SlideShare a Scribd company logo

Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the Front Line

Download as PPTX, PDF
James Bromberger
James Bromberger

A breakfast presentation on stories and learnings from a decade of Cloud Deployments and Migrations

Technology
1 of 25
Cloud Security: Lessons from the frontline AISA Breakfast, 26 March 2019 PRAGMATIC CUSTOMERS AGILE CARING COURAGEOUS INNOVATIVE
Today… 26/03/20192 © Modis James is…. • Modis (formerly Ajilon) Consulting Director (Cloud, CyberSecurity) • Landgate Land Titles automation (et al) to AWS Cloud (2014-) • Advara (as above) • WA Education Department (Student Management System) • Dept Transport (Serverless Payment processing, etc) • Presented on Web security at AISA Perth branch conference 2018 Modis wider (AU): • WA Police • DIRD • Qld Health • NSW Jury Management, VIC Jury Management • Roy Hill • BHP
26/03/20193 © Modis 1200+ 450 380 150 90 145 75 Business Analysts 15% Architects 8% Project & Program Management 16% BI & Analytics 4% Developers & Integration 29% Testing 16% Support & Operations 12% Rest of World: 7000+
Previously… 26/03/20194 © Modis [1] [2] [4] • First paid-for web content 1995 (still online!) • UWA Webmaster, 1997 – 2000 [1] • Debian/GNU Linux Developer 2001 – present • Hartley’s/JDV online ShareTrading • Linux.conf.au chair 2003 (w/Linus [2], and in Christchurch in 2019 [3]) • In UK 2003 – 2010: Fotango (Canon Europe NV), Vibrant Media (Advertising) • AWS Security Solution Architect Aus & New Zealand 2012-2014 [4] [3]
26/03/20195 © Modis
Pop Quiz 26/03/20196 © Modis What was the worlds first Platform as a Service, and in what year?
26/03/20197 © Modis
26/03/20198 © Modis Buzz word What Who’s problem is it? SaaS Subscription service Them Serverless Code execution as a service Just your developers PaaS Managed Infrastructure as a Services Partially You IaaS VM as a Service Mostly You On-premise Your tin Totally you
1. Catch up. Re-evaluate continuously. 26/03/20199 © Modis CLOUD
1. Catch up. Re-evaluate continuously. 26/03/201910 © Modis 0 200 400 600 800 1000 1200 1400 1600 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 Cloud Provider “A” Service Updates (example) Updates
1. Catch up: ASD Protected Capacities. 26/03/201911 © Modis https://www.acsc.gov.au/infosec/irap/certified_clouds.htm 25 services 42 services
2: Use Cloud Native/Managed Services 26/03/201912 © Modis What do we want to get done? Can it be done (completely, partially) with a managed service?
Install a Message Queue solution on a set of VMs: • Get current install media • Obtain license key(s) • Create standby replica host • Manage encryption keys at rest, in flight • Monitor & Alert on replication • Create backup snapshots • Monitor & Alert on Snapshots • Manage VM OS updates, reboots • Hand-roll & test upgrade patch cycle • Hire sys admin(s), manage on-call, training… • Choose a name for the queue • Start using it Use a Managed Message Queue service (PaaS): • Choose a name for the queue • Start using it 26/03/2019 2: Use Cloud Native/Managed Services: Message Queue (IaaS v PaaS) 13 © Modis
2. Use Cloud Native/Managed Services: SLAs. 26/03/201914 © Modis What SLA do you get from your IT team, individually or as a group? Penalties? Cost?
2. Use Cloud Native/Managed Services 26/03/201915 © Modis Don’t “roll your own” solution when a managed (PaaS) service exists (Especially with cloud provider security capabilities)
26/03/201916 © Modis 10 ft, 5 pack = AU$22
• Which services face the Internet? • Should/can they? • What are our encryption in- flight standards? • Can these be lifted? • What authentication options are available for my apps? • Do we encrypt in flight when talking to these authentication endpoints? 26/03/2019 3: Adapt/Improve your standards 17 © Modis
Can you automate certificate issuance and deployment? 0 20 40 60 80 100 120 140 Category 1 US Gov’t Site with expired TLS Certs (count) Normal During 2019 Shutdown 26/03/2019 3: Adapt your standards: automatic certificate replacement 18 © Modis
26/03/2019 3: Adapt your standards: pets versus cattle 19 © Modis
• Repeatability • Rapidity • Reliability => DevOps 26/03/2019 4. Get CONTROLLED speed into your deployment 20 © Modis
• Cloud provider log analysis • Architecture inspection & compliance • API queries => DevSecOps 26/03/2019 5. Governance via inspection, data & metrics, not via questions 21 © Modis
• Try new services • Try new CPU families (VMs) • Try creating something of value to your organisaton 26/03/2019 6. Encourage experimentation, within bounds 22 © Modis
26/03/2019 7. Spend all your time on the logical config, not the physical 23 © Modis
1. Catch up (since you last looked) 2. Use cloud native 3. Adapt/improve standards 4. DevOps 5. DevSecOps 6. Experiment 7. Concentrate on the logical 26/03/2019 Summary 24 © Modis
Connect Smarter T: @JamesBromberger L: /jamesbromberger Australia 2018 PRAGMATIC CUSTOMERS AGILE CARING COURAGEOUS INNOVATIVE

