The document discusses the importance of cloud governance for effective and efficient IT resource management, emphasizing the need for policies that cover cost, security, performance, and compliance. It outlines types of governance policies such as financial, operational, configuration management, and security policies, along with real-world examples demonstrating their impact. The document encourages proactive governance and the establishment of best practices to avoid unexpected costs and enhance resource management.

1. Be Proactive, Not Reactive:
Cloud Governance for Fast,
Accurate Decision Making

2. 2 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
• Process to ensure secure, effective & efficient use of IT resources
• Establishing a baseline and ensuring it isn’t violated
• Covers cost, security, availability, performance & usage
What is cloud governance?
Why governance matters: a balancing act
Agility drives…
• Quick time to market
• Innovation
• Flexibility
Governance needs…
• Cost control
• Management of business risk
• Compliance to policies & standards

3. 3 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
The Cloud Steward
Operations
Cloud
Steward
Finance Engineering LOBs
• Functional Business Groups (Perspectives)
Definition & Implementation
- Tagging, naming conventions, meta data…
• Data Integrations
- Cost, budget, usage, asset, configuration,
performance, event logs & security
• Report Definitions and Delivery
• Policy definition and implementation
- Cost, budget, usage, asset, configuration,
performance & security
• Analysis, Recommendations & Optimization Actions
- Cost & asset allocation, rightsizing, RI purchases,
modifications, zombie infrastructure
• Capacity Planning, Modeling & Forecasting
• Service Level Reporting
- Availability, performance, & response

4. Policy Creation, Monitoring & Action
Centralized Governance Policies

5. 5 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Financial management
policies
Performance Management
Policies
Security and Incident
Management Policies
Operational Governance
Policies
Asset & Configuration
Management Policies
Cost optimization Policies
Types of Best Practice Policies to Consider

6. 6 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Financial Management Policies
Why you need them:
• According to Gartner, organizations
often find public cloud bills 2 - 3x
higher than expectations
• Get alerted of unexpected spikes, stay
ahead of spend to avoid surprises
Types of Financial Management
Policies
• Budget policies
• Cost trend policies

7. 7 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Real World Example
• Migrated from EC2 Classic to EC2 VPC
and should’ve changed the way we were
accessing S3 but didn’t  Led to cost
increase of $700 per day
• Policy alerted us to the cost spike  we
were able to make the fix. Would have
costed us $20,000 a month if the policy
hadn’t caught it

8. 8 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Operational Governance Policies
Why you need them:
• Free up employee time to work on more
strategic projects
• Reduce ongoing operational costs
Types of Operational Governance
Policies:
• Identify and terminate zombie
infrastructure policies
• Instance scheduling policies
• Flagging old instance types policies

9. 9 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Real World Example
• Has a policy that monitors for EC2
instances with less than 5% utilization, so
they can investigate terminating them
• One policy they implemented to delete
unused EBS volumes saves them ~$400 a
month

10. 10 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Configuration Management Policies
Why you need them:
• Enforce proper tagging
• Maintain control over disparate teams
and accounts
Types of Asset & Configuration
Management Policies:
• Tag compliance policies
• Identify nonconforming assets policies

11. 11 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Real World Examples
• Implements policies around
tagging to better organize
resources for cost allocation and
reporting
• Group asset by owner, what it
does, capacity, or the person/team
who stood it up
• Enables us to enhance monitoring
and alerting through integration
with other tools such as Datadog

12. 12 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Security Management Policies
Why you need them:
• Address security concerns before they
become issues
• Monitor across all regions at once
Types of Security and Incident
Management Policies:
• Access control policies
• Network security policies
• Application and data security policies
• Audit trail policies

13. 13 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Security Management Policies (cont.)

14. 14 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
Real World Example
• Leverages CIS checks to see level of
control over system, and understand
whether they’re in compliance in one place
• Planning to put auto-remediation rules in
place

15. 15 © 2018 CLOUDHEALTH
®
TECHNOLOGIES INC.
• Empower a centralized owner that delivers real value to
stakeholders
• Don’t give up on agility
• Establish high value policies
• Automate, automate, automate
Governance Best Practices

16. Thank You