SlideShare a Scribd company logo

Cloud Seeding

Download as PPTX, PDF
T
Trish McGinity, CCSK

Cloud Seeding: It/Network Operations concepts and strategies to improve the production of your Cloud

Technology
1 of 39
IT/Network Operations concepts and strategies to improve the production of your Cloud. Q4 2017
Colorado Cloud Alliance Security Summit: 11/09/2017 Joe Dietz – Network Security Professional JoeDietzJr@is-s.com (303) 257-8614 cell https://www.linkedin.com/in/joe-dietz-961105/ Alumni of CCM, County College of Morris—NJ 1986 Alumni of RIT, Rochester Institute of Technology—NY 1988 Current Certifications: GCIA – SANS 2000 CISSP – ISC2 2003 CNSE – Palo Alto Networks 2015 CCSK – CSA 2017 Activities: Volunteer in faith based nonprofits Skiing, IMSA Scrutineer, Car guy Disclaimer: This presentation represents my opinions and thoughts and not that of my employer… “…just joe…”
Local User Groups & Events:  Colorado/Denver User Groups: • CSA Cloud Security Alliance • InfraGard • InfraGard nfoSec Working Group • ISSA – South Tech Center • OWASP • Palo Alto User Group  Denver Events: • SnowFROC -- OWASP • IT Summit • Interface • IT Roadmap • RMISC • Secure World • CSA Summit  Participate in the SANS GIAC Advisory Board – Email Distribution  Encourage all to continue to learn and stay current on security best practices. ( A drinking club with a Cloud Security Problem… )
When was the first hybrid car manufactured? ? Leaf Prius Other
We have been here before... 1896 Armstrong Phaeton first gas/electic hybrid, also had an electric start Toyota Prius – 1997; Nisson Leaf -- 2009; Chevy Volt – 2010 Cloud computing is the result of the evolution and adoption of existing technologies and paradigms. The goal of cloud computing is to allow users to take benefit from all of these technologies, without the need for deep knowledge about or expertise with each one of them. – Wikipedia.org
Silver iodide can improve production…
Organizations are like snowflakes…  Every company is different and no two cloud initiatives are the same…  Why move to the cloud…?  Elasticity  Agile, time to market with new products  Save $s; reduce TCO  Born in the cloud  Compliance  How successful are your cloud initiatives?  Like the Internet, Cloud can be the great equalizer, allowing SMB to compete and surpass traditional enterprises
Private/Hybrid cloud --consumer runs a cloud environment / service within their enterprise or uses private cloud offering from the cloud providers (typically extending the internal network into a service providers hosting center). Source: CSA Guide CCSK
Top Down C-Level Directive…TCO Our competition is doing it...we need 100+ apps moved into the “cloud” in the next 18 months…
Bottom Up Agile – DevOps Teams A Partner has prototype in cloud; like to point the app at production “intranet” data sources
The perception is Cloud is easy… Push a button or swipe a card on a portal and start saving $s…
Businesses Can’t Afford to Ignore Hidden Public Cloud Costs -- Josh Rhine October 20, 2017 Let’s stop acting like public clouds aren’t expensive. …What happens, for most businesses, is changes in application and infrastructure use patterns lead to high costs, unexpected fees and similar expenses that add up well beyond your initial pricing expectations. The solution, according to InfoWorld, is to establish a greater degree of governance and oversight within corporate cloud plans so your company can understand costs and predict expenses with greater accuracy. http://lumecloud.com/top-5-reasons-aws-public-cloud-kinda-sucks/
Build a VPN to Cloud Provider…xyz
DevSecOps  The closer you get to SaaS the less “standard” security visibility becomes  Traditionally SysAdms and NetAdms were responsible for operations security—SecOps.  Traditional tools are typically Server and Network based…example: how to you have SaaS send logs to SIEM?  Multi-cloud is the goal, but tools are different…uhg!  “Operations” Security is not typically part of developers DNA…
Cloud Seed The cloud is sometimes represented as a hassle-free option, easy to migrate to and easy to use. This is true - to a degree. With a well-planned migration and experienced staff orchestrating the move, shifting your organization over to Office 365,(insert your favorite cloud/app) can be fairly straightforward. Source: Five Pillars to Optimize O365 Readiness by Eric Shupps, MVP & Metalogix
Cloud Seed… While it is clear that Office 365, (insert your favorite cloud/app) has enormous benefits for today’s enterprise, moving to the platform still requires considerable planning and preparation. For organizations that already use Microsoft SharePoint, the move will require complex data migration, helping employees adapt to the new environment and require your company to change the way it works in many aspects. Source: Five Pillars to Optimize O365 Readiness by Eric Shupps, MVP & Metalogix
Enter “Cloud” Manages Service Providers aka Cloud Service Brokers Public cloud infrastructure as a service (IaaS) delivers compute, storage and network resources in a self-service, highly automated fashion. The leading public cloud IaaS providers also offer platform as a service (PaaS) capabilities and other cloud software infrastructure services as part of an integrated IaaS+PaaS offering. Yet such services do not completely eliminate the need for IT operations management. Customers still need expertise to choose the right service elements and to configure them appropriately, and they retain responsibility for the guest OS, middleware and applications that run on their IaaS compute instances. Furthermore, cloud IaaS introduces new challenges in governance and financial management. Customers often want cloud IaaS assistance from a third party, either on a short-term tactical basis or as part of a long-term infrastructure management strategy. Consequently, an ecosystem of managed and professional service providers has arisen to provide services on top of public cloud IaaS offerings. These managed service providers (MSPs) are a type of cloud services broker (CSB). Gartner Magic Quadrant for Public Cloud Infrastructure Managed Service Providers, Worldwide Published: 02 March 2017 ID: G00314772 Analyst(s): Lydia Leong, Gregor Petri, Michael Warrilow, Mike Dorosh, Ron Blair
Selecting a Cloud  Use CSA Cloud Control Matrix to help select…  Corporate culture may lean toward one cloud provider over another.  Licensing or contracts may drive your company towards one cloud over another.  Service model / types: SPI SaaS, PaaS, IaaS; EaaS, SecaaS, BDaaS, LaaS…others?
https://www.forbes.com/sites/bobevans1/2017/11/07/the-top-5-cloud-computing-vendors-1- microsoft-2-amazon-3-ibm-4-salesforce-5-sap/#44fce8c46f2e
Cloud Seeds Moving services to the cloud is a form of outsourcing; the golden rule of outsourcing is “understand up-front and plan for how to exit the contract”. Source: CSA Guide CCSK Consider app portability? Moving from Azure to AWS or running in both etc..multi-cloud environments… Security and compliance is a shared responsibility model. The CSP is responsible for securing the Cloud infrastructure, while the cloud user is responsible for securing what goes into the cloud, be that data or an app. Source: CSA Guide CCSK
Clouds can dissipate… Cisco discontinued its “Intercloud” cloud offering – March 2017. Intercloud was introduced in Q1 2014. “Intercloud Services is based on the OpenStack open-source cloud software, like the public cloud that HP launched and then killed. Dell mulled launching an OpenStack-based cloud but backed away form the plans. Rackspace, which helped develop OpenStack, decided to stop providing commodity cloud services based on OpenStack and pivot toward managed cloud in 2014. So Cisco’s choice is not unprecedented. What it is another indication of is the power of the biggest cloud providers, particularly AWS. --Google, IBM & Microsoft round out the leaders in this space. … Cisco -- For the last several months we have been evolving our cloud strategy and our service provider partners are aware of this.” Source: https://venturebeat.com/2016/12/13/cisco-confirms-its-killing-intercloud-public-cloud-in-march-2017/
Select the Apps  Select the apps or were you told move these apps because they are expensive to run etc…TCO  Vetting legacy applications for Cloud is extremely important and can be difficult. “Capped apps” might not be the best choice for cloud…although it is attractive on paper.  Move test/dev to cloud for “DevOps” continuous integration… production on traditional network.  Traditional cloud requirements, do apps need to take advantage of Elasticity or resource bursting?  Is the “data” the app uses appropriate for the cloud? Add encryption? Compliance GDPR…etc  Performance adding 50-75ms in network latency impact your apps and users? Cloud Seed Which is the hardest app to transition to the Cloud? From an infrastructure perspective it is The first…
Cloud Seeds Data Link & IDG Cloud Survey Q4’ 2016 “…Interestingly nearly 40% of organizations with public cloud experience report having moved public cloud workloads back to on premises, mostly due to security and cost concerns…” Source: http://www.idgenterprise.com/resource/research/2016-idg-enterprise-cloud-computing-survey/ Reality is: not all apps are good candidates for cloud…???
2017 Forbes https://www.forbes.com/paloaltonetworks/cloud-confident/#76e5e93b5bc5 On average 70% of compute still resides in traditional datacenter. -- Colorado CSA Meeting -- CenturyLink Cloud Sales Q2 2017.
Approaches to Cloud…  Extend the datacenter:  Dedicated Circuits, MPLS, MSP  Build IPSec VPNs or leverage SD-WAN  Network design needed in the cloud, IP space etc…  Enable the edge:  Facilitate SaaS in your DMZ  Oauth tokenization, SSO, IAM Federations  Proxy like DMZ application gateways and API connectors  Fog Data Services
Extend the Datacenter -- Internet
Cloud Seed As folks depend more and more on cloud, the network performance of shared Internet access is not able to meet business expectations. Mature hybrid cloud deployments therefore are moving to dedicated connections to major cloud providers. (source, …just Joe’s… reading.) Wait a second…I thought we were moving to the cloud to get out of having private dedicated IT and Network resources…what the…! ( ..from an IaaS perspective…)
Extend the Datacenter -- Circuits
Cloud / SD-WAN
Cloud Seed – Be mindful Network Complexity is Creating its Own Vulnerability: While increases in malware are a major threat to both enterprises and service providers, network complexity is creating its own vulnerability. According to a survey sponsored by network test equipment provider Ixia, the average enterprise is using six different cloud services while network segmentation is increasing. However, 54% of enterprises are monitoring less than half of those segments and less than 19% of companies believe their IT teams are adequately trained on the wide array of network appliances they are managing. Ixia anticipates that key security topics this year will be network visibility into every segment, IoT monitoring, and AI (artificial intelligence). –2017 IXIA
Operational considerations  Scale  Size of the corporate infrastructure  Size of the cloud initiative  Cloud Computing Security and Risk Assessment – from ENISA stats focused on SME not Large Enterprises— hmm…  IP v4 address conflicts, RFC 1918?  Q3 2017, AWS has started to support IPv6 in the cloud. Finally!
Approaches to Cloud…  Enable the edge:  Facilitate SaaS in your DMZ  Oauth tokenization, SSO, IAM Federations  Proxy like DMZ application gateways and API connectors  Fog Data Services
Cloud Enabled DMZ
Agile Hybrid Edge/DMZ Copyright © 2017, Skyport Systems Inc. All rights reserved.
Clouds are constantly changing… December 2016 Amazon adds “artifact” https://aws.amazon.com/blogs/security/introducing- aws-artifact-speeding-access-to-compliance-reports/ …until legal cases involving cloud incidents have become more common place and commonly accepted best practice guidelines exist, analysis results for cloud security incidents incur the risk of not standing up in court. Source: CSA Guide CCSK
Where you can more Information…  SANS Reading Room  ISC2.org  BrightTalk.com has tons of Cloud webinars  Association & Vendor Webinars How Hybrid Clouds Connect to Your Network; Understanding and Mitigating the Risks of VPN-to-Cloud and Cloud Application Gateways – Michael Beesley https://go.skyportsystems.net/2017-09-21-webinar-uws-2lp.html  Join your local CSA chapter  CSA CCSK Interoperability and Portability -- CSA Security Guide  CCM Cloud Control Matrix 3.x  Join CSA on LinkedIn  ~Blogs, you mileage may vary  Gartner, Forrester , Frost & Sullivan  Books, hmm, not so much, as things change so quickly…
Related reading: Meta-Cloud Services – on prem CAM – CenturyLink Application Manager aka Elasticbox – cloud app mgmt / orchestration Cisco Cloud Center aka CliQr – cloud app management Morpheus – cloud app management RiverMeadow -- cloud migration DivvyCloud Utilization bots tCell – plugin/wrapper per app WAF-ish CSP’s like lumecloud.com etc… Cisco Fog for IoT and Analytics AWS CloudFormation Apache Mesos/Marathon Docker containers on steroids--Kubernetes and the commercial spinoffs Is Kubernetes the holy grail of cloud interoperability? October 25th, 2017 Cisco announces support for Kubernetes with ACI Evolving beyond multi-pod and multi-site deployment models, ACI will soon be available within public cloud environments, including Amazon Web Services (AWS), Google Cloud Platform and Microsoft Azure
Today’s SuperCloud Hybrid… Modern Hybrid SuperCar -- Koenigsegg Regera
The Sun is always shining, its just your perspective on the “Cloud”… ;-) Respect others, their opinions and be kind to one another… Thank You for your time… …just Joe…

