What will drive 2020 in cloud governance? In a hybrid world, a solid strategy is key

cloudcomputing-news.net | January 13, 2020

Now that we are a few weeks into 2020, we should consider what lies ahead in the ever-evolving world of cloud governance. What seems certain is that when it comes to IT governance there is still the same need to balance the benefits of agility and speed which come from decentralisation, against key business risks be they security and/or cost management.
In fact, what is meant by cloud governance really depends on where you sit within an organisation. Microsoft has produced some interesting content on these different perspectives, which they have boiled down into five disciplines.From my perspective, I think mostly around cost management and cost optimisation. Obviously, if you sit within a security related function within a company or are a vendor of security tools, cloud governance means something quite different. The other factor impacting perspective is where you stand on the so-called ‘cloud journey’. If you are still working on migrating your first workloads to the cloud you will have a completely different outlook than if you have been in the cloud for the last 10 years and built your entire business model from the ground up in the public cloud.

Spotlight

Exadata Cloud@Customer (ExaC@C) provides Oracle's public Exadata Cloud Service at a customer's data center using
Oracle-owned and managed infrastructure located at a customer's data center. 

Spotlight

Exadata Cloud@Customer (ExaC@C) provides Oracle's public Exadata Cloud Service at a customer's data center using
Oracle-owned and managed infrastructure located at a customer's data center. 

Related News

CLOUD SECURITY

New Spectro Cloud Palette Edge Platform Brings World-Class Security and Operational Efficiencies to Kubernetes at the Edge

Spectro Cloud | September 30, 2022

Spectro Cloud, a leader in modern Kubernetes (K8s) management software, today announced a major new release of its Palette Edge platform. Kubernetes at the edge has spurred the interest of businesses around the world as they seek to enhance competitiveness and agility. To date, however, K8s at the edge has failed to realize its true potential. Why? A study by Dimensional Research found 72% of Kubernetes users effectively said: “It’s too challenging to deploy and manage Kubernetes on edge devices.” The Palette Edge platform, first launched in March 2022, earned Spectro Cloud recognition as a 2022 Gartner Cool Vendor in Edge Computing solves this problem, enabling organizations to re-define how cost-efficiently they can deploy and manage edge K8s clusters at scale, including at locations with small form factor devices, no on-site IT skills and marginal connectivity. Palette Edge delivers remote troubleshooting, zero-downtime rolling upgrades and patch management, even in single-server edge deployments, due to its unique A/B OS partition, multi-node failsafe design and support for both ARM and x86 architectures, including Intel’s Trusted Platform Module (TPM). Palette Edge derives its functionality from Spectro Cloud’s core Palette platform, which enables organizations to consistently manage K8s clusters across their full lifecycle, across public clouds, virtualized or bare metal data centers, as well as edge locations. Through a unique extension of Cloud Native Computing Foundation (CNCF’s) Cluster API, Palette enables IT teams to model their full Kubernetes stacks from the OS to the application in a true declarative model, creating project-curated, reusable Cluster Profiles while providing a choice of operating systems, K8s distributions and tools from the broad K8s ecosystem. Palette is architected to scale, delivering centralized and automated management combined with decentralized orchestration and policy enforcement — together enabling a virtually infinite scale from few to tens of thousands of clusters. Extending this core Palette foundation, Palette Edge today adds unique security, visibility and usability capabilities, setting a new industry standard for deploying and centrally managing edge K8s at scale, dramatically lowering total cost of ownership and risk for organizations of any size expanding to the edge. Palette Edge is purpose-built to support key industry use cases including Internet of Things device management and orchestration, data ingestion, streaming, analytics and AI inference. “For us, edge is an enabler to help clinicians deliver better patient outcomes by deploying technology closer to the user,” said Vignesh Shetty, SVP & GM Edison AI and Platform at GE Healthcare Digital. “The need for a secure, cost-effective approach to manage Kubernetes at the edge at scale is more relevant than ever before.” The new Palette Edge delivers on the key priorities for edge K8s users with: Tamperproof security for Kubernetes at the edge: Spectro Cloud research found that security is the #1 concern when adopting edge Kubernetes. Edge Kubernetes devices deployed in remote, unmonitored locations are particularly vulnerable to deliberate tampering and unintentional configuration drift, where their operating system, distribution and other software elements move out of compliance through ad hoc configuration changes. Palette Edge now enables operations teams to build highly secure configurations for edge devices, including their preferred Kubernetes distribution and the underlying OS, which once deployed become immutable, read-only and unmodifiable by the application user, just like the firmware on a smartphone. The now-immutable stack also enables zero-downtime rolling upgrades, due to a failsafe deployment design. Palette eXtended Kubernetes Edge (PXK-E): This new edge-optimized Kubernetes distribution version of Spectro Cloud’s CNCF-upstream Kubernetes distribution is available now to all Palette customers. PXK-E incorporates Palette’s new immutability capability, along with NIST-800 security hardening. It is certified for more than 50 open source and commercial cloud native integrations and provides high availability and zero-downtime rolling upgrades even in single-server configurations. With Palette Edge, businesses can choose the PXK-E distribution or Palette-optimized versions of any other K8s distribution, verified and supported by Spectro Cloud. A powerful NOC-like dashboard: Now organizations scaling to thousands or tens of thousands of edge devices have the power to manage their fleet more easily and with greater control than ever before. Palette Edge’s Network Operations Center-like (NOC) dashboard provides a highly intuitive user experience with live status for key events, plus advanced capabilities to filter, tag and drill down to clusters by location, status or other attribute. Importantly, operators can define powerful workflows for managing clusters, with almost infinite possibilities: for example, they can phase deployments of cluster updates by location for canary testing, or schedule patching to follow the sun. Ultra-simple edge device onboarding: In edge Kubernetes projects, organizations can find the act of deploying new devices in remote locations incredibly problematic; often, costly field engineering truck rolls are needed. Palette Edge makes it easy for non-specialist staff to quickly power up and onboard a new device into a managed cluster, using a variety of methods, such as through Palette Edge’s user interface, leveraging its open API, the Spectro Cloud Terraform provider, or by simply scanning a QR code on the edge device itself. The features delivered in this new Palette Edge release reflect real customer requirements of K8s at the edge. To address them and also contribute to the broader cloud native community, Spectro Cloud is now leading a unique open source project which delivers failsafe immutability at the edge: Kairos. Version 1.0 of Kairos is now generally available with extended community support, and is free to download and use. For more information, visit www.kairos.io. This is another example demonstrating Spectro Cloud’s continued commitment to foster innovation as a member of the CNCF and Linux Foundation, contributing to major Kubernetes ecosystem projects such as Cluster API and the Cluster API Provider for Canonical MAAS. These major new features are available today in Spectro Cloud’s Palette Edge edition and further position Palette as the first choice for organizations running Kubernetes at the edge at scale, enabling them to bring modern applications and data close to their end-users. Customers of Palette Edge are already realizing significant benefits by avoiding otherwise necessary field engineering visits at edge locations, which can result to up to 90% reduction in operational costs. “A key use case for 5G Edge compute is mission critical, ultra-low latency, workloads. That means cyber-security is a foundational principle for Edge and not an afterthought. Spectro Cloud is delivering a customer solution for deploying modern apps to the Edge that can integrate readily into end-to-end Zero Trust architectures,” said Dr. Ken Urquhart, Global Vice-President, 5G at Zscaler. “This brand new set of capabilities is making edge K8s locations as easy as a cloud for our customers, With a platform that can scale to tens of thousands of edge locations, requirements like security, resiliency and ease-of-use can be game changers, and this has been our focus in the latest release. At Spectro Cloud we are committed champions of the innovation coming out of the open source community, and we couldn’t be more excited to collaborate with some of the most interesting projects to deliver some of those new capabilities.” Spectro Cloud co-founder and CEO Tenry Fu About Spectro Cloud Spectro Cloud uniquely enables organizations to deploy and manage Kubernetes in production, at scale. Its Palette enterprise Kubernetes management platform gives IT Operations and DevOps engineering teams effortless control of the full Kubernetes lifecycle even across multiple clouds, data centers, bare metal and edge environments. Ops teams are empowered to support their developers with curated Kubernetes stacks and tools based on their specific needs, with granular governance and enterprise-grade security.

