AA
Uploaded byAntti Arnell
1,505 views

Cloud governance - theory and tools

The document discusses cloud governance, its necessity for monitoring and implementing policies, and the differences from traditional IT governance. It highlights key areas to include in cloud governance, such as subscription models, identity management, and security, emphasizing the use of Azure tools for effective governance. The document also introduces Azure governance capabilities for real-time policy enforcement and resource visibility without sacrificing developer agility.

Embed presentation

Downloaded 59 times
Cloud Governance Theory and tools
Introduction Antti Arnell Chief Architect Azure Lead - Cloud Advisor antti.arnell@cybercom.com https://www.linkedin.com/in/arnell
What is Cloud Governance and why do you need it?
Governance – a definition Establishment of policies, and continuous monitoring of their proper implementation, by the members of the governing body of an organization[…]1 1Source: BusinessDictionary
Why is Cloud Governance needed? If you do not have a governance for you cloud; how do you know you are: Doing right things? Doing them the right way? How do you know?
Why is Cloud Governance needed? Pressure to digitally transform & innovate Need for agility to reduce speed to market Shift to DevOps Cloud Sprawl Increased complexity in managing standard, accountability, compliance, consistent architecture & cost at Scale
Traditional approach Sacrifice Speed for Control Developers Operations Cloud Custodian / Engineers responsible for Cloud environment
Cloud-native governance Speed and Control Developers Built-in controls through policy instead of workflow Operations Cloud Custodian Team
Compared to legacy IT governance How does your Cloud Governance differ from your IT Governance? It might not or better said should not be that different… There is no point in reinventing the wheel!
What should be in your governance? Your needs may vary but you need to at least look at Subscription models Operation management Identity and access management Deployment models Security and risk management Data management Infrastructure and networking Service creation standards Monitoring Governance enforcementDevOps
So how can you enforce your governance?
Native platform capabilities to ensure compliant use of cloud resources Governance for Azure Blueprints Deploy and update cloud environments in a repeatable manner using composable artifacts Resource Graph Query, explore & analyze cloud resources at scale Management Group Define organizational hierarchy Cost Monitor cloud spend and optimize resources Policy Real-time enforcement, compliance assessment and remediation NEW NEW Control VisibilityEnvironment ConsumptionHierarchy
Azure Management Groups
Azure Policy Remediation Enforcement & Compliance Apply policies at scale Turn on built-in policies or build custom ones for all resource types Real-time policy evaluation and enforcement Periodic & on-demand compliance evaluation Apply policies to a Management Group with control across your entire organization Apply multiple policies and & aggregate policy states with policy initiative Real time remediation Remediation on existing resources (NEW) Exclusion Scope VM In-Guest Policy (NEW)
Azure Policy and Azure DevOps Enforce policies as part of the development process
VM guest policy Policy Assignment Compliance Policy Assignment Compliance
Azure Blueprints Deploy and update cloud environments in a repeatable manner using composable artifacts Role-based access controls Policy Definitions ARM Templates
Azure Resource Graph Query, explore & analyze cloud resources at scale Perform fast ad hoc exploration in large cloud environment Ability to assess the impact of applying policies in vast cloud environment Impact AssessmentExplore Query & analyze across all of your cloud resources at scale in seconds Query & Analyze
Azure Governance Architecture Providing control over the cloud environment, without sacrificing developer agility CRUD Azure Resource Manager (ARM) Query 2. Policy-based Control: Real-time enforcement, compliance assessment and remediation at scale 3. Resource Visibility: Query, explore & analyze cloud resources at scale 1. Environment Factory: Deploy and update cloud environments in a repeatable manner using composable artifacts Role-based Access Policy Definitions ARMTemplates Management Groups Subscriptions
Demo time
So how much will these cost you? There is no such thing as free beer! But all these features are free services! So go out there an take charge of your cloud!
Links to check out Open Group Cloud Computing Governance Framework: http://www.opengroup.org/cloud/gov_snapshot/p3.htm Azure Governance page: azure.com/governance
cybercom.com

