on premises iaas paas and saas
play

On-premises, IaaS, PaaS and SaaS Rob Aragao & Stan Wisseman - PowerPoint PPT Presentation

Oct 10, 2022 •353 likes •613 views

The Hybrid Enterprise: Working Across On-premises, IaaS, PaaS and SaaS Rob Aragao & Stan Wisseman #MicroFocusCyberSummit Primary Goal of Businesses Today Drive Digital Transformation !! 2 For Most Organizations, Digital Transformation =

  1. The Hybrid Enterprise: Working Across On-premises, IaaS, PaaS and SaaS Rob Aragao & Stan Wisseman #MicroFocusCyberSummit

  2. Primary Goal of Businesses Today Drive Digital Transformation !! 2

  3. For Most Organizations, Digital Transformation = Hybrid IT Multiple Multiple Pressures Lower IoT deployment consumption and IT run to proliferation models financing options innovate budgets Downward pressure to Hybrid means Designing a payment Transformations Huge increase in implement the latest working with a wide structure that works even with increased data coming into features and variety of within OpEx and demands to drive and through your functionality into deployment models CapEx budgets down IT costs environments systems 3

  4. Organizations Want Hybrid IT However, many have bi- modal IT operations that won’t scale 40% 1 60% 1 Percentage of IT Spend Finance, HR, Marketing, Head of IT Budget Owners /CIO Operations, Engineering ? Cloud Traditional Apps Apps 12% 1 3% 1 2015 Budget Growth App Dev, Mobile Sites, How can I Core IT Systems, Data e-Commerce Sites, Web Managed Systems • Ops Driven Traditional The Idea • Apps Driven support both? Centers, Infrastructure, ERP Business Apps • Cost Focused • Agility Focused Business Economy Disruptive Innovation, Business as Usual, New Business Process, Keep the Lights On, Business Outcome Competitive Advantage Improved User Experience 1= Source CEB Analyst Group (UK based)

  5. Challenges with the Current State Regulatory & compliance challenges Multiple pools of IT resources • • No centralized view into data integrity & security Results in under utilization of costly assets • • Difficulties in meeting compliance timeframes Unique characteristics of underlying assets Unique management and security High long-term cost of ownership • No consistency in management tools/procedures • Multiple environments for IT to learn & manage • Inconsistent security creates vulnerabilities • Escalating costs of public cloud at scale 3 rd party security or data sovereignty challenges • 5

  6. A Preferred Architecture Has Evolved in Most Organizations PaaS is used for rapid application development and PaaS testing before apps are moved to their best execution venue IaaS IaaS is adopted for rapid provisioning of compute, storage, and network resources SaaS Common business processes (such as CRM, marketing, and human resources) are migrated to various SaaS services On- prem On-premises servers, storage, and networks are maintained for high-value/high-risk workloads (such as financial data and intellectual property) Source: Dimensional Research – Hybrid Cloud Usage Poses New Challenges for Monitoring Solutions – March 2018

  7. What We Are Seeing  92% of organizations are using multiple cloud vendors  88% of cloud-based apps share data and services with on-premise apps  64% of cloud-based apps share data and services with other cloud-based apps  The #1 monitoring need for hybrid environments is Security Monitoring Source: Dimensional Research – Hybrid Cloud Usage Poses New Challenges for Monitoring Solutions – March 2018 7

  8. Complexities Involved with a Hybrid Architecture Source: 451 Research 8

  9. Hybrid IT Opens Up Many Opportunities … But it Can Also Expose the Enterprise to Greater Risk Identities Secure Applications Data On-Premises Cloud

  10. Top Security Concerns for an Evolving Hybrid Infrastructure Maintain consistent access security and authorization controls across environments Secure movement of data and workloads across environments Secure data residing and processed in a third-party or hosted environment Maintain consistent network security policies for security domains Ensure compliance with regulatory and policy requirements Source: 451 Research 10

  11. Hybrid IT Attacks Outbound Attacks: Bot Net Zombies Distributed Denial of Service Inbound Attacks: Port Scanning Port Scanning SSH/RDP Brute Force Distributed Denial Of Service Advanced Persistent Threat SSH/RDP Brute-Force Internet Zero Day Poor Configurations Phishing / Malware Hosting Advanced Persistent Threats Zero Day Exploits Targeting Cloud Services: Unpatched VM images On-Cloud Services On-Cloud Pivot (Workloads, Systems, Cross-Tenant Attack Applications, Data) Insecure Usage Targeting Trust Perimeter: Infrastructure Attacks: Hypervisor Breakout Privilege Escalation Exposed Servers Stolen Credentials Cloud Default Configurations Known Attack Vectors Infrastructure Data Exposure Poor System Configurations Weak Internal Security Under-Cloud Pivot Isolation Failures

