Difference between revisions of "Technology Trends/Cloud Management Platform"
Felix.legros (talk | contribs) |
|||
(4 intermediate revisions by 2 users not shown) | |||
Line 18: | Line 18: | ||
<th>[[Tendances_Technologiques|Tendances Technologiques]]</th> | <th>[[Tendances_Technologiques|Tendances Technologiques]]</th> | ||
<th> / </th> | <th> / </th> | ||
− | <th> | + | <th>Platforme de Gestion d'Infonuagique<!--[[Tendances_Technologiques/Plateforme_de_Gestion_Infonuagique|Plateforme de Gestion Infonuagique]]--></th> |
</tr> | </tr> | ||
</table> | </table> | ||
Line 34: | Line 34: | ||
<tr> | <tr> | ||
<th>Latest version</th> | <th>Latest version</th> | ||
− | <td> | + | <td>February 14, 2020</td> |
</tr> | </tr> | ||
<tr> | <tr> | ||
Line 173: | Line 173: | ||
<p class="expand mw-collapsible-content">Security management of Cloud Services should be managed in accordance with GC policies. SSC provides and enables secured connectivity, encryption/ tokenization, and identity credential and access management (ICAM). Creation of consistent governance procedures across cloud environments to improve security, compliance, and adherence to best-practices is a major consideration.</p> | <p class="expand mw-collapsible-content">Security management of Cloud Services should be managed in accordance with GC policies. SSC provides and enables secured connectivity, encryption/ tokenization, and identity credential and access management (ICAM). Creation of consistent governance procedures across cloud environments to improve security, compliance, and adherence to best-practices is a major consideration.</p> | ||
− | <p class="expand mw-collapsible-content">SSC must ensure an appropriate CMP strategy is founded on industry and public standards, within a solid CMP framework, drawing from such foundational best practices, including: Object Management Group’s – Cloud Working Group Practical Guide to Cloud Management Platforms (Cloud Standards Customer Council, 2017); the GC Cloud Computing Security Risk Management Approach and Procedures; the GC Right Cloud Selection Guidance; the GC Cloud Computing Adoption Strategy<ref>Government of Canada. (2019, June 17). <i>[https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-cloud-adoption-strategy.html Government of Canada Cloud Adoption Strategy: 2018 update]</i>. Retrieved from canada.ca</ref>; the ITSG-33 – IT Security Risk Management: A Lifecycle Approach<ref>Canadian Centre for Cyber Security. (2018, November 5).<i>[https://cyber.gc.ca/en/guidance/it-security-risk-management-lifecycle-approach-itsg-33 IT Security Risk Management: A Lifecycle Approach (ITSG-33)]</i>. Retrieved from cyber.gc.ca</ref>; and the Shared Services Canada – Cloud Service Broker Concept of Operations (ConOps) – October 3, 2017<ref>Tremblay, D. (2017, April 21). <i>[http://cradpdf.drdc-rddc.gc.ca/PDFS/unc280/p805540_A1b.pdf System Concept of Operations (CONOPS)]</i>. Retrieved from cradpdf.drdc-rddc.gc.ca</ref></p> | + | <p class="expand mw-collapsible-content">SSC must ensure an appropriate CMP strategy is founded on industry and public standards, within a solid CMP framework, drawing from such foundational best practices, including: Object Management Group’s – Cloud Working Group Practical Guide to Cloud Management Platforms (Cloud Standards Customer Council, 2017); the GC Cloud Computing Security Risk Management Approach and Procedures; the GC Right Cloud Selection Guidance; the GC Cloud Computing Adoption Strategy<ref>Government of Canada. (2019, June 17). <i>[https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-cloud-adoption-strategy.html Government of Canada Cloud Adoption Strategy: 2018 update]</i>. Retrieved from canada.ca</ref>; the ITSG-33 – IT Security Risk Management: A Lifecycle Approach<ref>Canadian Centre for Cyber Security. (2018, November 5).<i>[https://cyber.gc.ca/en/guidance/it-security-risk-management-lifecycle-approach-itsg-33 IT Security Risk Management: A Lifecycle Approach (ITSG-33)]</i>. Retrieved from cyber.gc.ca</ref>; and the Shared Services Canada – Cloud Service Broker Concept of Operations (ConOps) – October 3, 2017.<ref>Tremblay, D. (2017, April 21). <i>[http://cradpdf.drdc-rddc.gc.ca/PDFS/unc280/p805540_A1b.pdf System Concept of Operations (CONOPS)]</i>. Retrieved from cradpdf.drdc-rddc.gc.ca</ref></p> |