Read More

AWS INFRASTRUCTURE

Ingram Micro Cloud Receives AWS Config Service Delivery Validation

Ingram Micro Cloud | November 04, 2022

Ingram Micro Cloud has obtained the Amazon Web Services (AWS) Config Service Delivery validation within the AWS Service Delivery Program, further bolstering its expert knowledge of AWS services in supporting partners' technical needs as they manage their cloud business. The AWS Config Service Delivery validation recognizes AWS Partners that have deep technical knowledge, experience and proven success in delivering specific AWS services to customers. Through the AWS Service Delivery Program, Ingram Micro Cloud has earned the AWS Config Delivery validation. Members of the AWS Config Delivery Program, like Ingram Micro Cloud, specifically help AWS customers assess, audit, and evaluate the configurations of their AWS resources. With AWS Config, customers and AWS Partners can review changes in configurations of AWS resources, explore resource configuration histories, and examine compliance against configurations. The AWS Service Delivery Program is only available to AWS Partner Network (APN) members that have demonstrated achievements involving enablement of products, services and additional offerings meant to provide customers with greater access to, or an enhancement of, the digital tools available from AWS. To obtain this AWS Service Delivery Program validation, Ingram Micro Cloud passed a rigorous technical evaluation, proving the organization follows best practices for configuration services and provided case studies demonstrating successful customer service delivery. “By meeting high AWS standards, this validation gives our customers further confidence in our world-class competence in providing specialized AWS services to help them gain a deeper understanding of their AWS resources, It can be hard for companies to have both a bird's eye and close-up view of their configurations, how they change, and how they relate to one another. At Ingram Micro Cloud, we aim to make these processes easier so partners can focus on what they do best.” Kevin Kareth, head of strategic partnerships - AWS, Ingram Micro Cloud By harnessing AWS Config, companies can more easily assess the configurations of their AWS resources, audit compliance of their resource configurations and preview the effects of configuration changes on other resources, reducing the risk of incidents, analysis, compliance auditing, change management and operational troubleshooting. Ingram Micro Cloud and AWS entered into a global Strategic Collaboration Agreement (SCA) in March of 2021. Since then, Ingram Micro Cloud has been expanding its capabilities and technical depth to better support its partners. This is the third AWS technical achievement in addition to two competencies Ingram Micro Cloud has obtained this year, AWS Cloud Management Tools (CMT) ISV Competency and the AWS DevOps Consulting Competency. Ingram Micro Cloud’s wide range of partner programs and resources offer support for its partners and the organizations it works with in the construction of Ingram Micro Cloud’s cloud practices and management of end customers. Ingram Micro Cloud is an AWS Advanced Tier Services Partner in the APN and an AWS Distributor, and currently provides an AWS Cloud Center of Excellence (CCoE) team who collectively hold 300+ AWS certifications. Ingram Micro Cloud is also a member of the AWS Well-Architected Partner Program. About Ingram Micro Cloud Ingram Micro Cloud brings together innovators and problem solvers to help the world accomplish more. It facilitates and manages the cloud’s complex digital value chain - all powered by CloudBlue technology. With widespread global reach, easy access to automated go-to-market and integration tools, deep technical expertise, and a curated selection of scalable SaaS and IaaS solutions, Ingram Micro Cloud helps vendors, resellers, and managed service providers by offering more as a service.