Recommended

Be cloud ready with azure and aws the ultimate cloud solutions!
Be cloud ready with azure and aws the ultimate cloud solutions!Be cloud ready with azure and aws the ultimate cloud solutions!
Be cloud ready with azure and aws the ultimate cloud solutions!Tuan Yang
 
Gartner report on cloud360 cloud management platform
Gartner report on cloud360 cloud management platformGartner report on cloud360 cloud management platform
Gartner report on cloud360 cloud management platformCognizant
 
Exploring Interconnection Oriented Architectures with AWS
Exploring Interconnection Oriented Architectures with AWSExploring Interconnection Oriented Architectures with AWS
Exploring Interconnection Oriented Architectures with AWSAmazon Web Services
 
Compare cloud service providers with this simple guide
Compare cloud service providers with this simple guideCompare cloud service providers with this simple guide
Compare cloud service providers with this simple guideRedPixie
 
Why equinix for microsoft customers
Why equinix for microsoft customersWhy equinix for microsoft customers
Why equinix for microsoft customerschris edwards
 
Presentation v mware virtualization & cloud vision 2010
Presentation v mware virtualization & cloud vision 2010Presentation v mware virtualization & cloud vision 2010
Presentation v mware virtualization & cloud vision 2010solarisyourep
 
Presentation cloud management platform
Presentation cloud management platformPresentation cloud management platform
Presentation cloud management platformxKinAnx
 
Aspire Systems_CoE_Cloud Service Offerings
Aspire Systems_CoE_Cloud Service OfferingsAspire Systems_CoE_Cloud Service Offerings
Aspire Systems_CoE_Cloud Service OfferingsRamani R
 

Recommended

Be cloud ready with azure and aws the ultimate cloud solutions!
Be cloud ready with azure and aws the ultimate cloud solutions!Be cloud ready with azure and aws the ultimate cloud solutions!
Be cloud ready with azure and aws the ultimate cloud solutions!Tuan Yang
 
Gartner report on cloud360 cloud management platform
Gartner report on cloud360 cloud management platformGartner report on cloud360 cloud management platform
Gartner report on cloud360 cloud management platformCognizant
 
Exploring Interconnection Oriented Architectures with AWS
Exploring Interconnection Oriented Architectures with AWSExploring Interconnection Oriented Architectures with AWS
Exploring Interconnection Oriented Architectures with AWSAmazon Web Services
 
Compare cloud service providers with this simple guide
Compare cloud service providers with this simple guideCompare cloud service providers with this simple guide
Compare cloud service providers with this simple guideRedPixie
 
Why equinix for microsoft customers
Why equinix for microsoft customersWhy equinix for microsoft customers
Why equinix for microsoft customerschris edwards
 
Presentation v mware virtualization & cloud vision 2010
Presentation v mware virtualization & cloud vision 2010Presentation v mware virtualization & cloud vision 2010
Presentation v mware virtualization & cloud vision 2010solarisyourep
 
Presentation cloud management platform
Presentation cloud management platformPresentation cloud management platform
Presentation cloud management platformxKinAnx
 
Aspire Systems_CoE_Cloud Service Offerings
Aspire Systems_CoE_Cloud Service OfferingsAspire Systems_CoE_Cloud Service Offerings
Aspire Systems_CoE_Cloud Service OfferingsRamani R
 
Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit Sydney
Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit SydneyCloud Operating Models for Accelerated Cloud Transformation - AWS Summit Sydney
Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit SydneyAmazon Web Services
 
Cloud Computing Ppt
Cloud Computing PptCloud Computing Ppt
Cloud Computing PptAnjoum .
 