<p>SSC will require a diverse skill set to deal with the array of tools across multiple functional categories and many cloud platforms to effectively leverage CMPs capabilities in functional categories and cross-platform consistency. CMPs are change enablers, where unique skills and expertise are required in order to effectively and efficiently audit, consume and Broker Cloud Services. Plans need to be carefully developed and coordinated, including skills training, processes, workflows and culture, so that incremental sustained progress can be made to successfully manage and realize the benefits from Cloud computing.</p> | <p>SSC will require a diverse skill set to deal with the array of tools across multiple functional categories and many cloud platforms to effectively leverage CMPs capabilities in functional categories and cross-platform consistency. CMPs are change enablers, where unique skills and expertise are required in order to effectively and efficiently audit, consume and Broker Cloud Services. Plans need to be carefully developed and coordinated, including skills training, processes, workflows and culture, so that incremental sustained progress can be made to successfully manage and realize the benefits from Cloud computing.</p> |
Latest revision as of 14:21, 14 February 2020
|
|||||||
---|---|---|---|---|---|---|---|
200px | |||||||
Status | Translation | ||||||
Initial release | September 18, 2019 | ||||||
Latest version | February 14, 2020 | ||||||
Official publication | Cloud Management Platform.pdf | ||||||
|
Cloud Management is the process of evaluating, monitoring and optimizing cloud computing based solutions and services to produce the desired efficiency, performance and overall service level required.[1]
Business Brief
Cloud Management solutions, known as Cloud Management Platforms (CMP), help in cloud optimization, storage allocation, management, and delivery of computing services. Deployment models such as private, public, hybrid, and community cloud cannot be simply handled and managed with virtualization alone. Due to the ever increasing complexity of cloud storage, enterprises are onboarding CMP solutions in order to manage the deployment models currently in use as well as to manage the integration of deployments they intend on adopting.[2]
A Cloud Management Platform (CMP) is a suite of integrated products and software tools that provide for the management of public, private, and hybrid cloud environments.[3] This includes integrated software tools to provide governance, life cycle management, brokering and automation for managed cloud resources across functional areas such as: provisioning and orchestration; service request management; inventory and classification; monitoring and analytics; cost management and resource optimization; cloud migration, backup and disaster recovery; and identity, security and compliance.[4] Although an organization can use a CMP exclusively for a private or public cloud deployment, these toolsets commonly target hybrid and multi-cloud models to help centralize control of various cloud-based infrastructures.[5]
Basic CMP product characteristics include incorporating self-service interfaces, provision system images, enable metering and billing, and provide for some degree of workload optimization through established policies.[6]
Technology Brief
Cloud management software is typically deployed as a virtual machine (VM) into an existing cloud environment whether it is on-premise or using SaaS. The application server, which usually contains the web interface and the software itself, relies on a database server to store the information and the data that is collected from the different cloud environments through an API (Application Programming Interface).[8]
A CMP provides broad cloud management functionalities atop both public provider platforms and private cloud platforms. CMPs manage cloud services and resources that are distributed across multiple cloud platforms. Depth of functionality and broad cross-platform consistency are two major factors for considering a CMP.
One of the primary roles of a CMP is to provide a consolidated control plane for IT operations integration of existing application lifecycle tools, hypervisors, and cloud platforms. CMPs must integrate with internal and external systems to manage multi-cloud services. The ability to support both published APIs and provide for customization is a critical capability.
