management and security in the cloud andi mann vp strategic solutions, ca technologies...

Management and Security in the Cloud

Andi MannVP Strategic Solutions, CA [email protected]@AndiMann

Practical Notes on Delivering Mission-Critical Cloud Services

agenda

— Choosing the right cloud(s)

— Choose evolution or revolution

— Key management/security technologies

USE

PROVIDE

3 Copyright © 2011 CA Technologies

PLAN, DESIGN, DELIVER

ASSSURE, SECURE, OPTIMIZE

TRANSFORM

Traditional Services

CloudServices

The Business IT

BrokeredCloud Services

Private/Hybrid Cloud Services

3 key actions to leverage the diverse cloud ecosystem


PROVIDE agile private/hybrid cloud services

USE public cloud with greater confidence

TRANSFORM cycle times & business alignment to drive innovation agility

Service UserPhysical

Assets

VirtualAssets


extend management and security to USE and PROVIDE cloud and traditional services together

PLAN DELIVERTraditional

Services Private/Hybrid Cloud Services


DESIGN

ASSURESECURE OPTIMIZE

PLAN

core lifecycle capabilities to USE and DELIVER cloud


Create a decision model for your apps and servicesBusiness service insightProject and portfolio analysisIdeation and decision modelingCapacity and resource planning

cloud evaluationservice portfolio view of applications and clouds

7 Copyright © 2011 CA Technologies High Performance

Good-Enough Performance

Commoditizing Differentiating

Hybrid Cloud

Virtual Fabric

V+P Automation

Public Cloud

e.g. ERP

e.g. E-mail

e.g. Analytics

Traditional Datacenter

Private CloudPublic Cloud

e.g. Web-centric

cloud evaluation/decision model – Visible Ops

Source: IT Process Institute, ‘Visible Ops - Private Cloud: From Virtualization to Private Cloud in 4 Practical Steps ’


cloud evaluation/decision model – Forrester Research

Source: Forrester Research Inc. Evaluating Application Fit With Cloud, Galen Schreck, May 5, 2011,


cloud evaluation/decision model – Freeform Dynamics

Source: Freeform Dynamics, Applied Cloud Computing: A practical guide to identifying the potential in your environment, Dale Vile and Tony Lock, October 2010


Bu

sin

es

s C

ap

ab

ility

No

n-C

ore

Co

re

Business DifferentiationNon-Differentiator (Reuse/Buy) Market Differentiator (Build)

On Premises COTS (IaaS)

Smart MetalJava as a Service

On Premises PaaS

Off Premises SaaS

On Premises IaaS

Off Premises PaaS

Smart MetalJava as a Service

Off Premises SaaS

cloud evaluation/decision model – Fortune 500 company


DESIGN

core cloud capabilities to USE and DELIVER cloud


Design services per businessagility, performance andcost needsBusiness service insightService modeling and simulationContinuity planningRevolutionary & evolutionary approaches


cloud-migrant, cloud-native, cloud-free, and ‘rogue’ cloud

IT ServiceUsers

‘Rogue’ Cloud Services

‘The Business’

Cloud-FreeServices

Service Design Models

Cloud Migrant Services

Cloud-Native Services

virtualization is foundational for cloud service designbut there is a lot more involved

Source: NIST Cloud Computing Reference Architecture Version 1, March 30, 2011


DELIVER



Automate hybrid serviceprovisioning and processesVirtual component management Business service fabricStandardization and automationService interface (catalog)Measurement and control

evolution to cloud by building virtualization maturityfrom virtualization to cloud

Consolidation

Optimization (standardization)

Automation(orchestration)

Dynamic IT

CAPEX OPEX Revenue

Value Driver

Agility

Virtual Infrastructure Management

Virtual Systems

Management

Virtual Service

Management

Management Approach

Copyright © 2011 CA Technologies

Virtualization

16

InfrastructureAutomation

ServiceAutomation

Virtualization Management

??

?

revolutionary approach to virtual business service delivery


App

OS

WS DBApp

OS OS OSServer

Phys Server

Switches, Balancer

s

SAN,NAS

Firewall, IDS

Virtual Switch

Virtual Security

Virtual SAN

Virtual Server

App

OS

Phys Server

Hypervisor

Phys Server

Hypervisor

Virtual Service FabricSwitch, Storage, Network, CPU, Memory

Phys Server

Hypervisor

Phys Server

Hypervisor

WS

OS? DB

OS?

