Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Azure In The Enterprise - Governance & Organization

111 views

Published on

Slides from the Silicon Valley Code Camp 2018 talk

Published in: Technology
  • Be the first to comment

Azure In The Enterprise - Governance & Organization

  1. 1. Azure in the Enterprise Governance & Organization Adwait Ullal
  2. 2. Azure in the Enterprise Agenda • Who Am I • Why & How Governance? • Elements of Governance – Define Hierarchy – Naming Standards – Network design – Identity Management – Policies and Initiatives – Security – Monitoring – Cost Management
  3. 3. Azure in the Enterprise Who Am I • 20+ years of software development experience • Enterprise Architecture experience • Cloud Architecture & Governance, Migration • Contact information – Twitter: http://twitter.com/adwait – LinkedIn: http://www.linkedin.com/in/adwait – Email: adwait.ullal @ gmail.com
  4. 4. Azure in the Enterprise Why Governance? • Provide structure and uniformity • Reduce Exposure and Risk – security and cost • Prevent wild, wild west scenarios How Governance? ▪ From Day One ▪ Consistent ▪ Agile ▪ Non-intrusive
  5. 5. Azure in the Enterprise Elements of Governance
  6. 6. Azure in the Enterprise Hierarchy Definition • Enterprise Enrollment – Departments – Accounts – Subscription • Dev/Test Subscription • Visual Studio/MSDN Subscription
  7. 7. Azure in the Enterprise Hierarchy Definition • Functional
  8. 8. Azure in the Enterprise Hierarchy Definition • Business
  9. 9. Azure in the Enterprise Hierarchy Definition • Geographic
  10. 10. Azure in the Enterprise Naming Standards • Identify resource easily • Extend your enterprise naming standard • If not, collaborate with EA
  11. 11. Azure in the Enterprise Network Design • Dev/Test or Explore subscriptions – No network access • Collaborate with your Network Team – Establish connectivity • Site2Site VPN • ExpressRoute – Extend your on-premise network into Azure – Establish virtual network peering – Default Network Security Groups
  12. 12. Azure in the Enterprise Identity & Access Management • Azure Active Directory – Synchronize on-premises IAM to enable single sign-on • AD Groups • Multi-Factor Authentication – Safeguard access to your data and apps with an extra level of authentication • RBAC – Resource Based Access Control • PAM – Privileged Access Management
  13. 13. Azure in the Enterprise Policies & Initiatives • Policies – Enforce rules and effects on your resources (including subscription) • Policy Definition – JSON Based – mode – parameters – display name – description – policy rule • logical evaluation • effect • Initiatives – Logical grouping of policies
  14. 14. Azure in the Enterprise Security • Azure Security Center – Shows subscriptions that have Standard/Basic/No Coverage – Shows Policy compliance – Get Security Assessment – Get actionable recommendations • Resource Locks – Prevent resources from being modified
  15. 15. Azure in the Enterprise Monitoring • Shared • Core • Deep – Application – Infra
  16. 16. Azure in the Enterprise Cost Management • Actively monitor costs – Avoid surprises – Use alerts • Tools – Azure Cost Analysis – Azure Cost Management (Cloudyn) – Azure Advisor – PowerBI Azure Consumption Insights – Consumption API
  17. 17. Questions • Contact information – Twitter: http://twitter.com/adwait – LinkedIn: http://www.linkedin.com/in/adwait – Email: adwait.ullal @ gmail.com

×