Industry Usage
The global CMP market, in 2018, was valued at USD 8,182.2 million and is expected to reach USD 26,767.0 million, a CAGR (Compound Annual Growth Rate) of 18.4% during the forecast future period. (Market Watch, 2019) Whereas the Multi-Cloud Management market size is expected to grow from USD 1,169.5 million in 2017 to USD 4,492.7 million by 2022, at a CAGR of 30.9%.[9]
CMP market growth has been attributed to enterprise needs and demands for greater control over IT spending and usage, help provide a surge in adoption of heterogeneous and multimodal IT service delivery environments, rapid deployment of virtualized workloads, and improved operational efficiency.
Cloud computing simplifies the acquisition of many services, amplifying the need for integrated CMP services that help to continually monitor and optimize the benefits realized from Cloud Services, while proactively managing risks.
Most industries using CMPs purchase it from third party vendors. Some of the most popular cloud management platforms being used by industries are: Cisco Cloud Center, BMC Cloud Lifecycle Management, Morpheus and IBM Cloud Orchestrator.
Canadian Government Use
In the summer of 2016 the Government of Canada (GC) published the GC Information Technology Strategic Plan (GC ITSP) and the GC Cloud Adoption Strategy, known as the “Right-Cloud-Adoption-Strategy”. The GC Cloud Adoption Strategy promoted a series of adoption principles for GC Chief Information Officers (CIOs) to consider when choosing and using IT services. This included considerations on where cloud could benefit departments and when cloud was an appropriate deployment model. The onus was on each department’s CIO to demonstrate which deployment model was right for their business context, and cloud solutions were not necessarily the default options for deployment.[11]
The “Use Cloud First” perspective change recognizes that cloud remains the preferred option for IT delivery, with Public Cloud being the preferred model for all cloud deployments.[14] In a public cloud model, GC organizations share secure tenancy with other consumers of a cloud service, including private companies, non-profits and individuals.
Treasury Board of Canada Secretariat (TBS) is responsible for GC enterprise governance, strategy and policy for cloud services, including oversight and risk assessment of cloud service requests from GC departments. SSC is responsible for providing a light-touch cloud-brokering service by implementing contracts with cloud service providers and thereby enabling departments to use a self-service model for provisioning and managing cloud resources (for example, compute, storage, platforms). Public Services and Procurement Canada (PSPC) may also implement contracts for cloud services. PSPC will work closely with SSC to leverage PSPC’s capabilities and to collaboratively build contracting terms and security requirements.[15]
SSC, as cloud broker, is in the process of procuring CMPs for use in the GC Cloud. The CMPs will effectively integrate with SSC’s Client Relationship Management (CRM) to help automate and manage the cloud comprehensively and efficiently.
The SSC CMP strategy is based on international standards, using an extensible CMP framework, largely founded on collaborative work under the Object Management Group – Cloud Working Group “Practical Guide to Cloud Management Platforms”.
Implications for Government Agencies
Value Proposition
A CMP plays an essential role to enable resource visibility, simplify cloud management, and optimize the utilization of resources in a multi-cloud environment.
Cost Insights and Efficiencies
The primary reason enterprises implement CMPs is to manage resource usage and reduce overall cost. A CMP provides cost efficiencies by automating client consumption tracking and resource spending.
Resource Management and Automation
A CMP platform provides visibility to Cloud resource management of virtual resources (application, server, storage, and network) and delivers services on-demand when needed. CMP resource management and automation capabilities include: discovery applications, servers, storage, networks/ connectivity, and services residing within both Public and Private Cloud environments, while maintaining an accurate inventory of services and assets on an ongoing basis.
Provide access to all of cloud resources — public, private, and hybrid from a single console.