Recommended

Practical AWS Security - Scott Hogg
Practical AWS Security - Scott HoggPractical AWS Security - Scott Hogg
Practical AWS Security - Scott HoggTrish McGinity, CCSK
 
Cloud security ppt
Cloud security pptCloud security ppt
Cloud security pptVenkatesh Chary
 
2016, A new era of OS and Cloud Security
2016, A new era of OS and Cloud Security2016, A new era of OS and Cloud Security
2016, A new era of OS and Cloud SecurityTudor Damian
 
Cloud security
Cloud securityCloud security
Cloud securityFrançois Boucher
 
What Everyone Ought To Know About Cloud Security
What Everyone Ought To Know About Cloud SecurityWhat Everyone Ought To Know About Cloud Security
What Everyone Ought To Know About Cloud Securitycraigbalding
 
Guide to CASB Use Cases
Guide to CASB Use CasesGuide to CASB Use Cases
Guide to CASB Use CasesSachin Yadav
 
Cloud Security Alliance - Cloud Summit Keynote
Cloud Security Alliance - Cloud Summit KeynoteCloud Security Alliance - Cloud Summit Keynote
Cloud Security Alliance - Cloud Summit KeynoteChristofer Hoff
 
Architecting io t solutions with microisoft azure ignite tour version
Architecting io t solutions with microisoft azure ignite tour versionArchitecting io t solutions with microisoft azure ignite tour version
Architecting io t solutions with microisoft azure ignite tour versionAlon Fliess
 

Recommended

Practical AWS Security - Scott Hogg
Practical AWS Security - Scott HoggPractical AWS Security - Scott Hogg
Practical AWS Security - Scott HoggTrish McGinity, CCSK
 
Cloud security ppt
Cloud security pptCloud security ppt
Cloud security pptVenkatesh Chary
 
2016, A new era of OS and Cloud Security
2016, A new era of OS and Cloud Security2016, A new era of OS and Cloud Security
2016, A new era of OS and Cloud SecurityTudor Damian
 
Cloud security
Cloud securityCloud security
Cloud securityFrançois Boucher
 
What Everyone Ought To Know About Cloud Security
What Everyone Ought To Know About Cloud SecurityWhat Everyone Ought To Know About Cloud Security
What Everyone Ought To Know About Cloud Securitycraigbalding
 
