oracle soa governance for the business
DESCRIPTION
I created this presentation to provide a quick overview of what SOA Governance is all about and the relevance it has to business. In only a few slides you will appreciate the value of SOA Governance for the business, what SOA Governance is and is not, the processes required to supported and the Oracle tools that can be used to ensure that your SOA implementation delivers value to the business. This presentation is based on my book Oracle SOA Governance 11g implementationTRANSCRIPT
© 2013 HCL – Proprietary & Confidential
This document contains confidential and propriety information for the purpose of evaluation only.
The contents of this document may not be published, disclosed or used for any other purpose.
Oracle SOA Governance for the Business
Luis Weir Fusion Middleware Solutions Director
http://uk.linkedin.com/in/lweir
@luisw19
http://www.soa4u.co.uk/
2 © 2013 HCL – Proprietary & Confidential
Why is Governance Needed?
Assets vs. Liabilities
What is SOA Governance
SOA Governance Framework
Implementation Roadmap
SOA Assessment
Design Time vs. Runtime Governance
Asset Centric Governance with Oracle
Governance Suite
About Us
Agenda
3 © 2013 HCL – Proprietary & Confidential
Without the right level of SOA Governance implementation of technologies suited to support these new trends may end up being an expensive project that fails to deliver any return on investment therefore not bringing
benefits to the business.
Industry Trends – How can SOA Help? Social analytics, cloud computing, big data adoption to bring
competitive advantage
New Technology
Demand for large quantities of data must be provided in a standardized, long-term method Rapid Growth of
Mobile Apps
Opportunities to save costs through automation and optimization of business processes Maturity in BPM
Technology
Complex security needs are driving greater investment in IT security Increased Need
for Security
Oracle SOA Suite supports and enables adoption of new technologies
Oracle service orientation and SOA Suite meets this demands and provides support to service bindings suitable for mobile use
Fusion Middleware provides best of breed security solutions such as Oracle Access Manager , Identity Manager and API Gateway
BPM suite is a fundamental component of SOA Suite, in facts is a service engine within SOA Suite itself.
4 © 2013 HCL – Proprietary & Confidential
Assets vs. Liabilities in SOA Terms
Assets are any electronic artifacts
such as API’s, XML documents
(XSD’s, WSDL’s or XSLT’s),
documents (requirements, designs,
etc), systems, and applications that
add measurable value to the
Business.
Liabilities are duplicated, deprecated, redundant or unused “Assets” that no longer deliver benefits but that introduce extra costs to the business.
5 © 2013 HCL – Proprietary & Confidential
What SOA Governance Isn’t?
• Standards: such as naming conventions, patterns, reference architectures, standards, amongst other, cannot be considered to be Governance. Although these are important assets, if not enforce through a process they are often forgotten and outdated.
• Configuration Management, Version Control or Continuous Integration: Although these are very important disciplines within software engineering and contribute greatly towards adopting governance, without supporting processes, policy enforcements and the right tools, these disciplines can become an overhead and easily run out of control.
• A Tool: Tools without structured process around it add little value and will likely end up not being used for its original purpose.
• Review Gates: Having a panel (i.e. Design Authorities) responsible for approval or rejection of deliverables is an important aspect of Governance however without some sort of automation, robust traceability, policy enforcement, and control these can be time consuming, inaccurate and ultimately unmanageable.
6 © 2013 HCL – Proprietary & Confidential
What is SOA Governance?
Policies
(What)
Reference Architecture
Targets and Objectives
Assets
Standards
Configuration Management, ...
Processes
(How)
Software Development Lifecycle (SDLC)
Design Time and Runtime Governance
Oracle SOA 11g Governance Suite
Subversion
...
Decisions
(Who)
Organization Units
Stake Holders
Roles and Responsibilities
...
Governance is the alignment of policies (what), decision makers (who)
and processes (how) to ensure and maximize the benefits that technology
can bring to the business
7 © 2013 HCL – Proprietary & Confidential
Top 5 Governance Challenges
Challenge Consequence
Lack of visibility over existing assets and its
performance
Minimum asset reuse and duplication
introducing extra costs (both in CAPEX and
OPEX). Without a level of analytics it is not
possible to determine ROI.
Tactical Projects over of Strategic Solutions Projects have their own agendas which deliver
short term benefits to the project but that
add no long or mid term Enterprise value.
Poor decision making and Lack of
accountability
No sense of ownership makes decision
making, policy enforcement and accountability
an impossible task.
Low quality of Assets which become difficult
to maintain and change.
Higher complexity and cost of change
introduces Risks to the Business preventing
new and innovative solutions to be introduced.