A CMP platform is based on automatic orchestration; for example, it automates the process of finding spare resources on the network. Instead of waiting for the IT team to discover wasted resources, the CMP automatically fixes resource usage problems while continuing to monitor the performance of the cloud-based resources 24/7 to improve productivity and user experiences.[16] The CMP increases efficiencies by automating tasks, such as spinning down of underutilized resources.
Accurate, real-time analysis and reporting of consumption along with predictive analytics is required to control costs and optimize the usage of Cloud Services. Resources that are not being used will be a drain on the organization’s finances. By tracking consumption and resource spending, a CMP will ensure that every resource is being efficiently utilized, and identify the amount of wasted resource spending.
Improved Governance and Security
Governance implies control and oversight by the organization over policies, procedures, and standards for application development and information technology service acquisition, as well as the design, implementation, testing, use, and monitoring of deployed or engaged services.[17] A CMP platform manages Hybrid Cloud Services in accordance with an organizations policies.
CMPs are designed to help with security and compliance by automatically orchestrating change processes, enforcing standardized configurations, and applying policy-based governance to workloads. IT process and procedures provide corporate governance and safeguards.[18] CMPs provide provisioning automation by orchestrating overall approval, deployment, and stage management processes. This provides frictionless consumption for DevOps engineers, while at the same time ensuring adherence to corporate IT governance policies.
Providing Integration
A CMP’s capabilities provide the integration with internal and external systems to manage Multi-Cloud Services. The ability to support both published APIs and provide for customization (including middleware) is a key capability. Helping integrate and exchange data within CMP elements and other enterprise management services is key for cloud services to work efficiently and flexibly. Flexible integration increases an organization’s ability to share data between existing systems both within a CMP itself and between a CMP and other enterprise applications to automate workflows.
Challenges
Deploying, integrating and maintaining a CMP solution isn’t as simple as it sounds. Businesses want to take advantage of the benefits the cloud can offer, however they still need to manage their cloud operations and resources even with a CMP. Integrating a CMP, or suite of CMPs, across a multitude of environments and varying legacy models can be extremely challenging.
Organizations will need to understand that a CMP will greatly amplify the need for well-thought-out governance procedures and compliance measures. While CMPs can help simplify existing governance management, it doesn't alleviate the need for pre-established governance models to be in place already on the network. Considering the wide availability of Cloud Computing services, and the lack of organizational governance controls over employees engaging with such services, governance can be a source of problems.
Lastly, the challenge of having the right staff with the right skills is a major challenge for organizations who require CMPs to be customized for their particular enterprise architecture.
Considerations
Utilizing Cloud Computing without adequate management, oversight, and governance is poor IT practice, the risks to the networks, data centres, and data itself are tremendous. CMPs can help effectively and efficiently manage cloud services across providers and deployment models.
SSC should be cautious determining the possible long-term ramifications of procuring CMPs instead of a subscription of services. While most CMPs provide integration with many of the same cloud service providers and private cloud infrastructures, SSC should pay close attention to the fact that some notable vendor differences exist, which can influence a procurement decision. Vendor lock-in is a major concern for CMPs and organizations can possibly find themselves in a situation where a procured CMP may work but may require some customization not permissible under the procurement contract agreement.
SSC should be aware that the CMP market is large, complex, and ever-changing. Some products are directly available from Cloud Service Providers (CSPs) or from their catalogue offerings via their partners. Other products focus directly on supporting the management of Hybrid-Clouds and multi-Clouds, and are separate offerings that may or may not be offered within a CSP catalog. Other products call themselves CMP products, but really support the goals of CMP (e.g. service management, reporting), but were never designed and architected with a primary objective of being a CMP product. CMPs focus on providing broad functionality across the cloud management domain, but their functionality scope is increasingly being challenged by the quick pace of innovation of hyper scale public cloud providers. When purchasing and deploying a CMP, SSC should have the plan and strategy to handle the imbalanced development between CMP and the cloud technology.