More Related Content

PDF
Microsoft Cloud Adoption Framework
byssuserdb85d71
 
PPTX
Cloud Adoption Framework Overview Deck (PPT 1).pptx
byValVege
 
PPTX
Azure Governance
byBenjamin Hüpeden
 
PPTX
Azure Cloud Governance
byJonathan Wade
 
PPTX
Azure governance
bygirish goudar
 
PDF
AWS Cloud Adoption Framework and Workshops
byTom Laszewski
 
PDF
Defining Your Cloud Strategy
byInternap
 
PPTX
Azure governance
byUdaiappa Ramachandran
 
Microsoft Cloud Adoption Framework
byssuserdb85d71
 
Cloud Adoption Framework Overview Deck (PPT 1).pptx
byValVege
 
Azure Governance
byBenjamin Hüpeden
 
Azure Cloud Governance
byJonathan Wade
 
Azure governance
bygirish goudar
 
AWS Cloud Adoption Framework and Workshops
byTom Laszewski
 
Defining Your Cloud Strategy
byInternap
 
Azure governance
byUdaiappa Ramachandran
 

What's hot

PDF
Cloud Security Governance
byShankar Subramaniyan
 
PPTX
Azure Migration Program Pitch Deck
byNicholas Vossburg
 
PPTX
Cloud Migration Strategy Framework
byPT Datacomm Diangraha
 
PPTX
cloud-migrations.pptx
byJohn Mulhall
 
PDF
Azure governance v4.0
byMarcos Oikawa
 
PPTX
Azure Migrate
byMustafa
 
PDF
Azure cloud migration simplified
byGirlo
 
PDF
Azure Arc Overview from Microsoft
byDavid J Rosenthal
 
PPTX
Cloud Center of Excellence
byJeremy Canale
 
PPTX
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
byTimothy McAliley
 
PPTX
Data Center Migration to the AWS Cloud
byTom Laszewski
 
PPTX
Capgemini Cloud Assessment - A Pathway to Enterprise Cloud Migration
byFloyd DCosta
 
PDF
Microsoft Azure Cloud Services
byDavid J Rosenthal
 
PDF
Cloud Cost Optimization Whitepaper
byDevPro3
 
PPTX
MULTI-CLOUD ARCHITECTURE
byMaganathin Veeraragaloo
 
PDF
Migrate to Microsoft Azure with Confidence
byDavid J Rosenthal
 
PPTX
CAF presentation 09 16-2020
byMichael Nichols
 
PPTX
Cloud Adoption Framework Phase one-moving to the cloud
byAnthony Clendenen
 
PDF
Cloud migration strategies
bySogetiLabs
 
PPSX
On-premise to Microsoft Azure Cloud Migration.
byEmtec Inc.
 
Cloud Security Governance
byShankar Subramaniyan
 
Azure Migration Program Pitch Deck
byNicholas Vossburg
 
Cloud Migration Strategy Framework
byPT Datacomm Diangraha
 
cloud-migrations.pptx
byJohn Mulhall
 
Azure governance v4.0
byMarcos Oikawa
 
Azure Migrate
byMustafa
 
Azure cloud migration simplified
byGirlo
 
Azure Arc Overview from Microsoft
byDavid J Rosenthal
 
Cloud Center of Excellence
byJeremy Canale
 
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
byTimothy McAliley
 
Data Center Migration to the AWS Cloud
byTom Laszewski
 
Capgemini Cloud Assessment - A Pathway to Enterprise Cloud Migration
byFloyd DCosta
 
Microsoft Azure Cloud Services
byDavid J Rosenthal
 
Cloud Cost Optimization Whitepaper
byDevPro3
 
MULTI-CLOUD ARCHITECTURE
byMaganathin Veeraragaloo
 
Migrate to Microsoft Azure with Confidence
byDavid J Rosenthal
 
CAF presentation 09 16-2020
byMichael Nichols
 
Cloud Adoption Framework Phase one-moving to the cloud
byAnthony Clendenen
 
Cloud migration strategies
bySogetiLabs
 
On-premise to Microsoft Azure Cloud Migration.
byEmtec Inc.
 