  12. Establish a Risk-based Approach Assess security investments and posture  How will attacks likely occur? How will you spot them on each platform? What corrective action will you take? Transform from silos to a comprehensive view Actionable Security  On-prem traditional systems, SaaS, IaaS, and PaaS all of which Intelligence should fall under the same security umbrella Optimize to proactively improve security posture Manage security effectively  Including internal SLAs and SLAs related to cloud providers. Maintain SLAs in the context of your security program Moving from Reactive to Proactive Information Security & Risk Management

  13. Security Management Has also Moved to a New Level of Complexity! Identities Applications Data 13

  14. Essential to Enterprise Digital Transformation Secure and enable the relationships between identities, applications, and data… regardless of how or where things are deployed Identities Secure & Empower Applications Data On-Premises Cloud

  15. Simplified Security for Hybrid IT Environments Need a single security toolset that covers public, private, and on-premises systems 15 Source: David Linthicum, “How to choose the right security toolset for hybrid cloud”

  16. An Identity-Centric Approach A Desired State  Scale Employees  Centrally managed identities providing a single view  Multiple delivery models (on-prem, SaaS, hybrid) Identity Powered Security  Clear roles and relationships modelled IDENTITY IDENTITY  Risk based adaptive security Partners Customers  Business benefit – solution IDENTITY B2B B2C architecture  Clear consistent governance, privacy controls and privilege management implementations  Experience embedded at the beginning

  17. Cloud based IDaaS services can provide core capabilities, but is not suited for complex requirements. Hybrid IAM can offer the best of both. CLOUD HYBRID ON-PREMISE Standard solution Standard though extensible solution Flexible/extensible solution Data hosted in the cloud Data hosted where desired Data hosted on-prem Less staff required to maintain Less staff required to maintain Internal staff to maintain Often limited to cloud access Support for cloud, on-prem, and Support for cloud, on-prem, and management custom applications and processes custom applications and processes Not suited to complex on-premise use Well suited for complex on-premises Well suited for complex on-premises case use cases use cases

  18. IAM as a Service Deployment Architecture Hosted Apps Hybrid IAM as a Service Solution Customers, Clients, External and Authenticate Remote Users • Policy Engines Access Provisioning De- Governance • Workflow Management Provisioning • User Self Service • Administration • Reporting Browser Mobile Device • Compliance Dashboards SSO SSPR 2FA Federation PAM Secure Connection Cloud Authentication and Self Service in cloud IAS for accessing internal, external and SaaS applications Secure communication to execute policies on premise Identity Synchronization to cloud Local/Internal Authentication On Premise IDP Password On Premise Enterprise Update Clients Resources Contractor Database Resource 1 LDAP JDBC Resource 2 Customized Client Connectors Resource 3 Premises

  19. Secure Software Development Design apps securely and to run in Hybrid IT environments Attacker Software & data Intellectual property Customer data Hardware Business processes Network Trade secrets

  20. Data Security Health records your care Protecting information wherever it resides provider manages for you Payments made to you Banks’ data about your finances and accounts Your email Your interactions with correspondence SaaS applications Your Telco’s information about your account Your credit rating information Your private email to and from your smartphone Your customers’ data. Your organizational data.

  21. What does contemporary data-security enable? Private-public data sharing for Securing government & AI insights and big data & IoT defense health data privacy Enabling security leaders to say “ Yes ” to business demands Adopt xaaS IT solutions for Modernizing security for legacy hybrid computing opex data security risks economies 21 (C) 2017 Micro Focus

  22. Security Monitoring for Hybrid IT  Applies to public, private and legacy systems AWS IAM Amazon AWS  Proactive security monitoring EC2 CloudTrail Amazon mechanisms and approaches CloudWatch can spot and fight attacks in a timely manner  Security orchestration, automation, and response Security (SOAR) solutions can provide Monitoring efficiencies and repeatability in the handling of high fidelity alerts 22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Securing Cloud Deployments S.S.Mulay Sr. V.P. Engineering April 6, 2013 Cloud at a Glance

Securing Cloud Deployments S.S.Mulay Sr. V.P. Engineering April 6, 2013 Cloud at a Glance

Securing Cloud Deployments S.S.Mulay Sr. V.P. Engineering April 6, 2013 Cloud at a Glance Resource Pooling Essential Features Network On Self Elasticity Metering Access Demand Service IAAS IAAS Service Models PAAS PAAS SAAS SAAS

502 views • 16 slides
Introduction to PaaS and IaaS Cloud Computing Roberto Beraldi Models for Cloud Computing

Introduction to PaaS and IaaS Cloud Computing Roberto Beraldi Models for Cloud Computing

Introduction to PaaS and IaaS Cloud Computing Roberto Beraldi Models for Cloud Computing (SaaS)Software as a Service XaaS (PaaS) Platform as a Service (IaaS) Infrastructure as a Service Models for cloud computing CC in a nutshell Cloud