Guide to CASB Use Cases
Guide to CASB Use CasesGuide to CASB Use Cases
Guide to CASB Use CasesSachin Yadav
 
Cloud Security Alliance - Cloud Summit Keynote
Cloud Security Alliance - Cloud Summit KeynoteCloud Security Alliance - Cloud Summit Keynote
Cloud Security Alliance - Cloud Summit KeynoteChristofer Hoff
 
Architecting io t solutions with microisoft azure ignite tour version
Architecting io t solutions with microisoft azure ignite tour versionArchitecting io t solutions with microisoft azure ignite tour version
Architecting io t solutions with microisoft azure ignite tour versionAlon Fliess
 
Evolution to the Hybrid Data Center
Evolution to the Hybrid Data CenterEvolution to the Hybrid Data Center
Evolution to the Hybrid Data CenterCisco Canada
 
Compliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignCompliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignAmazon Web Services
 
RightScale Webinar: Security and Compliance in the Cloud
RightScale Webinar: Security and Compliance in the CloudRightScale Webinar: Security and Compliance in the Cloud
RightScale Webinar: Security and Compliance in the CloudRightScale
 
Smartronix - Building Secure Applications on the AWS Cloud
Smartronix - Building Secure Applications on the AWS CloudSmartronix - Building Secure Applications on the AWS Cloud
Smartronix - Building Secure Applications on the AWS CloudAmazon Web Services
 
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment modeCloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment modeHimani Singh
 
Cloud Security Alliance's GRC Stack Overview
Cloud Security Alliance's GRC Stack OverviewCloud Security Alliance's GRC Stack Overview
Cloud Security Alliance's GRC Stack OverviewValdez Ladd MBA, CISSP, CISA,
 
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...Jean-François LOMBARDO
 
Seven Seas Technology
Seven Seas TechnologySeven Seas Technology
Seven Seas TechnologyUnnikrishnan P
 
Introducing Azure Bastion
Introducing Azure BastionIntroducing Azure Bastion
Introducing Azure BastionAmmar Hasayen
 
Azure Hybid
Azure HybidAzure Hybid
Azure HybidThomas Treml
 
Connect your datacenter to Microsoft Azure
Connect your datacenter to Microsoft AzureConnect your datacenter to Microsoft Azure
Connect your datacenter to Microsoft AzureK.Mohamed Faizal
 
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...HKISPA
 
To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)Alex Danvy
 
Compliance with AWS
Compliance with AWSCompliance with AWS
Compliance with AWSAmazon Web Services
 
AWS User Group - Security & Compliance
AWS User Group - Security & ComplianceAWS User Group - Security & Compliance
AWS User Group - Security & ComplianceSatish Kumar Natarajan
 
Digitální transformace: zabezpečení agilních prostředí
Digitální transformace: zabezpečení agilních prostředíDigitální transformace: zabezpečení agilních prostředí
Digitální transformace: zabezpečení agilních prostředíMarketingArrowECS_CZ
 
Demystifying identity on AWS
Demystifying identity on AWSDemystifying identity on AWS
Demystifying identity on AWSAWS User Group Bengaluru
 
The Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi CloudThe Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi CloudIdan Tohami
 
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Amazon Web Services
 
Cloud Security
Cloud SecurityCloud Security
Cloud SecurityAWS User Group Bengaluru
 
Top 10 Cloud Trends for 2017
Top 10 Cloud Trends for 2017Top 10 Cloud Trends for 2017
Top 10 Cloud Trends for 2017Tableau Software
 
Cloud computing CXO's guide
Cloud computing CXO's guideCloud computing CXO's guide
Cloud computing CXO's guideAspire Systems
 

More Related Content

What's hot

Evolution to the Hybrid Data Center
Evolution to the Hybrid Data CenterEvolution to the Hybrid Data Center
Evolution to the Hybrid Data CenterCisco Canada
 
Compliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignCompliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignAmazon Web Services
 
RightScale Webinar: Security and Compliance in the Cloud
RightScale Webinar: Security and Compliance in the CloudRightScale Webinar: Security and Compliance in the Cloud
RightScale Webinar: Security and Compliance in the CloudRightScale
 
Smartronix - Building Secure Applications on the AWS Cloud
Smartronix - Building Secure Applications on the AWS CloudSmartronix - Building Secure Applications on the AWS Cloud
Smartronix - Building Secure Applications on the AWS CloudAmazon Web Services
 
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment modeCloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment modeHimani Singh
 
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...Jean-François LOMBARDO
 
Introducing Azure Bastion
Introducing Azure BastionIntroducing Azure Bastion
Introducing Azure BastionAmmar Hasayen
 
Connect your datacenter to Microsoft Azure
Connect your datacenter to Microsoft AzureConnect your datacenter to Microsoft Azure
Connect your datacenter to Microsoft AzureK.Mohamed Faizal
 
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...HKISPA
 
To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)Alex Danvy
 
AWS User Group - Security & Compliance
AWS User Group - Security & ComplianceAWS User Group - Security & Compliance
AWS User Group - Security & ComplianceSatish Kumar Natarajan
 
Digitální transformace: zabezpečení agilních prostředí
Digitální transformace: zabezpečení agilních prostředíDigitální transformace: zabezpečení agilních prostředí
Digitální transformace: zabezpečení agilních prostředíMarketingArrowECS_CZ
 
The Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi CloudThe Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi CloudIdan Tohami
 
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Amazon Web Services
 

What's hot (20)

Evolution to the Hybrid Data Center
Evolution to the Hybrid Data CenterEvolution to the Hybrid Data Center
Evolution to the Hybrid Data Center
 
Compliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignCompliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by Design
 
RightScale Webinar: Security and Compliance in the Cloud
RightScale Webinar: Security and Compliance in the CloudRightScale Webinar: Security and Compliance in the Cloud
RightScale Webinar: Security and Compliance in the Cloud
 
Smartronix - Building Secure Applications on the AWS Cloud
Smartronix - Building Secure Applications on the AWS CloudSmartronix - Building Secure Applications on the AWS Cloud
Smartronix - Building Secure Applications on the AWS Cloud
 
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment modeCloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
 
Cloud Security Alliance's GRC Stack Overview
Cloud Security Alliance's GRC Stack OverviewCloud Security Alliance's GRC Stack Overview
Cloud Security Alliance's GRC Stack Overview
 
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...
Session 2017 CASB: the Swiss army knife that wants to be a magic wand - en re...
 
Seven Seas Technology
Seven Seas TechnologySeven Seas Technology
Seven Seas Technology
 
Introducing Azure Bastion
Introducing Azure BastionIntroducing Azure Bastion
Introducing Azure Bastion
 
Azure Hybid
Azure HybidAzure Hybid
Azure Hybid
 
Connect your datacenter to Microsoft Azure
Connect your datacenter to Microsoft AzureConnect your datacenter to Microsoft Azure
Connect your datacenter to Microsoft Azure
 
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
Data center 2.0: The journey to the cloud from the datacenter perspertive by ...
 
To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)
 
Compliance with AWS
Compliance with AWSCompliance with AWS
Compliance with AWS
 
AWS User Group - Security & Compliance
AWS User Group - Security & ComplianceAWS User Group - Security & Compliance
AWS User Group - Security & Compliance
 
Digitální transformace: zabezpečení agilních prostředí
Digitální transformace: zabezpečení agilních prostředíDigitální transformace: zabezpečení agilních prostředí
Digitální transformace: zabezpečení agilních prostředí
 
Demystifying identity on AWS
Demystifying identity on AWSDemystifying identity on AWS
Demystifying identity on AWS
 
The Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi CloudThe Journey to the Hybrid Multi Cloud
The Journey to the Hybrid Multi Cloud
 
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
Session Sponsored by Intel: Smart Cities, Infrastructure and Health powered b...
 