Poor estimation techniques and inaccurate
planning
Projects cost more than estimated mainly
because of “unknowns”... (i.e. Rework, extra
activities and deliverables, dependencies,
complexity, and others)
8 © 2013 HCL – Proprietary & Confidential
SOA Governance Framework
A Governance Framework materialises the Governance concepts and
provides a taxonomy of deliverables suited to support all aspects of it
(what-who-how).
A Governance Framework Accelerator is a prebuilt framework that can
acquired and customised to specific customer needs.
SOA Governance Framework
Policies
(What)
Decisions
(Who) Processes
(How)
9 © 2013 HCL – Proprietary & Confidential
SOA Governance Framework Accelerator
Implementing an accelerator dramatically reduces the complexity and
effort required to implement Governance therefore reducing Risk.
Business
Benefits
SOA Governance Framework Accelerator
Business
Objectives &
IT Strategy Design Time
Governance •Reference Architectures
•Service Capability Matrix &
Catalogues
•Development Standards
•Design Standards
•Programming Standards
•Security Standards
•Exception Handling
Standards
Runtime
Governance •Deployment Framework
•Exception Handling
Framework
•Continuous Integration
•Testing Framework
•Provisioning Framework
Organization •Roles & Responsibilities SOA
Strategy
&
Business
Case
10 © 2013 HCL – Proprietary & Confidential
Your Chances of Success...
Elaboration Construction Maintenance Changes
Short term benefits but higher long term costs
Higher cost of change Higher support costs Higher risk
ROI from asset reuse Lower cost of change Relatively high risk of
implementation
Co
sts OPEX
Tactical Implementation
Strategic Implementation No Accelerator
Strategic Implementation With Accelerator
Reduced risk of failure Accelerated delivery Quicker ROI
CAPEX
10
11 © 2013 HCL – Proprietary & Confidential
SOA Governance Implementation Roadmap
Enablement Phase Implementation Phase
SO
A M
atu
rity
L1
L3
L2
L4
L5
Time
Projects
As-Is
To-Be
Governan
ce
Objectives
SOA
Assessment
Define and Implement
Design Time Governance
Framework:
Standards, Frameworks,
Tools, etc. SOA Strategy &
Business case
Define and Implement
Runtime Governance
Framework:
Frameworks, Tools, etc.
Governance
Enabled
Projects &
Lifecycle
12 © 2013 HCL – Proprietary & Confidential
SOA Assessment
Enablement Phase
Business
Objectives &
Strategy
SOA
Governance
Objectives
Maturity
Assessment
SOA
Strategy &
Business
Case
Evaluate As-Is
•Analyse and Quantify Capabilities on each Domain:
•Business Goals and Strategy
•Reference Architectures, standards and SDLC
•Application implementation views
•Data Architecture, Analalitical Reports, BI
•Support and Administration tasks
•Project Portfolions, Success Rates, Estimation Models
•Team Structures, Organistion Charts
Elaborate To-Be:
•Define and Quantify Desire Maturity Level:
•Analyse Results and Identify from As Is
•Define a realistic target maturity considering a target completion date of 1 to 2 years max (I.T. Moves fast so longer than this is unrealistic)
•Quantify each capability based upon desired maturity on target date
Elaborate Results
•Elaborate Recommendations and actions
•Identify key success factors Based on Business and IT goals identify
•Based on Business value and risk, prioritise actions and recommendations and define milestones
• Elaborate a SOA Strategy
• Elaborate a Business Case
1 2 3
Phases
13 © 2013 HCL – Proprietary & Confidential
SOA Governance Objectives
Objectives should be around ensuring and maximising the benefits that SOA brings to the business by:
Aligning the SOA strategy to the business objectives
Delivering a Framework suited for Business Agility and Change
Aligning SOA to Enterprise Architecture
Providing visibility over existing Assets, its use and operational performance
Improving the quality of assets by enforcing policy and standards
Increasing the ROI by asset re-use
Reducing the cost of change and support
Reducing the risk of failure
Improving agility and promoting innovation
14 © 2013 HCL – Proprietary & Confidential
Oracle SOA Maturity Model
The Oracle SOA Maturity Model is a five level model where each
level represents a particular state of maturity of a SOA
implementation in an enterprise.
Bu
sin
ess V
alu
e
Time
1 Opportunistic
• SOA Focused on Quick Wins Projects
• Get Experience Building, Deploying and Consuming Services
2 Systematic
• SOA Applied to Existing Portfolio
• Focus on Standards and Management
3 Enterprise
• Strong Focused in SOA Governance and Enterprise Architecture
• SOA to Enable Business Processess, Process Automation and Improvement
• Extend SOA to the rest of the Enterprise
4 Measured
• Strong Focused on Qualitative Management and Monitoring
• Process owners drive Processess and Process Optimization
• Use of BAM, BTM, OEM and OER to Measure Operational performance and ROI
5 Industrialized
• Agile SOA able to Support Business Rapidely and Cost Effectively
• Event-Drivent technolgies such as CEP and EDN's Enabled Self-Optimised Processess and Applications
15 © 2013 HCL – Proprietary & Confidential
Maturity Assessment
A Maturity Assessment evaluates the current state of a SOA
Implementation within an organization. the Oracle SOA Maturity Model
along with the Oracle Capabilities domain can be used to conduct the
assessment.
