, reliability, performance, and transparency using the AWS cloud. This session guides you through a best practice governance model, including policy considerations and recommendations, self-service automation methods towards IT-as-a-Service, and use case examples.

Published in: Technology

AWS re:Invent 2016: Governance Strategies for Cloud Transformation (WWPS302)

  1. 1. © 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Alison Robinson, University of Maryland – Associate VP & Deputy CIO Dawn Beadle, Monash University – Director, Infrastructure Services Blake Chism, AWS – Professional Services November28, 2016 Governance Strategies for Cloud Transformation WWPS 302
  2. 2. What to expect from the session • Definition and Overview of Cloud Governance • Cloud Center of Excellence (CCoE) • Stages of Cloud Governance • Cloud Governance Best Practices • Monash University • University of Maryland • Question and Answer
  3. 3. Why are we talking about Cloud Governance?
  4. 4. Benefits of Governance Firms with above-average IT governance had more than 20% higher profits than firms with poor governance* *Peter Weil and Jeanne W. Ross, IT Governance: How Top Performers Manage IT Decision Rights for Superior Results (HBS Press, 2004)
  5. 5. Why Cloud Governance in the Public Sector? 1. Reduction in Access and Security Risks 2. Ensures regulatory compliance (HIPAA, PCI, NIST, etc.) 3. Cost Avoidance/Reduction/Optimization 4. Elimination of rogue IT and disparate cloud initiatives 5. Defines automation methods and parameters 6. Increases capacity for Innovation in the Organization 7. Enhanced management of the consumption of cloud resources
  6. 6. What is Cloud Governance?
  7. 7. A Definition of Cloud Governance The decision making people, criteria, processes, and policies involved in the planning, architecture, acquisition, deployment, operation and management used for operating IT services in the cloud. gov·ern·ance - noun • the action or manner of governing • the way a company is controlled by the people who run it
  8. 8. Governance “What would you say…you do here?” –Bob (Office Space 1999) • Make Laws • Administrate Laws • Adjudicate Laws • Allocate Shared Assets for Shared Goals
  9. 9. MAKE GOOD DECISIONS AS A SOCIETY FOR THE SOCIETY WHY GOV’T Understanding Governance
  10. 10. MAKE LAWS ADMINISTRATE LAWS ADJUDICATE LAWS ALLOCATE SHARED ASSETS FOR SHARED GOALS WHAT A GOV’T DOES MAKE GOOD DECISIONS AS A SOCIETY FOR THE SOCIETY WHY GOV’T Understanding Governance
  11. 11. MAKE LAWS ADMINISTRATE LAWS ADJUDICATE LAWS ALLOCATE SHARED ASSETS FOR SHARED GOALS GOVERNANCE IDEOLOGY WHAT A GOV’T DOES HOW A GOV’T IS DESIGNED GOVERNANCE SCOPE MAKE GOOD DECISIONS AS A SOCIETY FOR THE SOCIETY WHY GOV’T Understanding Governance
  12. 12. MAKE LAWS ADMINISTRATE LAWS ADJUDICATE LAWS ALLOCATE SHARED ASSETS FOR SHARED GOALS GOVERNANCE IDEOLOGY PROCESSES WHAT ARE THE ACCEPTED PROCESSES THROUGH WHICH THE STRUCTURES MAKE, ADMINISTRATE, ADJUDICATE, AND ALLOCATE STRUCTURES WHAT GOVERNANCE BODIES MAKE, ADMINSTRATE, ADJUDUICATE, AND ALLOCATE, HOW ARE MEMBERS CHOSEN, AND WHAT RIGHTS, ROLES, AND RESPONSIBILITIES DO THEY HAVE IN THE PROCESSES WHAT A GOV’T DOES HOW A GOV’T IS DESIGNED GOVERNANCE SCOPE HOW A GOV’T IS DELIVERED MAKE GOOD DECISIONS AS A SOCIETY FOR THE SOCIETY WHY GOV’T Understanding Governance
  13. 13. MAKE Policies and Standards ADMINISTRATE Policies and Standards ADJUDICATE Policies and Standards Manage Cloud Services GOVERNANCE IDEOLOGY – Philosophy for governance PROCESSES WHAT ARE THE ACCEPTED PROCESSES THROUGH WHICH THE STRUCTURES MAKE, ADMINISTRATE, ADJUDICATE, AND ALLOCATE STRUCTURES WHAT GOVERNANCE BODIES MAKE, ADMINSTRATE, ADJUDUICATE, AND ALLOCATE, HOW ARE MEMBERS CHOSEN, AND WHAT RIGHTS, ROLES, AND RESPONSIBILITIES DO THEY HAVE IN THE PROCESS What IT Governance Does How IT Governance is Designed GOVERNANCE SCOPE – Which part of organization? How IT Governance is Delivered Enjoy Benefits of Good Decisions for the OrganizationWhy IT Governance Understanding IT Cloud Governance
  14. 14. Cloud Governance Opportunities • Speed – Carry out the Mission at cloud speed and cost • Integration – Complimentary to existing enterprise IT governance processes, policies and tools • Balance – Appropriate coverage for key decisions, investments and risks while achieving the benefits of Cloud • Proactivity - Anticipate and prevent Shadow Clouds and unauthorized cloud activities that expose organizational risks • Enablement - appropriate Cloud decision-making without friction
  15. 15. Cloud Center of Excellence (CCoE)
  16. 16. Cloud Center of Excellence (CCoE) The Cloud Center of Excellence is a team of executives and IT area experts that authors Cloud Governance to enable Organizational Units to access a self-service model and provides a catalog of standardized and templated patterns from which to select and auto- provision.
  17. 17. Stages of Cloud Governance
  18. 18. Levels of Cloud Governance L0 – Decentralized Control L1 – Centralized Control L2 – Decentralized Control with Automation L3 – Centralized Control with Self- service