Cloud Security
Cloud SecurityCloud Security
Cloud Security
 

Similar to Cloud Seeding

Top 10 Cloud Trends for 2017
Top 10 Cloud Trends for 2017Top 10 Cloud Trends for 2017
Top 10 Cloud Trends for 2017Tableau Software
 
Cloud computing CXO's guide
Cloud computing CXO's guideCloud computing CXO's guide
Cloud computing CXO's guideAspire Systems
 
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValueThe Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValueRapidValue
 
QuickView #5 - Cloud
QuickView #5 - CloudQuickView #5 - Cloud
QuickView #5 - CloudSonovate
 
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...Enterprise Management Associates
 
Charting a path to the cloud final
Charting a path to the cloud finalCharting a path to the cloud final
Charting a path to the cloud finalScott Clinton
 
Cloud Usage in Business Today and Tomorrow
Cloud Usage in Business Today and TomorrowCloud Usage in Business Today and Tomorrow
Cloud Usage in Business Today and Tomorrowrftclouds
 
How You can Leverage Cloud Platforms to Transform Digital Experience
How You can Leverage Cloud Platforms to Transform Digital ExperienceHow You can Leverage Cloud Platforms to Transform Digital Experience
How You can Leverage Cloud Platforms to Transform Digital ExperienceAlaina Carter
 
A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...
A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...
A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...IRJET Journal
 
Building SharePoint 2016 Hybrid the right way
Building SharePoint 2016 Hybrid the right wayBuilding SharePoint 2016 Hybrid the right way
Building SharePoint 2016 Hybrid the right wayBrian Culver
 
Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...
Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...
Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...HCL Infosystems
 
Manage Your Journey to the Cloud
Manage Your Journey to the CloudManage Your Journey to the Cloud
Manage Your Journey to the CloudRick Beers
 
Welcome to Cloud Computing World
Welcome to Cloud Computing WorldWelcome to Cloud Computing World
Welcome to Cloud Computing WorldJohn Macclane
 
Cloud Computing | Dimension Data Europe
Cloud Computing | Dimension Data EuropeCloud Computing | Dimension Data Europe
Cloud Computing | Dimension Data EuropeDavid Martin
 
Hybrid Cloud Architecture: How to Streamline Hybrid Cloud Migration
Hybrid Cloud Architecture: How to Streamline Hybrid Cloud MigrationHybrid Cloud Architecture: How to Streamline Hybrid Cloud Migration
Hybrid Cloud Architecture: How to Streamline Hybrid Cloud MigrationJulia Smith
 
Going to the SP2013 Cloud - what does a business need to make it successful?
Going to the SP2013 Cloud - what does a business need to make it successful?Going to the SP2013 Cloud - what does a business need to make it successful?
Going to the SP2013 Cloud - what does a business need to make it successful?Matt Groves
 
Manage your Journey to the Cloud
Manage your Journey to the CloudManage your Journey to the Cloud
Manage your Journey to the CloudRick Beers
 
How big is the cloud in Australia?
How big is the cloud in Australia?How big is the cloud in Australia?
How big is the cloud in Australia?Oscar Trimboli
 

Similar to Cloud Seeding (20)

Top 10 Cloud Trends for 2017
Top 10 Cloud Trends for 2017Top 10 Cloud Trends for 2017
Top 10 Cloud Trends for 2017
 
Cloud computing CXO's guide
Cloud computing CXO's guideCloud computing CXO's guide
Cloud computing CXO's guide
 
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValueThe Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
 
QuickView #5 - Cloud
QuickView #5 - CloudQuickView #5 - Cloud
QuickView #5 - Cloud
 
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
 
Charting a path to the cloud final
Charting a path to the cloud finalCharting a path to the cloud final
Charting a path to the cloud final
 
Cloud Usage in Business Today and Tomorrow
Cloud Usage in Business Today and TomorrowCloud Usage in Business Today and Tomorrow
Cloud Usage in Business Today and Tomorrow
 
How You can Leverage Cloud Platforms to Transform Digital Experience
How You can Leverage Cloud Platforms to Transform Digital ExperienceHow You can Leverage Cloud Platforms to Transform Digital Experience
How You can Leverage Cloud Platforms to Transform Digital Experience
 
A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...
A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...
A NEW APPROACH FOR SECURITY IN CLOUD DATA STORAGE FOR IOT APPLICATIONS USING ...
 
FINAL PRINTED VER - 29102014
FINAL PRINTED VER - 29102014FINAL PRINTED VER - 29102014
FINAL PRINTED VER - 29102014
 
Building SharePoint 2016 Hybrid the right way
Building SharePoint 2016 Hybrid the right wayBuilding SharePoint 2016 Hybrid the right way
Building SharePoint 2016 Hybrid the right way
 
Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...
Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...
Transcending IT Planetary Boundaries: Future of cloud, By Pradeep Gupta, Cha...
 
Manage Your Journey to the Cloud
Manage Your Journey to the CloudManage Your Journey to the Cloud
Manage Your Journey to the Cloud
 
Welcome to Cloud Computing World
Welcome to Cloud Computing WorldWelcome to Cloud Computing World
Welcome to Cloud Computing World
 
Cloud Computing | Dimension Data Europe
Cloud Computing | Dimension Data EuropeCloud Computing | Dimension Data Europe
Cloud Computing | Dimension Data Europe
 
Hybrid Cloud Architecture: How to Streamline Hybrid Cloud Migration
Hybrid Cloud Architecture: How to Streamline Hybrid Cloud MigrationHybrid Cloud Architecture: How to Streamline Hybrid Cloud Migration
Hybrid Cloud Architecture: How to Streamline Hybrid Cloud Migration
 
Going to the SP2013 Cloud - what does a business need to make it successful?
Going to the SP2013 Cloud - what does a business need to make it successful?Going to the SP2013 Cloud - what does a business need to make it successful?
Going to the SP2013 Cloud - what does a business need to make it successful?
 
Manage your Journey to the Cloud
Manage your Journey to the CloudManage your Journey to the Cloud
Manage your Journey to the Cloud
 
How big is the cloud in Australia?
How big is the cloud in Australia?How big is the cloud in Australia?
How big is the cloud in Australia?
 
Cloud
CloudCloud
Cloud
 

More from Trish McGinity, CCSK

Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17Trish McGinity, CCSK
 
Token Binding as the Foundation for a More Secure Web
Token Binding as the Foundation for a More Secure WebToken Binding as the Foundation for a More Secure Web
Token Binding as the Foundation for a More Secure WebTrish McGinity, CCSK
 
Security and Automation: Can they work together? Can we survive if they don't?
Security and Automation: Can they work together? Can we survive if they don't?Security and Automation: Can they work together? Can we survive if they don't?
Security and Automation: Can they work together? Can we survive if they don't?Trish McGinity, CCSK
 
CSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassageCSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassageTrish McGinity, CCSK
 
Csa presentation november 2016 sloane ghx
Csa presentation november 2016 sloane ghxCsa presentation november 2016 sloane ghx
Csa presentation november 2016 sloane ghxTrish McGinity, CCSK
 
Privileged accesss management for den csa user group CA Technologies
Privileged accesss management for den csa user group CA TechnologiesPrivileged accesss management for den csa user group CA Technologies
Privileged accesss management for den csa user group CA TechnologiesTrish McGinity, CCSK
 
Andrew Useckas Csa presentation hacking custom webapps 4 3
Andrew Useckas Csa presentation hacking custom webapps 4 3Andrew Useckas Csa presentation hacking custom webapps 4 3
Andrew Useckas Csa presentation hacking custom webapps 4 3Trish McGinity, CCSK
 