16 © 2013 HCL – Proprietary & Confidential
Strategy & Business Case
An SOA Strategy should define a Vision and a Roadmap describing the projects, activities and iterations needed to realise such a vision. The Vision is a long term view of the future whereas the Roadmap should be based on achievable timeframes.
A Business Case should be created on the back of the strategy to secure the funding needed to implement SOA Governance. A good Business Case should express in business words:
How SOA Governance will help the Business achieve its goals.
What benefits will be delivered to the business (i.e. lower TCO, Cost Savings in both OPEX and CAPEX by xx%, Agility, etc).
How SOA benefits will be measured
ROI
Estimated time
required to build an
asset for single use
Estimated time
required to use an
existing asset
Predicted net hours
saved by the
consumer
17 © 2013 HCL – Proprietary & Confidential
Design Time Governance
Design Time Governance can be defined as the combination of processes, tools and
people needed to support the analysis, design and build phases of a SOA implementation.
Analysis
Requirements
Design
Build & Unit Test
Deploy
Test(i.e. SIT, UAT, NFR, etc)
Support
Service Discovery
Service Cataloguing
Service Design
Service
Implementation
Service
Testing
Service Retirement
Service
Improvement
Service
Deployment Service
Monitoring
Project Phases SOA Asset Lifecycle
Design Time
Governance•Reference Architectures
•Service Capability Matrix
& Catalogues
•Development Standards
•Design Standards
•Programming Standards
•Security Standards
•Exception Handling
Standards
Runtime
Governance•Deployment Framework
•Exception Handling
Framework
•Continuous Integration
•Testing Framework
•Provisioning Framework
•SLA Management
•BAM
SOA Governance Framework
Supports
18 © 2013 HCL – Proprietary & Confidential
Runtime Governance
Runtime Governance can be defined as the combination of processes, tools and people
needed to support the deployment, testing and production support phases of a SOA
implementation project.
Analysis
Requirements
Design
Build & Unit Test
Deploy
Test(i.e. SIT, UAT, NFR,
etc)
Support
Service Discovery
Service Cataloguing
Service Design
Service
Implementation
Service
Testing
Service Retirement
Service
Improvement
Service
Deployment Service
Monitoring
Project Phases SOA Asset Lifecycle
Design Time
Governance•Reference Architectures
•Service Capability Matrix
& Catalogues
•Development Standards
•Design Standards
•Programming Standards
•Security Standards
•Exception Handling
Standards
Runtime
Governance•Deployment Framework
•Exception Handling
Framework
•Continuous Integration
•Testing Framework
•Provisioning Framework
•SLA Management
•BAM
SOA Governance Framework
Supports
19 © 2013 HCL – Proprietary & Confidential
Roles in SOA
Clear understanding of the Roles and Responsibilities is fundamental in any SOA
Adoption. Governance is as much about people as it is about tools and
processes.
