Most companies already have extensive experience with cloud technologies, be it a single application or a significant part of their IT infrastructure. However, whether the cloud is already in use or not, a review of the whole strategy may be beneficial from an efficiency and/or cost perspective.
There may be different reasons for this decision, including:
Whether the customer moves its whole IT infrastructure to the cloud or only a part of it (hybrid model), they will definitely see the benefits if implemented correctly. The most important of these are:
This type of cloud environment is one of the most frequently used. As in any other cloud environment, the provider makes the IT infrastructure available to its customers securely via the Internet so that companies do not have to purchase any hardware or software.
Free access distinguishes public clouds from other models. In such a cloud, several companies share the same environment. This offers several advantages—public clouds are remarkably cost-effective and scalable.
This is a cloud computing environment that belongs to a single user. It combines the advantages of cloud computing (elasticity, scalability, and simple service provision) with the safety and control of an on-premises IT infrastructure. All hardware and software resources are reserved exclusively for a single user and are only accessible to them.
As one can understand from the name, a hybrid cloud combines public cloud, private cloud, and possibly local infrastructure. Companies host part of their IT infrastructure in a public and private cloud environment and yet can continue to use part of it on-premises. Mixing different models allows a business to gain the technical advantages of each, but is unlikely to do so at optimal cost. The hybrid cloud combines the public cloud’s flexibility and the private cloud’s perceived higher level of security. This generates increased comfort for certain companies. For example, a database can be hosted in a private network while the applications accessing it are running in a public cloud. The advantage is that the data can be held in a secure environment closely managed by the customer while the application performance retains its scalability.
Multi-cloud is a cloud computing strategy where several public cloud services from different providers and software as a service (SaaS) are used simultaneously. The idea behind it is to improve performance, security, scalability, and cost requirements by combining different cloud offerings. In other words, instead of being limited to a single cloud platform, companies can use a multi-cloud strategy to select the best services for different tasks and minimise risks simultaneously. However, the services must be coordinated in a comprehensive multi-cloud management system to ensure the smooth exchange of information and data security.
The journey of applications to the cloud consists of clearly defined project phases before they go live. The various steps can be illustrated as follows:
The journey to the cloud begins with the Strategy workshop, where the business aspirations, needs, and outcomes will be considered in designing the cloud environment.
This is followed by the Discovery & Assessment phase, which involves documenting the current state of the IT environment and analysing the findings. These findings will then be taken into account when developing the cloud IT strategy. Another important step in this phase is to estimate and optimise the costs of operating the environment in the cloud. The cloud strategy will be validated or adjusted according to the results and the alignment with the business strategy.
Next up is the Migration Planning phase.
At this step, after a series of workshops, important decisions will have to be made about the cloud and the implementation strategy. Here are some of the resolutions that may need to be reached:
Once the environment runs in the cloud, the phase of continuous monitoring and operation of the environment begins.
The NEOS approach offers various task-resolving scenarios, whether the customer lacks the resources to handle them on their own right away, wishes to take them on later, or even takes them as part of a tailored NEOS-managed service. This includes 24/7 support and maintenance, security and compliance, and ongoing optimisation services.
NEOS provides a flexible, role-based team that accompanies the project from design to deployment and subsequent operation. Our engineers adopt the relevant roles required to implement and run the environment(s) with the roles and the workload tailored to the specific project requirements.
Pic. 2 - Azure roles - analogy to the real world
The roles being distributed and tested in the real-life virtual hierarchy of responsibilities, which enables a successful joint operation of the cloud environment – cooperation at its best:
Pic. 3 - Shared responsibilities
The NEOS approach to governance is about enablement, not policing. Cloud governance provides regulations for the traceable and secure use of data and applications. It is about ensuring continuous control over applications and data, whilst providing a framework within which engineers and developers can operate without breaching the ‘rules’. This includes legal, technical, organizational, operational, and security related guidelines.
Applying cloud governance concepts can adapt existing IT processes to the specific cloud environment, as most companies already work with an existing IT governance concept. However, this has often been set up for on-premises operations and cannot be used 1:1 for the cloud environment. The concept may need to be adjusted and refined to suit a cloud accessible from the Internet.
Rules, guidelines, and standards are defined for all cloud services the company uses. In such a way, we ensure that cloud infrastructure is unified. The aim is to maintain full control over all cloud services currently in use and introduced in the future.
Pic. 4 - What does cloud governance analysis involve?
The main task of cloud governance is to ensure data security and compliance with rules, regulations and laws through appropriate use of frameworks and guidelines. In the modern environment, ensuring that all cloud solutions comply with legal requirements is extremely important. All data must be stored in the cloud in accordance with the principles of the European General Data Protection Regulation (GDPR). The responsibility for this lies with the company using the cloud. Although public cloud providers advertise compliance with their cloud infrastructure with the GDPR, this does not apply to the data that the customers themselves store within it.
Cloud governance also contributes to IT security. Rules and guidelines ensure security standards for data use in the cloud, which, in combination with the right cloud security tools, results in efficient protection against cybercrime.
Cloud management refers to the active management of the cloud environment using tools. In the Microsoft Azure Cloud, these include Azure Monitor, Network Watcher, Azure Advisor, Azure Resource Manager, Azure Portal, Azure Policy, and Microsoft Cost Management.
Cloud governance, on the other hand, allows for the use of integrated and user-defined policies to set guardrails throughout the environment.
At its core, there are five disciplines that make cloud governance, and these are defined in the Cloud Adoption Framework model:
The policies created as part of a cloud governance concept will ultimately define how the cloud environment is managed.
So, the following problems can be prevented when aligning with a concept for cloud governance:
NEOS accompanies its customers by carefully understanding its strategic objectives and reasons for moving to the cloud, then analysing the current situation, designing the target architecture and the associated governance model, testing cloud scenarios for problematic applications, setting up the cloud environments, and finally, migration. NEOS work, however, continues beyond that, supporting the customer in all future cloud-related activities. This can be performed by an individually assembled team of experts, aka “Team as a Service”, individual cloud IT experts, or a complete end-to-end managed service for the IT infrastructure operation.