Steve Kosten - Exploiting common web application vulnerabilities
Steve Kosten - Exploiting common web application vulnerabilities Steve Kosten - Exploiting common web application vulnerabilities
Steve Kosten - Exploiting common web application vulnerabilities Trish McGinity, CCSK
 
Larry Whiteside - Optiv Cloud ready or steam rolled csa version
Larry Whiteside - Optiv Cloud ready or steam rolled csa versionLarry Whiteside - Optiv Cloud ready or steam rolled csa version
Larry Whiteside - Optiv Cloud ready or steam rolled csa versionTrish McGinity, CCSK
 
Scott Hogg - Gtri cloud security knowledge and certs
Scott Hogg - Gtri cloud security knowledge and certsScott Hogg - Gtri cloud security knowledge and certs
Scott Hogg - Gtri cloud security knowledge and certsTrish McGinity, CCSK
 

More from Trish McGinity, CCSK (15)

Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17Csa privacy by design & gdpr austin chambers 11-4-17
Csa privacy by design & gdpr austin chambers 11-4-17
 
Privacy 101
Privacy 101Privacy 101
Privacy 101
 
Token Binding as the Foundation for a More Secure Web
Token Binding as the Foundation for a More Secure WebToken Binding as the Foundation for a More Secure Web
Token Binding as the Foundation for a More Secure Web
 
Security and Automation: Can they work together? Can we survive if they don't?
Security and Automation: Can they work together? Can we survive if they don't?Security and Automation: Can they work together? Can we survive if they don't?
Security and Automation: Can they work together? Can we survive if they don't?
 
GDPR Overview
GDPR OverviewGDPR Overview
GDPR Overview
 
CSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassageCSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassage
 
Csa presentation november 2016 sloane ghx
Csa presentation november 2016 sloane ghxCsa presentation november 2016 sloane ghx
Csa presentation november 2016 sloane ghx
 
Privileged accesss management for den csa user group CA Technologies
Privileged accesss management for den csa user group CA TechnologiesPrivileged accesss management for den csa user group CA Technologies
Privileged accesss management for den csa user group CA Technologies
 
Andrew Useckas Csa presentation hacking custom webapps 4 3
Andrew Useckas Csa presentation hacking custom webapps 4 3Andrew Useckas Csa presentation hacking custom webapps 4 3
Andrew Useckas Csa presentation hacking custom webapps 4 3
 
Steve Kosten - Exploiting common web application vulnerabilities
Steve Kosten - Exploiting common web application vulnerabilities Steve Kosten - Exploiting common web application vulnerabilities
Steve Kosten - Exploiting common web application vulnerabilities
 
Shawn Harris - CCSP SAH v2
Shawn Harris - CCSP SAH v2Shawn Harris - CCSP SAH v2
Shawn Harris - CCSP SAH v2
 
Larry Whiteside - Optiv Cloud ready or steam rolled csa version
Larry Whiteside - Optiv Cloud ready or steam rolled csa versionLarry Whiteside - Optiv Cloud ready or steam rolled csa version
Larry Whiteside - Optiv Cloud ready or steam rolled csa version
 
Ed Rios - New ncc brief
Ed Rios - New ncc briefEd Rios - New ncc brief
Ed Rios - New ncc brief
 
Scott Hogg - Gtri cloud security knowledge and certs
Scott Hogg - Gtri cloud security knowledge and certsScott Hogg - Gtri cloud security knowledge and certs
Scott Hogg - Gtri cloud security knowledge and certs
 
Davitt Potter - CSA Arrow
Davitt Potter - CSA ArrowDavitt Potter - CSA Arrow
Davitt Potter - CSA Arrow
 

Recently uploaded

How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAndikSusilo4
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 

Recently uploaded (20)

How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & Application
 
The transition to renewables in India.pdf
The transition to renewables in India.pdfThe transition to renewables in India.pdf
The transition to renewables in India.pdf
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 