What is Cloud Hosting? Here is Everything You Must Know About It
What is Cloud Hosting? Here is Everything You Must Know About ItWhat is Cloud Hosting? Here is Everything You Must Know About It
What is Cloud Hosting? Here is Everything You Must Know About ItReal Estate
 
Azure Presentation for Angel Beat
Azure Presentation for Angel BeatAzure Presentation for Angel Beat
Azure Presentation for Angel BeatIan Philpot
 
What are cloud service models
What are cloud service modelsWhat are cloud service models
What are cloud service modelsLivin Jose
 
Capgemini Super Techies Show Season 2: The AWS Challenge Presentation
Capgemini Super Techies Show Season 2: The AWS Challenge PresentationCapgemini Super Techies Show Season 2: The AWS Challenge Presentation
Capgemini Super Techies Show Season 2: The AWS Challenge PresentationCapgemini
 
Equinix Corporate Presentation 2015
Equinix Corporate Presentation 2015Equinix Corporate Presentation 2015
Equinix Corporate Presentation 2015Josh Collis
 
VMware vCloud Air: Introduction
VMware vCloud Air: IntroductionVMware vCloud Air: Introduction
VMware vCloud Air: IntroductionVMware
 
When Clouds Collide - Session Sponsored by Datacom
When Clouds Collide - Session Sponsored by DatacomWhen Clouds Collide - Session Sponsored by Datacom
When Clouds Collide - Session Sponsored by DatacomAmazon Web Services
 
VMware vCloud® Air™
VMware vCloud® Air™VMware vCloud® Air™
VMware vCloud® Air™MarketingArrowECS_CZ
 
The Long Awaited Cloud Solution - Azure Stack Service and Use Case
The Long Awaited Cloud Solution - Azure Stack Service and Use Case The Long Awaited Cloud Solution - Azure Stack Service and Use Case
The Long Awaited Cloud Solution - Azure Stack Service and Use Case PT Datacomm Diangraha
 
Move Securely to the Microsoft Cloud
Move Securely to the Microsoft CloudMove Securely to the Microsoft Cloud
Move Securely to the Microsoft CloudMike Brannon
 
Equinix introduction
Equinix introductionEquinix introduction
Equinix introductionGraeme Price
 
Benefits of Upgrading to Windows 10 in the Government Sector
Benefits of Upgrading to Windows 10 in the Government SectorBenefits of Upgrading to Windows 10 in the Government Sector
Benefits of Upgrading to Windows 10 in the Government SectorAventis Systems, Inc.
 
Iaas.paas.saas
Iaas.paas.saasIaas.paas.saas
Iaas.paas.saasAlex Tregubov
 
Managed Cloud Services CIO Conference Oil Gas
Managed Cloud Services CIO Conference Oil GasManaged Cloud Services CIO Conference Oil Gas
Managed Cloud Services CIO Conference Oil GasJeff Holden
 
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid Solution
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid SolutionTransform Government IT with VMware Cloud on AWS - an Integrated Hybrid Solution
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid SolutionAmazon Web Services
 
Seminar report on microsoft azure
Seminar report on microsoft azureSeminar report on microsoft azure
Seminar report on microsoft azureMohammad Ilyas Malik
 
Boarding an Exciting Career Path with Amazon Cloud
Boarding an Exciting Career Path with Amazon CloudBoarding an Exciting Career Path with Amazon Cloud
Boarding an Exciting Career Path with Amazon CloudEdureka!
 
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS Experience
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS ExperienceAWS Summit 2013 | Singapore - Supporting and Optimizing your AWS Experience
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS ExperienceAmazon Web Services
 
So you want to provision a test environment...
So you want to provision a test environment...So you want to provision a test environment...
So you want to provision a test environment...DevOps.com
 
How to move to the cloud, get it right, stay secure and not cost a fortune
How to move to the cloud, get it right, stay secure and not cost a fortuneHow to move to the cloud, get it right, stay secure and not cost a fortune
How to move to the cloud, get it right, stay secure and not cost a fortuneCorecom Consulting
 

More Related Content

What's hot

Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit Sydney
Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit SydneyCloud Operating Models for Accelerated Cloud Transformation - AWS Summit Sydney
Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit SydneyAmazon Web Services
 
Cloud Computing Ppt
Cloud Computing PptCloud Computing Ppt
Cloud Computing PptAnjoum .
 