Read More

CLOUD SECURITY

Sibros Partners with Google Cloud to Deliver Intelligent Cloud Solutions for Connected Vehicle Management

Sibros | September 06, 2022

Connected vehicle platform company Sibros announced today it has partnered with Google Cloud to bring flexible and intelligent connected vehicle-to-cloud solutions to automakers worldwide. As automakers navigate the complexities of vehicle software lifecycle management, they increasingly need deep data insights to understand product usage and deliver remote software updates that improve product safety, performance and functionality. To meet this need, Sibros launched its Deep Connected Platform for full vehicle over-the-air software and data management that meets rigorous industry safety, security and data privacy requirements. Sibros’ automotive software and data management platform – an integrated suite of embedded software, telematics, network stacks and SaaS applications, which includes Deep Connected Platform – will take advantage of Google Cloud’s scalable infrastructure with data analytics, visualization, AI, machine learning and application programming interface (API) management tools. “We are thrilled to collaborate with Google Cloud to offer our customers the ability to deploy one of the world’s most advanced connected vehicle solutions with the proven trust of Google’s cloud services, This partnership is a big leap forward in our mission to deliver safe and secure connected automotive technologies that improve how our world moves.” Hemant Sikaria, CEO and Co-Founder of Sibros Through the partnership, Sibros’ connected vehicle solution will be available on Google Cloud, enriched with a variety of Google apps, cloud and automotive services to help automakers reinvent the connected mobility experience with: Remote vehicle services and mobile apps Real-time fleet data and edge analytics Remote diagnostics and preventative maintenance Full vehicle over-the-air software updates Sibros’ hardware agnostic solution connects a wide range of mobility products – from cars, trucks, buses, scooters to e-bikes and tractors – to Google Cloud, giving automakers a single source of truth, visibility and governance over all software and data across globally connected fleets. It can be deployed on a variety of in-vehicle operating systems, including Android Automotive. The combined solution also sets a new bar as one of the first over-the-air software management systems to carry the ISO 26262 certification with an ASIL-D rating for automotive OTA software updates. The ASIL-D rating meets the highest level of automotive functional safety requirements following documented best practices, processes, and procedures, which also applies to the UNECE WP.29 regulatory framework, to help automakers meet cybersecurity regulations throughout the entire vehicle software development lifecycle. “Google Cloud is committed to helping automakers reimagine the connected vehicle experience,” said Matthias Breunig, Director Global Automotive Solutions of Google Cloud. “Sibros has built a distinctive platform to manage fleets of globally connected vehicles based on modern connected vehicle architectures, embedded software, and Google Cloud technologies that help our customers succeed by bringing together an entire ecosystem of solutions.” Automakers using the Sibros platform include a fast-growing list of the world’s most iconic makers of cars, trucks, buses, 2-wheelers and tractors, as well as disruptive new electronic vehicle (EV) startups in the solar and commercial space. To learn more about Sibros’ connected vehicle platform visit www.sibros.com. About Sibros Sibros powers the connected vehicle ecosystem with its Deep Connected Platform™ for full vehicle OTA software updates, data collection, and diagnostics in one vertically integrated system. DCP supports any vehicle architecture - from ICE, Hybrid, EV to Fuel Cell - while also meeting rigorous safety, security, and compliance standards. By combining powerful automotive software and data management tools in one platform, Sibros empowers OEMs to quickly bring up dozens of new connected vehicle use cases spanning fleet management, predictive maintenance, paid feature upgrades, and beyond.

Read More