Cloud Seeding

  • 1. IT/Network Operations concepts and strategies to improve the production of your Cloud. Q4 2017
  • 2. Colorado Cloud Alliance Security Summit: 11/09/2017 Joe Dietz – Network Security Professional JoeDietzJr@is-s.com (303) 257-8614 cell https://www.linkedin.com/in/joe-dietz-961105/ Alumni of CCM, County College of Morris—NJ 1986 Alumni of RIT, Rochester Institute of Technology—NY 1988 Current Certifications: GCIA – SANS 2000 CISSP – ISC2 2003 CNSE – Palo Alto Networks 2015 CCSK – CSA 2017 Activities: Volunteer in faith based nonprofits Skiing, IMSA Scrutineer, Car guy Disclaimer: This presentation represents my opinions and thoughts and not that of my employer… “…just joe…”
  • 3. Local User Groups & Events:  Colorado/Denver User Groups: • CSA Cloud Security Alliance • InfraGard • InfraGard nfoSec Working Group • ISSA – South Tech Center • OWASP • Palo Alto User Group  Denver Events: • SnowFROC -- OWASP • IT Summit • Interface • IT Roadmap • RMISC • Secure World • CSA Summit  Participate in the SANS GIAC Advisory Board – Email Distribution  Encourage all to continue to learn and stay current on security best practices. ( A drinking club with a Cloud Security Problem… )
  • 4. When was the first hybrid car manufactured? ? Leaf Prius Other
  • 5. We have been here before... 1896 Armstrong Phaeton first gas/electic hybrid, also had an electric start Toyota Prius – 1997; Nisson Leaf -- 2009; Chevy Volt – 2010 Cloud computing is the result of the evolution and adoption of existing technologies and paradigms. The goal of cloud computing is to allow users to take benefit from all of these technologies, without the need for deep knowledge about or expertise with each one of them. – Wikipedia.org
  • 6. Silver iodide can improve production…
  • 7. Organizations are like snowflakes…  Every company is different and no two cloud initiatives are the same…  Why move to the cloud…?  Elasticity  Agile, time to market with new products  Save $s; reduce TCO  Born in the cloud  Compliance  How successful are your cloud initiatives?  Like the Internet, Cloud can be the great equalizer, allowing SMB to compete and surpass traditional enterprises
  • 8. Private/Hybrid cloud --consumer runs a cloud environment / service within their enterprise or uses private cloud offering from the cloud providers (typically extending the internal network into a service providers hosting center). Source: CSA Guide CCSK
  • 9. Top Down C-Level Directive…TCO Our competition is doing it...we need 100+ apps moved into the “cloud” in the next 18 months…
  • 10. Bottom Up Agile – DevOps Teams A Partner has prototype in cloud; like to point the app at production “intranet” data sources
  • 11. The perception is Cloud is easy… Push a button or swipe a card on a portal and start saving $s…
  • 12. Businesses Can’t Afford to Ignore Hidden Public Cloud Costs -- Josh Rhine October 20, 2017 Let’s stop acting like public clouds aren’t expensive. …What happens, for most businesses, is changes in application and infrastructure use patterns lead to high costs, unexpected fees and similar expenses that add up well beyond your initial pricing expectations. The solution, according to InfoWorld, is to establish a greater degree of governance and oversight within corporate cloud plans so your company can understand costs and predict expenses with greater accuracy. http://lumecloud.com/top-5-reasons-aws-public-cloud-kinda-sucks/
  • 13. Build a VPN to Cloud Provider…xyz
  • 14. DevSecOps  The closer you get to SaaS the less “standard” security visibility becomes  Traditionally SysAdms and NetAdms were responsible for operations security—SecOps.  Traditional tools are typically Server and Network based…example: how to you have SaaS send logs to SIEM?  Multi-cloud is the goal, but tools are different…uhg!  “Operations” Security is not typically part of developers DNA…
  • 15. Cloud Seed The cloud is sometimes represented as a hassle-free option, easy to migrate to and easy to use. This is true - to a degree. With a well-planned migration and experienced staff orchestrating the move, shifting your organization over to Office 365,(insert your favorite cloud/app) can be fairly straightforward. Source: Five Pillars to Optimize O365 Readiness by Eric Shupps, MVP & Metalogix
  • 16. Cloud Seed… While it is clear that Office 365, (insert your favorite cloud/app) has enormous benefits for today’s enterprise, moving to the platform still requires considerable planning and preparation. For organizations that already use Microsoft SharePoint, the move will require complex data migration, helping employees adapt to the new environment and require your company to change the way it works in many aspects. Source: Five Pillars to Optimize O365 Readiness by Eric Shupps, MVP & Metalogix
  • 17. Enter “Cloud” Manages Service Providers aka Cloud Service Brokers Public cloud infrastructure as a service (IaaS) delivers compute, storage and network resources in a self-service, highly automated fashion. The leading public cloud IaaS providers also offer platform as a service (PaaS) capabilities and other cloud software infrastructure services as part of an integrated IaaS+PaaS offering. Yet such services do not completely eliminate the need for IT operations management. Customers still need expertise to choose the right service elements and to configure them appropriately, and they retain responsibility for the guest OS, middleware and applications that run on their IaaS compute instances. Furthermore, cloud IaaS introduces new challenges in governance and financial management. Customers often want cloud IaaS assistance from a third party, either on a short-term tactical basis or as part of a long-term infrastructure management strategy. Consequently, an ecosystem of managed and professional service providers has arisen to provide services on top of public cloud IaaS offerings. These managed service providers (MSPs) are a type of cloud services broker (CSB). Gartner Magic Quadrant for Public Cloud Infrastructure Managed Service Providers, Worldwide Published: 02 March 2017 ID: G00314772 Analyst(s): Lydia Leong, Gregor Petri, Michael Warrilow, Mike Dorosh, Ron Blair
  • 18. Selecting a Cloud  Use CSA Cloud Control Matrix to help select…  Corporate culture may lean toward one cloud provider over another.  Licensing or contracts may drive your company towards one cloud over another.  Service model / types: SPI SaaS, PaaS, IaaS; EaaS, SecaaS, BDaaS, LaaS…others?
  • 20. Cloud Seeds Moving services to the cloud is a form of outsourcing; the golden rule of outsourcing is “understand up-front and plan for how to exit the contract”. Source: CSA Guide CCSK Consider app portability? Moving from Azure to AWS or running in both etc..multi-cloud environments… Security and compliance is a shared responsibility model. The CSP is responsible for securing the Cloud infrastructure, while the cloud user is responsible for securing what goes into the cloud, be that data or an app. Source: CSA Guide CCSK
  • 21. Clouds can dissipate… Cisco discontinued its “Intercloud” cloud offering – March 2017. Intercloud was introduced in Q1 2014. “Intercloud Services is based on the OpenStack open-source cloud software, like the public cloud that HP launched and then killed. Dell mulled launching an OpenStack-based cloud but backed away form the plans. Rackspace, which helped develop OpenStack, decided to stop providing commodity cloud services based on OpenStack and pivot toward managed cloud in 2014. So Cisco’s choice is not unprecedented. What it is another indication of is the power of the biggest cloud providers, particularly AWS. --Google, IBM & Microsoft round out the leaders in this space. … Cisco -- For the last several months we have been evolving our cloud strategy and our service provider partners are aware of this.” Source: https://venturebeat.com/2016/12/13/cisco-confirms-its-killing-intercloud-public-cloud-in-march-2017/
  • 22. Select the Apps  Select the apps or were you told move these apps because they are expensive to run etc…TCO  Vetting legacy applications for Cloud is extremely important and can be difficult. “Capped apps” might not be the best choice for cloud…although it is attractive on paper.  Move test/dev to cloud for “DevOps” continuous integration… production on traditional network.  Traditional cloud requirements, do apps need to take advantage of Elasticity or resource bursting?  Is the “data” the app uses appropriate for the cloud? Add encryption? Compliance GDPR…etc  Performance adding 50-75ms in network latency impact your apps and users? Cloud Seed Which is the hardest app to transition to the Cloud? From an infrastructure perspective it is The first…
  • 23. Cloud Seeds Data Link & IDG Cloud Survey Q4’ 2016 “…Interestingly nearly 40% of organizations with public cloud experience report having moved public cloud workloads back to on premises, mostly due to security and cost concerns…” Source: http://www.idgenterprise.com/resource/research/2016-idg-enterprise-cloud-computing-survey/ Reality is: not all apps are good candidates for cloud…???
  • 24. 2017 Forbes https://www.forbes.com/paloaltonetworks/cloud-confident/#76e5e93b5bc5 On average 70% of compute still resides in traditional datacenter. -- Colorado CSA Meeting -- CenturyLink Cloud Sales Q2 2017.
  • 25. Approaches to Cloud…  Extend the datacenter:  Dedicated Circuits, MPLS, MSP  Build IPSec VPNs or leverage SD-WAN  Network design needed in the cloud, IP space etc…  Enable the edge:  Facilitate SaaS in your DMZ  Oauth tokenization, SSO, IAM Federations  Proxy like DMZ application gateways and API connectors  Fog Data Services
  • 26. Extend the Datacenter -- Internet
  • 27. Cloud Seed As folks depend more and more on cloud, the network performance of shared Internet access is not able to meet business expectations. Mature hybrid cloud deployments therefore are moving to dedicated connections to major cloud providers. (source, …just Joe’s… reading.) Wait a second…I thought we were moving to the cloud to get out of having private dedicated IT and Network resources…what the…! ( ..from an IaaS perspective…)
  • 28. Extend the Datacenter -- Circuits
  • 30. Cloud Seed – Be mindful Network Complexity is Creating its Own Vulnerability: While increases in malware are a major threat to both enterprises and service providers, network complexity is creating its own vulnerability. According to a survey sponsored by network test equipment provider Ixia, the average enterprise is using six different cloud services while network segmentation is increasing. However, 54% of enterprises are monitoring less than half of those segments and less than 19% of companies believe their IT teams are adequately trained on the wide array of network appliances they are managing. Ixia anticipates that key security topics this year will be network visibility into every segment, IoT monitoring, and AI (artificial intelligence). –2017 IXIA
  • 31. Operational considerations  Scale  Size of the corporate infrastructure  Size of the cloud initiative  Cloud Computing Security and Risk Assessment – from ENISA stats focused on SME not Large Enterprises— hmm…  IP v4 address conflicts, RFC 1918?  Q3 2017, AWS has started to support IPv6 in the cloud. Finally!
  • 32. Approaches to Cloud…  Enable the edge:  Facilitate SaaS in your DMZ  Oauth tokenization, SSO, IAM Federations  Proxy like DMZ application gateways and API connectors  Fog Data Services
  • 34. Agile Hybrid Edge/DMZ Copyright © 2017, Skyport Systems Inc. All rights reserved.
  • 35. Clouds are constantly changing… December 2016 Amazon adds “artifact” https://aws.amazon.com/blogs/security/introducing- aws-artifact-speeding-access-to-compliance-reports/ …until legal cases involving cloud incidents have become more common place and commonly accepted best practice guidelines exist, analysis results for cloud security incidents incur the risk of not standing up in court. Source: CSA Guide CCSK
  • 36. Where you can more Information…  SANS Reading Room  ISC2.org  BrightTalk.com has tons of Cloud webinars  Association & Vendor Webinars How Hybrid Clouds Connect to Your Network; Understanding and Mitigating the Risks of VPN-to-Cloud and Cloud Application Gateways – Michael Beesley https://go.skyportsystems.net/2017-09-21-webinar-uws-2lp.html  Join your local CSA chapter  CSA CCSK Interoperability and Portability -- CSA Security Guide  CCM Cloud Control Matrix 3.x  Join CSA on LinkedIn  ~Blogs, you mileage may vary  Gartner, Forrester , Frost & Sullivan  Books, hmm, not so much, as things change so quickly…
  • 37. Related reading: Meta-Cloud Services – on prem CAM – CenturyLink Application Manager aka Elasticbox – cloud app mgmt / orchestration Cisco Cloud Center aka CliQr – cloud app management Morpheus – cloud app management RiverMeadow -- cloud migration DivvyCloud Utilization bots tCell – plugin/wrapper per app WAF-ish CSP’s like lumecloud.com etc… Cisco Fog for IoT and Analytics AWS CloudFormation Apache Mesos/Marathon Docker containers on steroids--Kubernetes and the commercial spinoffs Is Kubernetes the holy grail of cloud interoperability? October 25th, 2017 Cisco announces support for Kubernetes with ACI Evolving beyond multi-pod and multi-site deployment models, ACI will soon be available within public cloud environments, including Amazon Web Services (AWS), Google Cloud Platform and Microsoft Azure
  • 38. Today’s SuperCloud Hybrid… Modern Hybrid SuperCar -- Koenigsegg Regera
  • 39. The Sun is always shining, its just your perspective on the “Cloud”… ;-) Respect others, their opinions and be kind to one another… Thank You for your time… …just Joe…