1.15k views • 83 slides
D E P LOY M L B OT S L I K E A B O S S W I T H C I / C D W I L L I A M GA L I N D E Z A R

D E P LOY M L B OT S L I K E A B O S S W I T H C I / C D W I L L I A M GA L I N D E Z A R

D E P LOY M L B OT S L I K E A B O S S W I T H C I / C D W I L L I A M GA L I N D E Z A R I A S @ W i l l i a m A r i a s Z 1. Why? One Person Band IaaS, PaaS, SaaS 2.How? Define the Symphony Symphony: Model Life cycle View Symphony:

254 views • 23 slides
Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes Ceph Storage Operation NVRAMOS 2019 10/28/2019 Cloud Service Model On Premises IaaS CaaS PaaS SaaS Applications Applications

660 views • 36 slides
A Practical Road to SaaS' in Python Flask Sentry Hi, I'm Armin ... and I do Open Source,

A Practical Road to SaaS' in Python Flask Sentry Hi, I'm Armin ... and I do Open Source,

Armin @mitsuhiko Ronacher A Practical Road to SaaS' in Python Flask Sentry Hi, I'm Armin ... and I do Open Source, lots of Python and SaaS I love Open Source Therefore I love SaaS SaaS Multi Tenant But also On Premises?

881 views • 85 slides
Buying Everything as a Service Pierre Mitchell Chief Research Officer Spend Matters Mark

Buying Everything as a Service Pierre Mitchell Chief Research Officer Spend Matters Mark

Buying Everything as a Service Pierre Mitchell Chief Research Officer Spend Matters Mark Trowbridge, CPSM, C.P.M., MCIPS Principal Strategic Procurement Solutions LLC June, 2015 Session Objectives Review XaaS: SaaS, PaaS, IaaS, and

1.12k views • 29 slides
Private Cloud Ravi Mula Research Associate Dept. of CS Outline 1. Cloud Classifications -

Private Cloud Ravi Mula Research Associate Dept. of CS Outline 1. Cloud Classifications -

Private Cloud Ravi Mula Research Associate Dept. of CS Outline 1. Cloud Classifications - PaaS, SaaS, IaaS, FaaS 2. Terminology 3. Traditional vs Hyper-converged Architectures 4. Nutanix a. Architecture b. Data Management &

725 views • 39 slides
JAVA IN THE CLOUD PAAS PLATFORM IN COMPARISON Eberhard Wolff Architecture and Technology Manager

JAVA IN THE CLOUD PAAS PLATFORM IN COMPARISON Eberhard Wolff Architecture and Technology Manager

JAVA IN THE CLOUD PAAS PLATFORM IN COMPARISON Eberhard Wolff Architecture and Technology Manager adesso AG, Germany 12.10. 11 Agenda A Few Words About Cloud Java and IaaS PaaS Platform as a Service Google App Engine

601 views • 37 slides
Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher

Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher

Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher education and research community in general and of an NREN in specific. CLOUD COMPUTING SaaS PaaS STaaS IaaS Utility GRID computing

458 views • 9 slides
Big ig Dat ata Pro roducts ducts an and d Pract actice ices Venkatesh Vinayakarao

Big ig Dat ata Pro roducts ducts an and d Pract actice ices Venkatesh Vinayakarao

Big ig Dat ata Pro roducts ducts an and d Pract actice ices Venkatesh Vinayakarao venkateshv@cmi.ac.in http://vvtesh.co.in Venkatesh Vinayakarao (Vv) Cloud Platforms Cloud Services: SaaS PaaS IaaS 2 Cloud Platforms

401 views • 38 slides
Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the Cloud? How the Cloud is delivered: Iaas, PaaS and SaaS Cloud security challenges and risk Current Cloud security report Cloud security technology

302 views • 27 slides
A Cloud Benchmark Suite Combining Micro and Application Benchmarks Joel Scheuner, Philipp Leitner

A Cloud Benchmark Suite Combining Micro and Application Benchmarks Joel Scheuner, Philipp Leitner

A Cloud Benchmark Suite Combining Micro and Application Benchmarks Joel Scheuner, Philipp Leitner Joel Scheuner scheuner@chalmers.se joe4dev @joe4dev Context: Public Infrastructure-as-a-Service Clouds IaaS PaaS SaaS Applications

662 views • 22 slides
Lessons Learned in Deploying PaaS Colin Humphreys What we have done and why we have done it

Lessons Learned in Deploying PaaS Colin Humphreys What we have done and why we have done it

Lessons Learned in Deploying PaaS Colin Humphreys What we have done and why we have done it Why? PaaS PaaS in ALM Experiences Future I'm a consumer I'm not a PaaS vendor We help our clients deliver value What is value? What is