Virtual Business Service

ASSURE



Assure application performanceApplication performance managementEnd-to-end assuranceQuality of experience monitoringService desk/service catalog

to provide cloud, you must manage and assure cloud service



assure performance – 24x7 service-aware cloud monitoringSE

RVIC

E-AW

ARE

end-to-end visibility into complex hybrid service models

root cause diagnosis, impact analysis, user experience triage

optimize behavior, predict problems before they occur


… across physical, virtual, and cloud

SECURE



Enforce content-aware identity and access controls

‘Cloud of clouds’ authenticationSecurity to, for, from the cloudIdentity and access management Data protection

22

content-aware security to, for, and from the cloud

Partners

Customers

Mobile

Internal Employees

Copyright © 2011 CA Technologies

Cloud Apps, Web Services, 3rd-party APIs

Enterprise Applications

SaaS,PaaS,IaaS

Identity management Web access mgtVirtual server securityData protectionUser activity reporting

Apply existing security TO the cloudProvide security FOR cloud services

Use security solutions FROM cloud providers Cloud Apps, Web Services, 3rd-party APIs

SaaS,PaaS,IaaS

OPTIMIZE



End-to-end service visibility and lifecycle orchestrationBusiness service insightProcess orchestrationProject and portfolio management Resource optimization (incl. power)Chargeback

optimize resource utilization, placement, allocationrightsize infrastructure capacity to minimize cost and maximize response


Continually identify heterogeneous resource

pool (e.g. VM) usage, impact

Automate placement of resources at scale across

vendors, pools, users

not just technology – optimize, integrate, orchestrate process


ConfigurationDatabase

External Physical VirtualPool

Internal

Provision & Deprovision Requested Resources

Review &Approve

ConfigurationValidation

StandardConfiguration

Request

Customer

Review &Approve

Manager Approver

SLA DashboardRequest Portal

Capacity MgtPortal

CapacityManager

Service LevelMonitoring

Empower users with self-service

Maintain standards & compliance

Predict current & future

capacity needs

Define service metrics

Reconcile Costof Service

Charge back & show back

RelationshipManager

Manage service levels and costs

Metering &Performance

Capture consumption (CPU, RAM, disk, power)

Role-based access

Host-based Access Control / Web SSO

Compliance & Reporting

Audit TrailPerformance

Database

Capture Service Performance

Real-timePerformance

View

Pool & provision


PhysicalAssets

CloudServices

The Business IT



core lifecycle capabilities to TRANSFORM business & IT


PROVIDE agile private/hybrid cloud services

USE public cloud with greater confidence

TRANSFORM cycle times & business alignment to drive innovation agility

Service UserVirtualAssets

“It’s our production

environment,self-scaling and

portable.”

“It’s our test environment, problems are

easy to recreate.”

“It’s our dev environment, available on

demand.”

TRANSFORM service cycles for business innovationincl. agile, devops, ‘build for failure’, app-focus, etc.

Business QA Operations

Common Environment and Processes

Private CloudRevolution:

Virtual Fabric

Virtual Business Services

Evolution: Automation


Public Cloud

TRANSFORM IT to be the broker of a ‘cloud of clouds’



TRANSFORM to survive and thrive in a hybrid worldplatform-agnostic solutions, standards-based approaches


All trademarks, trade names, service marks and logos referenced herein belong to their respective companies

Why CA Technologies for Cloud Computing

Ensure business value of clouds with application and service focus

Accelerate private cloud with heterogeneous automation and virtual fabric from a single vendor

More safely leverage public clouds with the industry’s leading security and assurance solutions

Leverage VMware investment with diverse partnerships and hardware independence



CA cloud innovations: a few highlighted offerings

*Available as an on-demand cloud service from CA and/or its network of service providers

Map application transactions in real-time wherever they go — across your traditional, private cloud & IaaS deployments

Application Performance MgmtDesign and deploy n-tier virtual business services across private and public clouds*

AppLogicManage Agile development with technology used by salesforce.com to manage development of their SaaS apps*

Agile Vision


VirtualAssets

PhysicalAssets

CloudServices

The BusinessIT



HyperformixEnsure application performance in virtual environments with predictive analytics for workload placement

Quickly project your identity controls in front of any cloud your business needs with multi-factor authentication*

ArcotStart monitoring the health of your AWS, Rackspace, Salesforce, Azure and Google Apps services in minutes*

Nimsoft

Service User

recap

USE

PROVIDE

TRANSFORM


PLAN, DESIGN, DELIVER

ASSSURE, SECURE, OPTIMIZE

— Management & security at the forefront

— Leverage & extend your IT investments

— Choose evolution, revolution, or both

— Choose leading cloud management and security solutions from CA Technologies



VirtualAssets

PhysicalAssets

CloudServices

Business IT


User

thank you.

questions?

management and security in the cloud andi mann vp strategic solutions, ca technologies...

Documents

new cloud services

applied cloud computing

diverse cloud ecosystem

ca technologies slide

transform slide

resource planning slide

webcentric slide

right clouds