What is Cloud Hosting? Here is Everything You Must Know About It
What is Cloud Hosting? Here is Everything You Must Know About ItWhat is Cloud Hosting? Here is Everything You Must Know About It
What is Cloud Hosting? Here is Everything You Must Know About ItReal Estate
 
Azure Presentation for Angel Beat
Azure Presentation for Angel BeatAzure Presentation for Angel Beat
Azure Presentation for Angel BeatIan Philpot
 
What are cloud service models
What are cloud service modelsWhat are cloud service models
What are cloud service modelsLivin Jose
 
Capgemini Super Techies Show Season 2: The AWS Challenge Presentation
Capgemini Super Techies Show Season 2: The AWS Challenge PresentationCapgemini Super Techies Show Season 2: The AWS Challenge Presentation
Capgemini Super Techies Show Season 2: The AWS Challenge PresentationCapgemini
 
Equinix Corporate Presentation 2015
Equinix Corporate Presentation 2015Equinix Corporate Presentation 2015
Equinix Corporate Presentation 2015Josh Collis
 
VMware vCloud Air: Introduction
VMware vCloud Air: IntroductionVMware vCloud Air: Introduction
VMware vCloud Air: IntroductionVMware
 
When Clouds Collide - Session Sponsored by Datacom
When Clouds Collide - Session Sponsored by DatacomWhen Clouds Collide - Session Sponsored by Datacom
When Clouds Collide - Session Sponsored by DatacomAmazon Web Services
 
The Long Awaited Cloud Solution - Azure Stack Service and Use Case
The Long Awaited Cloud Solution - Azure Stack Service and Use Case The Long Awaited Cloud Solution - Azure Stack Service and Use Case
The Long Awaited Cloud Solution - Azure Stack Service and Use Case PT Datacomm Diangraha
 
Move Securely to the Microsoft Cloud
Move Securely to the Microsoft CloudMove Securely to the Microsoft Cloud
Move Securely to the Microsoft CloudMike Brannon
 
Equinix introduction
Equinix introductionEquinix introduction
Equinix introductionGraeme Price
 
Benefits of Upgrading to Windows 10 in the Government Sector
Benefits of Upgrading to Windows 10 in the Government SectorBenefits of Upgrading to Windows 10 in the Government Sector
Benefits of Upgrading to Windows 10 in the Government SectorAventis Systems, Inc.
 
Managed Cloud Services CIO Conference Oil Gas
Managed Cloud Services CIO Conference Oil GasManaged Cloud Services CIO Conference Oil Gas
Managed Cloud Services CIO Conference Oil GasJeff Holden
 
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid Solution
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid SolutionTransform Government IT with VMware Cloud on AWS - an Integrated Hybrid Solution
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid SolutionAmazon Web Services
 
Boarding an Exciting Career Path with Amazon Cloud
Boarding an Exciting Career Path with Amazon CloudBoarding an Exciting Career Path with Amazon Cloud
Boarding an Exciting Career Path with Amazon CloudEdureka!
 
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS Experience
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS ExperienceAWS Summit 2013 | Singapore - Supporting and Optimizing your AWS Experience
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS ExperienceAmazon Web Services
 

What's hot (20)

Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit Sydney
Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit SydneyCloud Operating Models for Accelerated Cloud Transformation - AWS Summit Sydney
Cloud Operating Models for Accelerated Cloud Transformation - AWS Summit Sydney
 
Cloud Computing Ppt
Cloud Computing PptCloud Computing Ppt
Cloud Computing Ppt
 
What is Cloud Hosting? Here is Everything You Must Know About It
What is Cloud Hosting? Here is Everything You Must Know About ItWhat is Cloud Hosting? Here is Everything You Must Know About It
What is Cloud Hosting? Here is Everything You Must Know About It
 
Azure Presentation for Angel Beat
Azure Presentation for Angel BeatAzure Presentation for Angel Beat
Azure Presentation for Angel Beat
 
What are cloud service models
What are cloud service modelsWhat are cloud service models
What are cloud service models
 
Capgemini Super Techies Show Season 2: The AWS Challenge Presentation
Capgemini Super Techies Show Season 2: The AWS Challenge PresentationCapgemini Super Techies Show Season 2: The AWS Challenge Presentation
Capgemini Super Techies Show Season 2: The AWS Challenge Presentation
 
Equinix Corporate Presentation 2015
Equinix Corporate Presentation 2015Equinix Corporate Presentation 2015
Equinix Corporate Presentation 2015
 