Similar to Cloud governance - theory and tools

PDF
Cloud governance framework - the essentials
byPredica Group
 
PPTX
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
byNicholas Vossburg
 
PPTX
Implementing governance in the cloud era
bySynergetics Learning and Cloud Consulting
 
PDF
Cloud Governance & DevOps: Must-have Tools on Your Journey to Azure Cloud
byPredica Group
 
PPTX
Azure Governance for Enterprise
byMohit Chhabra
 
PPTX
TechEvent Cloud Governance
byTrivadis
 
PPTX
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
byNicholas Vossburg
 
PDF
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
byKarl Ots
 
PDF
Building an Enterprise-Grade Azure Governance Model
byKarl Ots
 
PDF
Govern Your Cloud: The Foundation for Success
byAlert Logic
 
PPTX
Module3ksjdfbsdkfkasjdfbjkendfksdmnfckajs.pptx
bytrainingdecorpo
 
PDF
Match AWS Pori - Rolf Koski - Cybercom
byRolf Koski
 
PDF
Automated Security & Continuous Compliance on Microsoft Azure
by2nd Watch
 
PPTX
Be Proactive, Not Reactive: Cloud Governance for Fast, Accurate Decision Making
byCloudHealth by VMware
 
PPTX
ccs336 unit V.pptx cloud service management
byvjsnetcafe
 
PDF
Microsoft Azure Fundamentals AZ 900 ####
byMohanArumugam24
 
PDF
Best practices for azure governance
byCoreStack
 
PDF
Security & Compliance in the Cloud [2019]
byTudor Damian
 
PPTX
ITCamp 2019 - Mihai Tataran - Governing your Cloud Resources
byITCamp
 
DOCX
Govern methodology for the cloud.docx
bydropbox10
 
Cloud governance framework - the essentials
byPredica Group
 
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
byNicholas Vossburg
 
Implementing governance in the cloud era
bySynergetics Learning and Cloud Consulting
 
Cloud Governance & DevOps: Must-have Tools on Your Journey to Azure Cloud
byPredica Group
 
Azure Governance for Enterprise
byMohit Chhabra
 
TechEvent Cloud Governance
byTrivadis
 
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
byNicholas Vossburg
 
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
byKarl Ots
 
Building an Enterprise-Grade Azure Governance Model
byKarl Ots
 
Govern Your Cloud: The Foundation for Success
byAlert Logic
 
Module3ksjdfbsdkfkasjdfbjkendfksdmnfckajs.pptx
bytrainingdecorpo
 
Match AWS Pori - Rolf Koski - Cybercom
byRolf Koski
 
Automated Security & Continuous Compliance on Microsoft Azure
by2nd Watch
 
Be Proactive, Not Reactive: Cloud Governance for Fast, Accurate Decision Making
byCloudHealth by VMware
 
ccs336 unit V.pptx cloud service management
byvjsnetcafe
 
Microsoft Azure Fundamentals AZ 900 ####
byMohanArumugam24
 
Best practices for azure governance
byCoreStack
 
Security & Compliance in the Cloud [2019]
byTudor Damian
 
ITCamp 2019 - Mihai Tataran - Governing your Cloud Resources
byITCamp
 
Govern methodology for the cloud.docx
bydropbox10
 

Recently uploaded

PDF
7 Essential Types of Penetration Testing Services Every Business Should Under...
bypandeydevika621
 
PDF
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
PDF
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
PDF
Designing a Blog Using Wordpress
bymarkzubi50
 
PDF
January 2026 OpenMetadata Community Spotlight - OpenMetadata @ Wix.pdf
byOpenMetadata
 
PDF
Bettersize | BeSEC Series Product Brochure
byBettersize Instruments
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
PDF
"Painless Major Upgrade: A Strategy for Updating Large Codebases", Andrii Yat...
byFwdays
 
PPTX
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
PDF
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
PPTX
Software Engineering in the Age of AI Agents
byHusseinMalikMammadli
 
PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PDF
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
PDF
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
PDF
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
PDF
Website Redesign Vs Website Refresh, What’s Right for You in 2026?
byAnuj Kumar Singh
 
PPTX
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
PPTX
NTG - Data Center Management System Software
byMustafa Kuğu
 
PDF
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
PDF
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
7 Essential Types of Penetration Testing Services Every Business Should Under...
bypandeydevika621
 
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
Designing a Blog Using Wordpress
bymarkzubi50
 
January 2026 OpenMetadata Community Spotlight - OpenMetadata @ Wix.pdf
byOpenMetadata
 
Bettersize | BeSEC Series Product Brochure
byBettersize Instruments
 
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
"Painless Major Upgrade: A Strategy for Updating Large Codebases", Andrii Yat...
byFwdays
 