  19. 19. 3 Phases of Cloud Governance Beginning • Minimal integration • Reactive environment • Cost overruns • Manual deployments • No Cloud Structure Adopting • CCoE is in place and policies are maturing • Policies matched to process • Designing for Cost • Rapid Deployment Mature • Full automation and self-service • Benefits of cloud services realized • Agility and control • Optimized for Cost • Secure and Compliant environment
  20. 20. Phase 1: Beginning 1. Create the CCoE to develop and own Cloud Governance and its policies 2. Develop Governance model and establish policies for: • Security • Account Management • Cost • Network • Instance and Storage • Service Management • Monitoring and Reporting 3. Begin to modify the deployment process and policies and look to automate • Develop governing policies to enable automated approval cycles • Develop financial policies to enable end-users to quickly stage POC’s
  21. 21. Phase 2: Adopting 1. Develop Self-Service Policies 2. Develop Data Governance Policies 3. Develop Continuous Integration / Deployment Policy 4. Develop Design-for-Cost Architecture Guidelines 5. Develop Cloud Audit and Compliance Policies 6. Develop a common API Design Framework
  22. 22. Phase 3: Mature 1. Develop advanced automation techniques and policies to promote further cost reduction, agility, and resiliency: • Automated testing and code promotion from each tier to production • Automated Disaster Recovery testing • Automated instance power down / power up for non reserved instances • Utilization of Spot Instances – when and where to use 2. Develop Transition Policies to Define Services 3. Develop Policies Allowing Existing Applications to Test-for-Cost (scale up / scale out)
  23. 23. Cloud Governance Best Practices
  24. 24. Cloud Governance Best Practices • Establish a CCoE and begin developing/updating policies for Cloud • Tailor your governance process to your organization’s particular risk tolerance (Ideology) • Decide where to leverage existing processes versus establishing new ones • Make the process as light-weight as possible and as informative as possible to create a positive user experience • Start early in the Cloud Transformation so you can get business and IT feedback and support • Rely on use-case reviews to improve your processes
  25. 25. Monash University
  26. 26. Monash University’s governance in the cloud
  27. 27. 70,071 Number of students 8,936 Potential classes per week 14,869 Number of staff $350Mil+ Our research income for 2014 Global Where you will find us Australia, Malaysia, South Africa, China, India and Italy. Top one percent Of universities worldwide, and consistently listed as a preferred source of graduates by companies the world over. Research capability We're active in over 150 fields and accommodate (or are joint partners in) more than 120 research centres and institutes.
  28. 28. IT at Monash
  29. 29. Vision to achieve more flexible, cost effective delivery of IT services, increasing the university’s ability to compete by enabling greater agility and innovation by sourcing our services more appropriately given the evolution of underlying technologies & the ability of the market to deliver cloud based service programme initiated early 2014
  30. 30. Change Agenda
  31. 31. Governance
  32. 32. Virtual Data Centre
  33. 33. Tools & Automation Base OS image Hosted infrastructure Disk Memory CPU Network Solution Blueprint Pattern Template Breast Cancer Clinical Registry Solution SOE Shared Drive Solution Student Submission Solution ZedMed Terminal Solution Blueprint 01 Blueprint 12 Blueprint 01Blueprint 03
  34. 34. Access Control
  35. 35.  Need to change culture  Top down  Chain of command  Increased communications Culture
  36. 36. Lessons Do something, not nothing Executive sponsorship Not a slavish approach to Compliance It’s not all about technology
  37. 37. University of Maryland – College Park Alison Robinson
  38. 38. University of Maryland – College Park Quick Facts Students: 39,083 Employees: 13,791 Total Research Awards: $550,384,756 4 Data Centers 225+ Buildings 95,000+ Data Jacks 7239 Wireless Access points 11M+ Feet of Fiber 14M+ Feet of Copper
  39. 39. University of Maryland – College Park People • Organizational Structure • Culture • Training
  40. 40. University of Maryland–College Park Support & Infrastructure Networking & Communications Software Engineering Security Learning Technologies Research Technologies Plan Build Run Engage with IT in many places to: 1) Order a service 2) Receive help with a service 3) Request a new service Inefficiency Silos Delays No Agility
  41. 41. University of Maryland–College Park One “front door” to IT to: 1) Order a service 2) Receive help with a service 3) Request a new service Streamlined DevOps Approach Agility Cost Savings
  42. 42. University of Maryland – College Park Governance Framework • Effective & secure management • Sourcing & hosting matrix • RACI
  43. 43. University of Maryland – College Park RACI Example
  44. 44. University of Maryland – College Park Cost • Current Costs • Modeling Costs in AWS
  45. 45. Research Architecture Costing Approach Examples Business Intelligence
  46. 46. Question and Answer
  47. 47. Thank you!
  48. 48. Remember to complete your evaluations!

×