VMware vCloud Air: Introduction
VMware vCloud Air: IntroductionVMware vCloud Air: Introduction
VMware vCloud Air: Introduction
 
When Clouds Collide - Session Sponsored by Datacom
When Clouds Collide - Session Sponsored by DatacomWhen Clouds Collide - Session Sponsored by Datacom
When Clouds Collide - Session Sponsored by Datacom
 
VMware vCloud® Air™
VMware vCloud® Air™VMware vCloud® Air™
VMware vCloud® Air™
 
The Long Awaited Cloud Solution - Azure Stack Service and Use Case
The Long Awaited Cloud Solution - Azure Stack Service and Use Case The Long Awaited Cloud Solution - Azure Stack Service and Use Case
The Long Awaited Cloud Solution - Azure Stack Service and Use Case
 
Move Securely to the Microsoft Cloud
Move Securely to the Microsoft CloudMove Securely to the Microsoft Cloud
Move Securely to the Microsoft Cloud
 
Equinix introduction
Equinix introductionEquinix introduction
Equinix introduction
 
Benefits of Upgrading to Windows 10 in the Government Sector
Benefits of Upgrading to Windows 10 in the Government SectorBenefits of Upgrading to Windows 10 in the Government Sector
Benefits of Upgrading to Windows 10 in the Government Sector
 
Iaas.paas.saas
Iaas.paas.saasIaas.paas.saas
Iaas.paas.saas
 
Managed Cloud Services CIO Conference Oil Gas
Managed Cloud Services CIO Conference Oil GasManaged Cloud Services CIO Conference Oil Gas
Managed Cloud Services CIO Conference Oil Gas
 
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid Solution
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid SolutionTransform Government IT with VMware Cloud on AWS - an Integrated Hybrid Solution
Transform Government IT with VMware Cloud on AWS - an Integrated Hybrid Solution
 
Seminar report on microsoft azure
Seminar report on microsoft azureSeminar report on microsoft azure
Seminar report on microsoft azure
 
Boarding an Exciting Career Path with Amazon Cloud
Boarding an Exciting Career Path with Amazon CloudBoarding an Exciting Career Path with Amazon Cloud
Boarding an Exciting Career Path with Amazon Cloud
 
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS Experience
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS ExperienceAWS Summit 2013 | Singapore - Supporting and Optimizing your AWS Experience
AWS Summit 2013 | Singapore - Supporting and Optimizing your AWS Experience
 

Similar to Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the Front Line

So you want to provision a test environment...
So you want to provision a test environment...So you want to provision a test environment...
So you want to provision a test environment...DevOps.com
 
How to move to the cloud, get it right, stay secure and not cost a fortune
How to move to the cloud, get it right, stay secure and not cost a fortuneHow to move to the cloud, get it right, stay secure and not cost a fortune
How to move to the cloud, get it right, stay secure and not cost a fortuneCorecom Consulting
 
Geting cloud architecture right the first time linthicum interop fall 2013
Geting cloud architecture right the first time linthicum interop fall 2013Geting cloud architecture right the first time linthicum interop fall 2013
Geting cloud architecture right the first time linthicum interop fall 2013David Linthicum
 
Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...
Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...
Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...Movate
 
Realise True Business Value With ThousandEyes
Realise True Business Value With ThousandEyesRealise True Business Value With ThousandEyes
Realise True Business Value With ThousandEyesThousandEyes
 
Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...
Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...
Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...Citrix
 
NoOps in a Serverless World
NoOps in a Serverless WorldNoOps in a Serverless World
NoOps in a Serverless WorldGary Arora
 
Session 1: Einführung in Windows Azure
Session 1: Einführung in Windows AzureSession 1: Einführung in Windows Azure
Session 1: Einführung in Windows AzureDigicomp Academy AG
 
Cloud Migration for Financial Services - Toronto - October 2016
Cloud Migration for Financial Services - Toronto - October 2016Cloud Migration for Financial Services - Toronto - October 2016
Cloud Migration for Financial Services - Toronto - October 2016Amazon Web Services
 
AEP RCC MDM to Cloud.pptx
AEP RCC MDM to Cloud.pptxAEP RCC MDM to Cloud.pptx
AEP RCC MDM to Cloud.pptxAdityaDas899782
 
Migrate legacy applications to AWS at scale with no code changes (Sponsored b...
Migrate legacy applications to AWS at scale with no code changes (Sponsored b...Migrate legacy applications to AWS at scale with no code changes (Sponsored b...
Migrate legacy applications to AWS at scale with no code changes (Sponsored b...Amazon Web Services
 