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
Software Engineering in the Age of AI Agents
byHusseinMalikMammadli
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
Website Redesign Vs Website Refresh, What’s Right for You in 2026?
byAnuj Kumar Singh
 
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
NTG - Data Center Management System Software
byMustafa Kuğu
 
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 

Cloud governance - theory and tools

  • 1.
  • 2.
    Introduction Antti Arnell Chief Architect AzureLead - Cloud Advisor antti.arnell@cybercom.com https://www.linkedin.com/in/arnell
  • 3.
    What is CloudGovernance and why do you need it?
  • 4.
    Governance – adefinition Establishment of policies, and continuous monitoring of their proper implementation, by the members of the governing body of an organization[…]1 1Source: BusinessDictionary
  • 5.
    Why is CloudGovernance needed? If you do not have a governance for you cloud; how do you know you are: Doing right things? Doing them the right way? How do you know?
  • 6.
    Why is CloudGovernance needed? Pressure to digitally transform & innovate Need for agility to reduce speed to market Shift to DevOps Cloud Sprawl Increased complexity in managing standard, accountability, compliance, consistent architecture & cost at Scale
  • 7.
    Traditional approach Sacrifice Speedfor Control Developers Operations Cloud Custodian / Engineers responsible for Cloud environment
  • 8.
    Cloud-native governance Speed andControl Developers Built-in controls through policy instead of workflow Operations Cloud Custodian Team
  • 9.
    Compared to legacyIT governance How does your Cloud Governance differ from your IT Governance? It might not or better said should not be that different… There is no point in reinventing the wheel!
  • 10.
    What should bein your governance? Your needs may vary but you need to at least look at Subscription models Operation management Identity and access management Deployment models Security and risk management Data management Infrastructure and networking Service creation standards Monitoring Governance enforcementDevOps
  • 11.
    So how canyou enforce your governance?
  • 12.
    Native platform capabilitiesto ensure compliant use of cloud resources Governance for Azure Blueprints Deploy and update cloud environments in a repeatable manner using composable artifacts Resource Graph Query, explore & analyze cloud resources at scale Management Group Define organizational hierarchy Cost Monitor cloud spend and optimize resources Policy Real-time enforcement, compliance assessment and remediation NEW NEW Control VisibilityEnvironment ConsumptionHierarchy
  • 13.
  • 14.
    Azure Policy Remediation Enforcement &Compliance Apply policies at scale Turn on built-in policies or build custom ones for all resource types Real-time policy evaluation and enforcement Periodic & on-demand compliance evaluation Apply policies to a Management Group with control across your entire organization Apply multiple policies and & aggregate policy states with policy initiative Real time remediation Remediation on existing resources (NEW) Exclusion Scope VM In-Guest Policy (NEW)
  • 15.
    Azure Policy andAzure DevOps Enforce policies as part of the development process
  • 16.
    VM guest policy PolicyAssignment Compliance Policy Assignment Compliance
  • 17.
    Azure Blueprints Deploy andupdate cloud environments in a repeatable manner using composable artifacts Role-based access controls Policy Definitions ARM Templates
  • 18.
    Azure Resource Graph Query,explore & analyze cloud resources at scale Perform fast ad hoc exploration in large cloud environment Ability to assess the impact of applying policies in vast cloud environment Impact AssessmentExplore Query & analyze across all of your cloud resources at scale in seconds Query & Analyze
  • 19.
    Azure Governance Architecture Providingcontrol over the cloud environment, without sacrificing developer agility CRUD Azure Resource Manager (ARM) Query 2. Policy-based Control: Real-time enforcement, compliance assessment and remediation at scale 3. Resource Visibility: Query, explore & analyze cloud resources at scale 1. Environment Factory: Deploy and update cloud environments in a repeatable manner using composable artifacts Role-based Access Policy Definitions ARMTemplates Management Groups Subscriptions
  • 20.
  • 21.
    So how muchwill these cost you? There is no such thing as free beer! But all these features are free services! So go out there an take charge of your cloud!
  • 22.
    Links to checkout Open Group Cloud Computing Governance Framework: http://www.opengroup.org/cloud/gov_snapshot/p3.htm Azure Governance page: azure.com/governance
  • 23.