688 views • 50 slides
Making the Move from IaaS to IaaS+ Chip Childers VP

Making the Move from IaaS to IaaS+ Chip Childers VP

Making the Move from IaaS to IaaS+ Chip Childers VP Product Strategy for CumuLogic @chipchilders | www.cumulogic.com IaaS+ Acronym 1) a combinaEon

790 views • 16 slides
Atlassian Hybrid Cloud/On-Premises Software Delivery and the journey to 300,000 applications in the

Atlassian Hybrid Cloud/On-Premises Software Delivery and the journey to 300,000 applications in the

Atlassian Hybrid Cloud/On-Premises Software Delivery and the journey to 300,000 applications in the cloud GEORGE BARNETT SAAS PLATFORM ARCHITECT ATLASSIAN About me Ive been building infrastructure for companies since the late

883 views • 56 slides
Best Practices for Migrating MySQL to the Cloud Juan Pablo Arruti Percona Agenda IaaS vs

Best Practices for Migrating MySQL to the Cloud Juan Pablo Arruti Percona Agenda IaaS vs

Best Practices for Migrating MySQL to the Cloud Juan Pablo Arruti Percona Agenda IaaS vs DBaaS Migrating Data Replication between On-Premises and Cloud Testing Cloud Environments High Availability Monitoring

885 views • 59 slides
Hybrid energy version February, 2016 What is a Telecom Hybrid Solution? A solution that

Hybrid energy version February, 2016 What is a Telecom Hybrid Solution? A solution that

Hybrid energy version February, 2016 What is a Telecom Hybrid Solution? A solution that provides integrated management of multiple energy sub-systems to support a telecom site, irrespective of where it is deployed Hybrid energy Telecom

174 views • 16 slides
African Market Opportunities THE MARKET POTENTIAL OF THE AFRICAN REGION MUST NOT BE UNDERESTIMATED

African Market Opportunities THE MARKET POTENTIAL OF THE AFRICAN REGION MUST NOT BE UNDERESTIMATED

A Hybrid Registry Model for African ccTLDs MARCH 2016, ICANN-55, MARRAKECH Neil Dundas neil@dns.business African Market Opportunities THE MARKET POTENTIAL OF THE AFRICAN REGION MUST NOT BE UNDERESTIMATED Popula(on: close to 1,2 billion

541 views • 8 slides
First impressions on the performance of the new BSD2000-3D

First impressions on the performance of the new BSD2000-3D

First impressions on the performance of the new BSD2000-3D GE450W hybrid deep hyperthermia system G.C. van Rhoon, A. Ameziane, D. de Jong, H.T.

322 views • 11 slides
S91030 - Hybrid Machine Learning with the Kubeflow Pipelines and RAPIDS Sina Chavoshi Cloud AI

S91030 - Hybrid Machine Learning with the Kubeflow Pipelines and RAPIDS Sina Chavoshi Cloud AI

S91030 - Hybrid Machine Learning with the Kubeflow Pipelines and RAPIDS Sina Chavoshi Cloud AI Strategy: The right approach for the right problem Building blocks Platform Solutions Cloud AI Strategy: The right approach for the right

782 views • 35 slides
Complexity in spectrum auctions: how much is too much? 6th Annual Americas Spectrum Management

Complexity in spectrum auctions: how much is too much? 6th Annual Americas Spectrum Management

Complexity in spectrum auctions: how much is too much? 6th Annual Americas Spectrum Management Conference Richard Marsden Managing Director, NERA Economic Consulting New York City NERA Recent experience Incentive Auction Other recent

342 views • 11 slides
Hybrid Email-to-Web/Telephone Survey of Chico Area Recreation & Park District Voters

Hybrid Email-to-Web/Telephone Survey of Chico Area Recreation & Park District Voters

Hybrid Email-to-Web/Telephone Survey of Chico Area Recreation & Park District Voters Executive Summary of Results May 2019 Methodology Hybrid email-to-web/telephone survey of Chico Area Recreation & Park District likely voters

604 views • 14 slides
Hybrid Energy Storage System (HESS) Product Overview Smart Energy Storage System Complete

Hybrid Energy Storage System (HESS) Product Overview Smart Energy Storage System Complete

Hybrid Energy Storage System (HESS) Product Overview Smart Energy Storage System Complete Hybrid Solution Powered by Lithium Ion (Li-ion) batteries Compact dimensions Capable to run sustained loads Voice enabled (Google

346 views • 13 slides
Introduction of the First Green Zone Program in the World Overview What is the Green Zone

Introduction of the First Green Zone Program in the World Overview What is the Green Zone

Introduction of the First Green Zone Program in the World Overview What is the Green Zone Program? Diesel to Hybrid to Electric Path How does it work? Where are the Green Zones? Next Steps Advantages of the Green Zone

158 views • 14 slides

More recommend