Choosing the Right Clouds for your Business
Choosing the Right Clouds for your BusinessChoosing the Right Clouds for your Business
Choosing the Right Clouds for your BusinessMike Kavis
 
APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?
APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?
APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?FABERNOVEL TECHNOLOGIES
 
AWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best Practices
AWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best PracticesAWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best Practices
AWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best PracticesAmazon Web Services
 
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValueThe Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValueRapidValue
 
Eseguire applicazioni Windows in AWS
Eseguire applicazioni Windows in AWSEseguire applicazioni Windows in AWS
Eseguire applicazioni Windows in AWSAmazon Web Services
 

Similar to Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the Front Line (20)

So you want to provision a test environment...
So you want to provision a test environment...So you want to provision a test environment...
So you want to provision a test environment...
 
How to move to the cloud, get it right, stay secure and not cost a fortune
How to move to the cloud, get it right, stay secure and not cost a fortuneHow to move to the cloud, get it right, stay secure and not cost a fortune
How to move to the cloud, get it right, stay secure and not cost a fortune
 
Geting cloud architecture right the first time linthicum interop fall 2013
Geting cloud architecture right the first time linthicum interop fall 2013Geting cloud architecture right the first time linthicum interop fall 2013
Geting cloud architecture right the first time linthicum interop fall 2013
 
Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...
Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...
Bullet Proof Your Amazon Cloud Deployment: Best Practices in Deploying Applic...
 
Cloud Migration - CCS Technologies (P) Ltd.
Cloud Migration - CCS Technologies (P) Ltd.Cloud Migration - CCS Technologies (P) Ltd.
Cloud Migration - CCS Technologies (P) Ltd.
 
Realise True Business Value With ThousandEyes
Realise True Business Value With ThousandEyesRealise True Business Value With ThousandEyes
Realise True Business Value With ThousandEyes
 
Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...
Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...
Citrix Synergy 2014 - Syn111 From the field: Autodesk's journey to private cl...
 
NoOps in a Serverless World
NoOps in a Serverless WorldNoOps in a Serverless World
NoOps in a Serverless World
 
Session 1: Einführung in Windows Azure
Session 1: Einführung in Windows AzureSession 1: Einführung in Windows Azure
Session 1: Einführung in Windows Azure
 
Inside CBP's Quest for the Cloud
Inside CBP's Quest for the CloudInside CBP's Quest for the Cloud
Inside CBP's Quest for the Cloud
 
Cloud Migration for Financial Services - Toronto - October 2016
Cloud Migration for Financial Services - Toronto - October 2016Cloud Migration for Financial Services - Toronto - October 2016
Cloud Migration for Financial Services - Toronto - October 2016
 
AEP RCC MDM to Cloud.pptx
AEP RCC MDM to Cloud.pptxAEP RCC MDM to Cloud.pptx
AEP RCC MDM to Cloud.pptx
 
Migrate legacy applications to AWS at scale with no code changes (Sponsored b...
Migrate legacy applications to AWS at scale with no code changes (Sponsored b...Migrate legacy applications to AWS at scale with no code changes (Sponsored b...
Migrate legacy applications to AWS at scale with no code changes (Sponsored b...
 
Choosing the Right Clouds for your Business
Choosing the Right Clouds for your BusinessChoosing the Right Clouds for your Business
Choosing the Right Clouds for your Business
 
APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?
APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?
APIDays 2018 - APIOps & Microservices - What is MICRO by the Way ?
 
AWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best Practices
AWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best PracticesAWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best Practices
AWS FSI Symposium 2017 NYC- CTP & Cloud Migration Best Practices
 
Cloud brochure
Cloud brochureCloud brochure
Cloud brochure
 
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValueThe Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
 
Stefan Haase Cloud
Stefan Haase CloudStefan Haase Cloud
Stefan Haase Cloud
 
Eseguire applicazioni Windows in AWS
Eseguire applicazioni Windows in AWSEseguire applicazioni Windows in AWS
Eseguire applicazioni Windows in AWS
 

More from James Bromberger

AWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNSAWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNSJames Bromberger
 
Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019James Bromberger
 
AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018James Bromberger
 
Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018James Bromberger
 
AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018James Bromberger
 
Debian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIsDebian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIsJames Bromberger
 

More from James Bromberger (6)

AWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNSAWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNS
 
Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019
 
AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018
 
Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018
 
AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018
 
Debian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIsDebian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIs
 

Recently uploaded

Decarbonising Commercial Real Estate: The Role of Operational Performance
Decarbonising Commercial Real Estate: The Role of Operational PerformanceDecarbonising Commercial Real Estate: The Role of Operational Performance
Decarbonising Commercial Real Estate: The Role of Operational PerformanceIES VE
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusZilliz
 
WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...
WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...
WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...WSO2
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Zilliz
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...Zilliz
 
JohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptxJohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptxJohnPollard37
 
Introduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMIntroduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMKumar Satyam
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodJuan lago vázquez
 
AI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAnitaRaj43
 
Choreo: Empowering the Future of Enterprise Software Engineering
Choreo: Empowering the Future of Enterprise Software EngineeringChoreo: Empowering the Future of Enterprise Software Engineering
Choreo: Empowering the Future of Enterprise Software EngineeringWSO2
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...DianaGray10
 
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....rightmanforbloodline
 
Navigating Identity and Access Management in the Modern Enterprise
Navigating Identity and Access Management in the Modern EnterpriseNavigating Identity and Access Management in the Modern Enterprise
Navigating Identity and Access Management in the Modern EnterpriseWSO2
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistandanishmna97
 
Design and Development of a Provenance Capture Platform for Data Science
Design and Development of a Provenance Capture Platform for Data ScienceDesign and Development of a Provenance Capture Platform for Data Science
Design and Development of a Provenance Capture Platform for Data SciencePaolo Missier
 
Stronger Together: Developing an Organizational Strategy for Accessible Desig...
Stronger Together: Developing an Organizational Strategy for Accessible Desig...Stronger Together: Developing an Organizational Strategy for Accessible Desig...
Stronger Together: Developing an Organizational Strategy for Accessible Desig...caitlingebhard1
 
How to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfHow to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfdanishmna97
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Victor Rentea
 

Recently uploaded (20)

Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 
Decarbonising Commercial Real Estate: The Role of Operational Performance
Decarbonising Commercial Real Estate: The Role of Operational PerformanceDecarbonising Commercial Real Estate: The Role of Operational Performance
Decarbonising Commercial Real Estate: The Role of Operational Performance
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...
WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...
WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
JohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptxJohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptx
 
Introduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMIntroduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDM
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
AI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by Anitaraj
 
Choreo: Empowering the Future of Enterprise Software Engineering
Choreo: Empowering the Future of Enterprise Software EngineeringChoreo: Empowering the Future of Enterprise Software Engineering
Choreo: Empowering the Future of Enterprise Software Engineering
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
 
Navigating Identity and Access Management in the Modern Enterprise
Navigating Identity and Access Management in the Modern EnterpriseNavigating Identity and Access Management in the Modern Enterprise
Navigating Identity and Access Management in the Modern Enterprise
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Design and Development of a Provenance Capture Platform for Data Science
Design and Development of a Provenance Capture Platform for Data ScienceDesign and Development of a Provenance Capture Platform for Data Science
Design and Development of a Provenance Capture Platform for Data Science
 
Stronger Together: Developing an Organizational Strategy for Accessible Desig...
Stronger Together: Developing an Organizational Strategy for Accessible Desig...Stronger Together: Developing an Organizational Strategy for Accessible Desig...
Stronger Together: Developing an Organizational Strategy for Accessible Desig...
 
How to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cfHow to Check CNIC Information Online with Pakdata cf
How to Check CNIC Information Online with Pakdata cf
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 

Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the Front Line

  • 1. Cloud Security: Lessons from the frontline AISA Breakfast, 26 March 2019 PRAGMATIC CUSTOMERS AGILE CARING COURAGEOUS INNOVATIVE
  • 2. Today… 26/03/20192 © Modis James is…. • Modis (formerly Ajilon) Consulting Director (Cloud, CyberSecurity) • Landgate Land Titles automation (et al) to AWS Cloud (2014-) • Advara (as above) • WA Education Department (Student Management System) • Dept Transport (Serverless Payment processing, etc) • Presented on Web security at AISA Perth branch conference 2018 Modis wider (AU): • WA Police • DIRD • Qld Health • NSW Jury Management, VIC Jury Management • Roy Hill • BHP
  • 3. 26/03/20193 © Modis 1200+ 450 380 150 90 145 75 Business Analysts 15% Architects 8% Project & Program Management 16% BI & Analytics 4% Developers & Integration 29% Testing 16% Support & Operations 12% Rest of World: 7000+
  • 4. Previously… 26/03/20194 © Modis [1] [2] [4] • First paid-for web content 1995 (still online!) • UWA Webmaster, 1997 – 2000 [1] • Debian/GNU Linux Developer 2001 – present • Hartley’s/JDV online ShareTrading • Linux.conf.au chair 2003 (w/Linus [2], and in Christchurch in 2019 [3]) • In UK 2003 – 2010: Fotango (Canon Europe NV), Vibrant Media (Advertising) • AWS Security Solution Architect Aus & New Zealand 2012-2014 [4] [3]
  • 6. Pop Quiz 26/03/20196 © Modis What was the worlds first Platform as a Service, and in what year?
  • 8. 26/03/20198 © Modis Buzz word What Who’s problem is it? SaaS Subscription service Them Serverless Code execution as a service Just your developers PaaS Managed Infrastructure as a Services Partially You IaaS VM as a Service Mostly You On-premise Your tin Totally you
  • 9. 1. Catch up. Re-evaluate continuously. 26/03/20199 © Modis CLOUD
  • 10. 1. Catch up. Re-evaluate continuously. 26/03/201910 © Modis 0 200 400 600 800 1000 1200 1400 1600 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 Cloud Provider “A” Service Updates (example) Updates
  • 11. 1. Catch up: ASD Protected Capacities. 26/03/201911 © Modis https://www.acsc.gov.au/infosec/irap/certified_clouds.htm 25 services 42 services
  • 12. 2: Use Cloud Native/Managed Services 26/03/201912 © Modis What do we want to get done? Can it be done (completely, partially) with a managed service?
  • 13. Install a Message Queue solution on a set of VMs: • Get current install media • Obtain license key(s) • Create standby replica host • Manage encryption keys at rest, in flight • Monitor & Alert on replication • Create backup snapshots • Monitor & Alert on Snapshots • Manage VM OS updates, reboots • Hand-roll & test upgrade patch cycle • Hire sys admin(s), manage on-call, training… • Choose a name for the queue • Start using it Use a Managed Message Queue service (PaaS): • Choose a name for the queue • Start using it 26/03/2019 2: Use Cloud Native/Managed Services: Message Queue (IaaS v PaaS) 13 © Modis
  • 14. 2. Use Cloud Native/Managed Services: SLAs. 26/03/201914 © Modis What SLA do you get from your IT team, individually or as a group? Penalties? Cost?
  • 15. 2. Use Cloud Native/Managed Services 26/03/201915 © Modis Don’t “roll your own” solution when a managed (PaaS) service exists (Especially with cloud provider security capabilities)
  • 16. 26/03/201916 © Modis 10 ft, 5 pack = AU$22
  • 17. • Which services face the Internet? • Should/can they? • What are our encryption in- flight standards? • Can these be lifted? • What authentication options are available for my apps? • Do we encrypt in flight when talking to these authentication endpoints? 26/03/2019 3: Adapt/Improve your standards 17 © Modis
  • 18. Can you automate certificate issuance and deployment? 0 20 40 60 80 100 120 140 Category 1 US Gov’t Site with expired TLS Certs (count) Normal During 2019 Shutdown 26/03/2019 3: Adapt your standards: automatic certificate replacement 18 © Modis
  • 19. 26/03/2019 3: Adapt your standards: pets versus cattle 19 © Modis
  • 20. • Repeatability • Rapidity • Reliability => DevOps 26/03/2019 4. Get CONTROLLED speed into your deployment 20 © Modis
  • 21. • Cloud provider log analysis • Architecture inspection & compliance • API queries => DevSecOps 26/03/2019 5. Governance via inspection, data & metrics, not via questions 21 © Modis
  • 22. • Try new services • Try new CPU families (VMs) • Try creating something of value to your organisaton 26/03/2019 6. Encourage experimentation, within bounds 22 © Modis
  • 23. 26/03/2019 7. Spend all your time on the logical config, not the physical 23 © Modis
  • 24. 1. Catch up (since you last looked) 2. Use cloud native 3. Adapt/improve standards 4. DevOps 5. DevSecOps 6. Experiment 7. Concentrate on the logical 26/03/2019 Summary 24 © Modis
  • 25. Connect Smarter T: @JamesBromberger L: /jamesbromberger Australia 2018 PRAGMATIC CUSTOMERS AGILE CARING COURAGEOUS INNOVATIVE