Design Time
Governance•Reference Architectures
•Service Capability Matrix
& Catalogues
•Development Standards
•Design Standards
•Programming Standards
•Security Standards
•Exception Handling
Standards
Functional / Business
Analyst
SOA
Designer
SOA Design
Authority
SOA Testers
SOA
Architect
Requirements
Service Discovery
Service Cataloguing
Service Design
Service
Implementation
Service
Testing
Service Retirement
Service
Improvement
Service
Deployment Service
Monitoring
SOA Asset Lifecycle
Runtime
Governance•Deployment Framework
•Exception Handling
Framework
•Continuous Integration
•Testing Framework
•Provisioning Framework
•SLA Management
•BAM
SOA Governance Framework
SOA
Developer
SOA Support
Specialist
Owner Of
Contributes To
20 © 2013 HCL – Proprietary & Confidential
Asset Centric Governance with Oracle
Governance Suite
• Service Visibility
& Discovery
• Automated Harvesting
• Dependency
Management
• Human Worklow
• Design Policy
Enforcement
• IDE Integration
• Runtime Operational
Metrics Integration
• Analytics
• Service Catalogue
• Endpoint Virtualisation
• WS-Policy & WS Security
• Policy Enforcement Point and
External Gateway
• DMZ
• Native REST/JSON Support
ideal to expose API’s and
support mobile
• Robust security layer
• Runtime Performance
• SLA Management
• End-to-End Transaction
Monitoring with BTM
• Operational Metrics
• SOA Infrastructure
Management
21 © 2013 HCL – Proprietary & Confidential
Asset Centric Governance
SOA Lifecycle
Functional /Business Analyst
SOA
Developer
IDE CodeDeployment Framework
& Continuous Integration
1. Requirement
Elaboration
2. Service Discovery and
Cataloguing
Service
Catalogue
Service
Capabilities
3. Service
Implementation4. Service Deploy
and Test
SOA
Designer
2. Service Design
SOA Architect
SO
A D
esig
n-T
ime G
overn
ance
Process ModelsUse Cases Business Rules
Catalogue
Service Detail Design
SOA High Level
Design
Production
SOA Systems
Harvest / Ops Metrics
SOA Quality Tester
& Support
Specialist
Dev, CI, Test
SOA Systems
Dis
co
ve
r
Su
bm
it
Co
nsu
me
Ha
rve
st
22 © 2013 HCL – Proprietary & Confidential
Asset Centric Governance
SOA Governance Framework Modelled in OER
23 © 2013 HCL – Proprietary & Confidential
Asset Centric Governance
Logical Architecture
SOA/BPM Development ServerSOA Governance Server
OBPM 10g Domain
OER Domain
DB Server
SOA Domain
Weblogic (10.3.6) Admin Server 1
Weblogic (10.3.6) Managed Server
Administration Console
Oracle 11g DB(11.2.0.x)
Enterprise Manager
SOA / BPM Suite
(11.1.1.6.x)
SOAINFRA OSB SchemaMDSOER_DATAOER_INDEXUDDINODE
Weblogic (10.3.6) Managed Server
OWSM Policy
Manager
MDS
Weblogic (10.3.6) Managed Server
Weblogic (10.3.6) Admin Server
Administration Console
Weblogic (10.3.3) Admin Server
Weblogic (10.3.3) Managed Server
OBPM 10g(10.3.2)
OER Asset Registration Workflows
Weblogic (10.3.6) Managed Server
OER(11.1.1.6.x)
Administration Console
Weblogic (10.3.6) Managed Server
BAM
Weblogic (10.3.6) Managed Server
OSB (11.1.1.6.x)
SOA/BPM Test Server(s) SOA/BPM Preproduction Servers
SOA/BPM Production Servers
OSRStandalone(11.1.1.6.x)
OAS 10.1.3.4.1
OC4J
OER Publisher Enterprise
24 © 2013 HCL – Proprietary & Confidential
About HCL
19%
31 CO UNT RI E S
54%
R E V E N U E B Y G E O G R A P H Y
North America
27% Europe
Asia 90,000
P E O P L E
$6.3B R E V E N U E
3 - Y R C A G R
26%
2
4
Key Middleware Customers
Our Relevance
Leading Global Oracle Partner
Luis is HCL’s Director for Oracle Fusion Middleware solutions in the EMEA, ASIA
Pacific regions. With more than 11 years of experience implementing IT solutions
across the globe, Luis has successfully delivered several large and complex
Service Oriented Architecture (SOA) solutions for Fortune 500 companies. Luis
is focused on assisting customers leverage the full range of Fusion Middleware
offerings to resolve integration problems, improve their businesses and establish
effective technology roadmaps.
Luis is an expert in SOA and also is a thought leader in this field and in an effort
to share his real-life experiences when implementing complex SOA solutions,
Luis has written his first book, “Oracle SOA Governance 11g Implementation”,
published by PACKTPUB.
Luis Weir Global Director – Fusion Middleware Solutions
25 © 2013 HCL – Proprietary & Confidential
Oracle SOA Governance 11g
Implementation Main features available:
Understanding SOA Governance, its key concepts, goals and objectives and how to implement these using the Oracle SOA Governance Suite.
Execute a SOA Maturity Assessment in order to capture the SOA Governance challenges specific to your organization.
Implement Oracle Enterprise Repository (OER) and Oracle Service Registry (OSR) to address your organisation’s SOA Governance Design-time and Runtime requirements.
Implement Runtime Governance using Oracle Web Service Manager (WSM) security policies and by leveraging Oracle Enterprise Manager’s (OEM) key management features.
Achieve close-loop governance by feeding OER with runtime operational metrics and enforcing service reuse in OER.
Accelerate governance and also MDM adoption by implementing AIA 11g Foundation Pack.
Resources:
Store: http://www.packtpub.com/oracle-soa-governance-11g-implementation/book
Book Description: http://www.soa4u.co.uk/2013/09/oracle-soa-governance-11g.html
Video Interviews: http://www.youtube.com/watch?v=Ohn06smVKVw
2
5