Editor's Notes

  1. Good Morning and thank you for taking your time to be here today… NEWS For the next 40 minutes or so, I would like you to consider that you have tuned into a your favorite local weather station. The accuracy of this forecast or presentation may vary depending on where you live. And I think it is safe to say, in the context of the CSAsummit, that today it will be mostly “cloudy”.  We will review traditional IT/Network Infrastructure, that if implemented right, can enable successful hybrid cloud initiatives. With the short time we have, I hope the “sound bytes” presented stir your interest and inspire further discussion and reading in the area of cloud computing.
  2. This presentation represents my opinions and thoughts and not that of my employer… Slides are available on the CSAcolorado.org website…or contact me… Lets have a conversation…please do ask questions during the presentation. Many of the themes in this presentation are backed up by third party references—not just joe’s opinions.
  3. “Cloud Seeding…” == nuggets of information…I hope you are able to refer back to this presentation… Information in this presentation is a combination of my own experiences, attending conferences, experience shared by my peers, general white paper, blog reading and webinars. Hopefully will have saved you some time collecting this information… All this ties back to the quest for great craft beer.  SnowFROC (Front Range OWASP Conference) is Denver's premier application security conference and is taking place Thursday March 8th 2018. The location of this event is The Cable Center on the University of Denver campus near I-25 and University. 
  4. Let’s talk Hybrids; Operational challenges when implementing Hybrid Cloud is the focus of this presentation, yet not exclusively…some aspects do touch on PaaS and SaaS Traditional Companies: Unless your company was born in the cloud, we are all dealing with Hybrid environments.
  5. Sold for a fee-inclusive price of $483,400 at the Bonhams Amelia Island sale on Thursday, March 10, 2016… This presentation is mainly from the perspective of established enterprises. Comments tend to focus on Hybrid cloud initiatives. There are new manufacturing techniques that enable us to build better hybrid cars and clouds… 1912 Cadillac was the first car manufacturer to offer electric starter in their cars.. Wiki: First clouds… AWS EC 2006 Azure 2010 Nasa Nebula 2008 – open source
  6. Usually silver iodide “smoke” is dispensed from planes. What industries care about cloud seeding…other than ski resorts…Energy Companies and Water Districts Statistics show that Cloud Seeding improves snow production ~5-10% ; Cloud seeding is still more theory than fact. Dr Jeff French has a project to change that…last week. SNOWIE project University of WY Dr. Jeff French ATMOSPHERIC SCIENCE http://www.9news.com/weather/this-project-could-answer-if-changing-the-weather-through-technology-is-possible/488620797 As snow and rain need a nucleus of dust to be productive; digital clouds need “networks” of some flavor to be productive. I will be inserting “Cloud Seeds” or quotes and information I hope you will find useful in these slides. Source Google: Science. According to the World Meteorological Organization's International Cloud Atlas, over 100 types of clouds exist! But although there are so many variations, each one can be divided into one of ten basic types depending on its general shape and height in the sky. Dust” is necessary to create rain/snow…ice begin forming when water vapor condenses on micrometer-sized particles of dust floating in the atmosphere. The dust particles grow to millimeter-sized droplets, which are heavy enough to begin falling. As they fall, the droplets accumulate more and more moisture, until they become the large snowflakes or raindrops that we see here on the ground.
  7. Prototyping tends to move quickly, but moving Clouds initiatives to production operations can be frustrating. Successful cloud initiative are challenging to get right. Weather forecasters have tools and experience to help with accuracy in forecasting. As the tools improve , like weather satellites etc…the weather forecast accuracy has improved. As Cloud management and orchestration tools improve it should help forecasting successful cloud initiatives.
  8. Ask the audience for show of hands… Scale 1-5 who has a 5, who had 3 or 4 and I wont ask how the rest went. What worked and what still needs work…? No two cloud initiatives are the same, even within a company. They likely have different compliance and regulatory issues to deal with.
  9. This slide is somewhat data or oversimplified…there really is no dotted line… ;-) One theme, consider if we still need traditional skill sets like network architecture to enable cloud. Add multi-cloud to the hybrid definition… Add on prem private cloud provided by Azure and others… Rarely is it an either or; normally both. The key tends to be--what data is involved, governance, compliance and regulatory restrictions.
  10. Cloud projects tend to come from two direction… How do Cloud initiatives get started? Top down: $$$$$ TCO; project that suggested moving 100+ apps to the cloud. After vetting the apps for cloud about two dozen were actually candidates for the cloud and performance issue limited which could move out of the 25. Some with true agile environments might chuckle at the 18month time frame… ;-)
  11. This is typically new techniques and applications vs. legacy apps… Bottom up: pressures form the business to move quickly to market with new products and mobile products; later we will dive into the network architecture that will enable Cloud Center and CAM—from CenturyLink Want to use CliQr aka Cisco Cloud Center or CAM Cloud App Manager -- CTL PaaS DevOps; look mom no OS to manage ;-) SAP Hana PaaS & other SaaS gateways or API connectors
  12. No matter which direction the cloud initiatives come from, like most IT projects, things tend to be over simplified…$$$ savings??
  13. Example of a contrasting view that cloud can save you $; Like VMware, if not managed correctly, cloud “sprawl” will create budget overruns. Corp Governance to keep costs in check vs. allowing for development creativity… http://lumecloud.com/ as an example of an AWS competitor’s view on cloud; not going to go into these hidden costs in this presentation but a tickler/seed for further reading
  14. The first request that IT/Network operations will receive from folks is simply build us a VPN… The VPN is straight forward enough to create… Opening Pandora's box if you do not have supporting infrastructure deployed. We need the supporting IT infrastructure to make sure we are meeting InfoSec and Governance policies regarding Data, Access, Logging etc… Are the DevOps teams following tradition DMZ governance and policies?
  15. Dev-Sec-Ops ? Few things to consider… How much can we enable our development teams to take on? No matter who is tasked with providing or managing the security at your company, cloud security is a Shared Security Model. SIEM security information and event management  DevOps owning Security? Still a struggle for the industry as it is still not part of a developers DNA. Many traditional development teams do not make network, firewall or load balancing infrastructure decisions… IT, Network and Security architects are still needed to design the cloud enclave or DMZ--or you need really expensive talented highbrow SecDevOps folks
  16. Remember “We have been here before…”; be methodical in approaching your cloud projects and initiatives and you will likely save yourself from struggling with pitfalls.
  17. Point out that this is a well known and standard applications…and it is still a challenge, what about portability… Using SharePoint today…what is involved if you move to Google tomorrow… How do we improve our operations teams, so they and the infrastructure are ready for cloud?
  18. On the topic of planning…if it were easy, there would not be CSBs Hybrid Cloud for established IT shops is not trivial…there is a lot to learn and a lot to be gained by a successful cloud deployment. Security and Visibility need to have parity with traditional corporate governance, compliance, policies and controls. Traditional MSPs like AT&T just announced Cloud Services Broker offerings in Q4 2017.