As a Cloud Provider and Cloud Broker to the GC, SSC will benefit from choosing the right CMP since SSC is in the position to broker the public clouds to GC and to operate the private clouds on Premise. SSC will manage and control the cloud resources from different public providers with different cloud platforms and the consistent and consolidated management platform becomes a key consideration. SSC can leverage broad cross-platform capabilities and deep platform-specific functions in each cloud platform considering balanced requirements of efficient consistency across different cloud platforms with access to different native functionalities within an individual cloud. The CMP will effectively integrate with SSC’s Client Relationship Management (CRM) to help automate and manage the cloud comprehensively and efficiently.
SSC will require a diverse skill set to deal with the array of tools across multiple functional categories and many cloud platforms to effectively leverage CMPs capabilities in functional categories and cross-platform consistency. CMPs are change enablers, where unique skills and expertise are required in order to effectively and efficiently audit, consume and Broker Cloud Services. Plans need to be carefully developed and coordinated, including skills training, processes, workflows and culture, so that incremental sustained progress can be made to successfully manage and realize the benefits from Cloud computing.
References
- ↑ technopedia. (2019, September 18). Cloud Management. Retrieved from www.techopedia.com
- ↑ Markets and Markets. (2014). Cloud Management Platform Market: Worldwide Forecasts and Analysis (2014 – 2019). Retrieved from marketsandmarkets.com
- ↑ Gartner. (2019, September 18). Cloud Management Platforms. Retrieved from gartner.com
- ↑ Gartner. (2019, September 18). Reviews for Cloud Management Platforms. Retrieved from gartner.com
- ↑ Rouse, M. (2018, April 30). cloud management platform. Retrieved from searchcloudcomputing.techtarget.com
- ↑ Gartner. (2019, September 18). Cloud Management Platforms. Retrieved from gartner.com
- ↑ Cloud Standards Customer Council. (2017, July).Practical Guide to Cloud Management Platforms. Retrieved from omg.org
- ↑ Red Hat. (2019, September 18). What is cloud management? Retrieved from redhat.com
- ↑ Research and Markets. (2018, April 9). Multi-Cloud Management Market 2017 - Global Forecast to 2022. Retrieved from globenewswire.com
- ↑ Market Watch. (2019, July 3). Cloud Management Platform Market is Gaining an Upward Trend Due to Adoption of Heterogeneous and Multi-modal IT Service Delivery Environment. Retrieved from marketwatch.com
- ↑ Government of Canada. (2016, August 10). Government of Canada Right Cloud Selection Guidance. Retrieved from canada.ca
- ↑ Government of Canada. (2019, June 17). Government of Canada Cloud Adoption Strategy: 2018 update. Retrieved from canada.ca
- ↑ Treasury Board of Canada Secretariat. (2019, August 2). Directive on Management of Information Technology. Retrieved from tbs-sct.gc.ca
- ↑ Government of Canada. (2019, June 17). Government of Canada Cloud Adoption Strategy: 2018 update. Retrieved from canada.ca
- ↑ Government of Canada. (2019, June 17). Government of Canada Cloud Adoption Strategy: 2018 update. Retrieved from canada.ca
- ↑ Hein, D. (2019, June 24). What Is a Cloud Management Platform and Why Should You Use One? Retrieved from solutionsreview.com
- ↑ Jansen, W., & Grance, T. (2011, December). Guidelines on Security and Privacy in Public Cloud Computing. Retrieved from csrc.nist.gov
- ↑ Embotics. (2019, September 18).Cloud Management Platforms. Retrieved from embotics.com
- ↑ Government of Canada. (2019, June 17). Government of Canada Cloud Adoption Strategy: 2018 update. Retrieved from canada.ca
- ↑ Canadian Centre for Cyber Security. (2018, November 5).IT Security Risk Management: A Lifecycle Approach (ITSG-33). Retrieved from cyber.gc.ca
- ↑ Tremblay, D. (2017, April 21). System Concept of Operations (CONOPS). Retrieved from cradpdf.drdc-rddc.gc.ca