  19. XaaS folks have some other typs of “aaS”? Anyone using FedRAMP? Can you share? PCI: Payment Card Industry; SPI == SaaS PaaS IaaS, LAMP == Linux Apache Mysql, Php; HIPAA; Health Insurance Portability and Accountability Act Platform, Infrastructure; Platform as a Service -- Azure, Software as a Service – SalesForce; Infrastructure as a Service -- AWS, Environment as a Service – IBM SkyTap; EaaS == Enterprise as a Service; IDaaS; BDaaS BigData as a Services; LaaS: Lab as Service; Just because the cloud has a compliance rating like PCI does not mean your app does…you still own that part of PCI. Capped apps? DevOps considerations? Hadoop? LAMP? Big Data, AI etc… Governance & Compliance considerations, PCI, HIPAA, FedRAMP etc
  20. Top cloud providers from Forbes hot off the press…MS#1 and IBM#3 IBM highly successful emphasis on transforming its vast array of software expertise and technology from the on-premises world to the cloud. … helping big global corporations convert legacy systems to cloud or cloud-enabled environments
  21. Think of this in some ways as if you were opening your own new private datacenter…that is a well known activity.
  22. Product can also be discontinued… Clouds are changing at an unprecedented rate; offering new products and techniques to solve complex IT challenges. What happens when a CSP discontinues a product?
  23. Do you select the apps you want to move to the cloud before you select a cloud??? Network latency is often overlooked… “Answer: The First…” from an infrastructure perspective, you need to have your ducks in a row, security parity between on cloud and private on prem etc… Data is king of the cloud… If you don’t do a good job of vetting your apps for the cloud…next slide General Data Protection Requirements How is your data going to get to the cloud, SSH, SFTP, TLS, IPSEC VPN or dedicated circuit? How are you going to create your corporate standard system images in the cloud? Can it be automated or how much can be automated? Consider PaaS or SaaS…? What if some apps live in one cloud or even another cloud, but no master account to help control “cloud sprawl”? CliQr is good at managing the apps but not he cloud infrastructure. How does moving to the cloud impact your current operations processes, like change control? How do you grant access to cloud resources private/public? Corporate vs. Customer How will you keep track and audit data that is in the cloud?
  24. What happens if you don’t get the planning right…based on this stat, this is more common than we would like All apps don’t fit in the cloud…this is not because the cloud didn’t work but the apps were not vetted well. Also, things like cloud licensing structures and response times to on prem my be counter productive to cloud.
  25. The goal is to shed light to increase the success of hybrid cloud projects… Data point 70% …Forbes Likely moving to a 60% Cloud 40% on premise private Hybrid Cloud…these numbers may vary based on where you live ;-)
  26. Two major approaches to cloud are to extend the data center and enable the edge…you might do some of both. Fog ( Cisco ) IoT related streaming data
  27. VPN connectivity is a good place to start extend the datacenter to the cloud…if you have supporting infrastructure… Companies have done a good job of providing for services in an on premise DMZ…I would encourage your next DMZ to be in the cloud. Stretch or drag the DMZ from a network perspective to a cloud provider. Parity: Purchase DDoS protections from your ISP for your traditional DMZ and IGW…does Cloud DDoS offer parity? How and can they be integrated? Does it matter?
  28. Read this slide…excellent points!
  29. So what does “dedicated” connectivity look like… This is fine for “private”…but will you consume “public” same as folks outside the organization.
  30. Leverage DIA and traditional infrastructure… Still need tradition infrastructure or networks for the SD-WAN overlay…SD-WAN includes VPN/DIA SD-WAN Generic white box hardware Layer 7 routing decisions Services chaining, LB or FW IPSEC is its first language
  31. Be mindful, networks can be a source of problems;
  32. Still need IT/Network operations to build the initial underlying infrastructure… Wait, I don’t need network admins anymore its all in the cloud…you mean my app team gets to manage the FW in the cloud via DevOps? Yikes? European Union Agency for Network and Information Security (ENISA) is a centre of expertise for cyber security in Europe. The Agency is located in Greece with its seat in Heraklion Crete and an operational office in Athens. Update (7/13/2017): Since this post was published, IPv6 supported has been extended and now supports 15 Regions and Multiple AWS Services.
  33. How do we enable the business to be more agile…Setup an environment to enable DevOps and get out of the way. ;-) Two major approaches to cloud are to extend the data center and enable the edge…you might do some of both. Fog ( Cisco ) IoT related streaming data Building blocks & Visibility – think back to enabling the DMZ Authentication Security Logs IT processes, trouble tickets, trouble shooting, change control etc… Governance –translate our on premise processes to the cloud…?
  34. “Be the Cloud…” Everyone should get started building a “hello mom…” app in the cloud. This will highlight all the governance, compliance and InfoSec challenges that need to be dealt with before you have a Top down move 100+ apps initiative. SaaS in “your” DMZ…get back into the application proxy business…CASB,(cloud access security brokers) We are all good at exposing things to our customers via a traditional DMZ…websites and apps… CASB tries to fill the gap to empowering seem less hybrid cloud environments—changing quickly… Key architecture…compare web proxy and xml proxy for exposing “internal” APIs Consider exposing APIs, securely in your DMZ…API proxy, API or XML gateways and API connectors….owned, enable, empower the DevOps initiatives. Why? Consider the time to create a network path between you and your partner…VPN, dedicated circuit, FW changes…change control. Now consider if the DevOps team had a proxy…say XML gateway of sorts to securely expose data apps outside the traditional datacenter…you may be your own consumer of this… Use SIEM logs as another example.
  35. How Hybrid Clouds Connect to Your Network; Understanding and Mitigating the Risks of VPN-to-Cloud and Cloud Application Gateways – Michael Beesley https://go.skyportsystems.net/2017-09-21-webinar-uws-2lp.html
  36. Lastly, clouds are evolving and are very dynamic. New features are added quarterly…
  37. Cloud technology is changing so fast I am not sure traditional books are the best place to get current information. If anyone has some good Cloud book titles to share please to send them along… Underscore the VPN-less architecture of API gateways in the DMZ.
  38. Tarball  Docker  Kubernetes; Kubernetes allow for infrastructure scheme designs…like load balancers and firewall rules. The next level of Orchestration…. Anyone using Cisco ACI in their datacenter today? Note the Cisco Announcement above… Cisco ACI = Application Centric Infrastructure https://blogs.cisco.com/news/aci-anywhere
  39. Who needs a car like this…? Who wants a car like this…? SUV NetFlix is the “cloud” supercar…most companies will never need this car…but by being diligent and methodical in analyzing your needs your hybrid/car/cloud will be productive. Most companies will end up with a more practical form of car/cloud such as a truck/van or SUV. The dust particles that the moisture formed on were delivered in the rain drops to your car. Car tip, don’t try and save water, and wash your car while it has rain drops on it…as it will scratch the paint finish ;-) Always rinse the car first and always use a high quality soap…never use dish soap to wash you car as it will remove the wax.
  40. If you are not yet involved with the CSA, I was sitting where you were a year ago… Colorado CSA CCSK study groups…mention Mohamed Malki CCSK was a bit more on policy side vs. technical or implementation guide.