Why Cloud is the key to Digital Transformation?

A presentation at Vodacom Tech Talks April 2021 in April 2021 in Maputo, Mozambique by Bruno Amaro Almeida

Slide 1

Slide 1

Why Cloud is the Key to Digital Transforma7on? Bruno Amaro Almeida April 2021 Photo by Jared Sluyter on Unsplash 1

Slide 2

Slide 2

Hello! About me • Portuguese native, based in Finland • Head of Technology & Architecture at Fortum • Independent Advisor / Architect Consultant 💡 Areas of interest > Cloud, DevOps, Security, Data Engineering & AI 📚 Avid learner > 12 x AWS, 2 x Azure, 1 x GCP ✍ Author > AWS Security Specialty course Bruno Amaro Almeida brunoamaro.com Reach out on: @bruno_amaro @brunoamaroalmeida

Slide 3

Slide 3

What is Cloud? How did we get here? Different types of Cloud Computing • Public Cloud: AWS, Microsoft Azure, Google Cloud • Hybrid Cloud: Mixture of public and private • Private Cloud (or on-premises): Your datacenter (e.g. OpenStack, VMWare vCloud, etc) Photo by Luiz Neto on Unsplash @bruno_amaro

Slide 4

Slide 4

Evolu&on of Cost Op&miza&on in Tech 15 YEARS AGO COMPUTE IS EXPENSIVE 10 YEARS AGO STORAGETITLE IS EXPENSIVE TODAY HUMANS ARE EXPENSIVE @bruno_amaro

Slide 5

Slide 5

Public Cloud Global Landscape Public Cloud Global Market Share (CSA - 2017) Gartner Magic Quadrant for Cloud 2018 @bruno_amaro

Slide 6

Slide 6

Cloud Paradigm Shi? IaaS, PaaS, SaaS? • Infrastructure as a Service (IaaS): You manage the servers, the OS and applications. The provider will manage the underlying infrastructure. • Platform as a Service (PaaS): You manage your own application while all the underlying components are managed by the provider. e.g. Heroku. Software as a Service (SaaS): You just use the service. e.g. Gmail • source: bmc.com @bruno_amaro

Slide 7

Slide 7

Key Business Benefits Why organizations want to migrate to Cloud and adopt a DevOps Model? • Trade Capital Expense with Variable/OperaFonal Expense (CapEx > OpEx) • Enhanced capacity planning • Benefit from massive economies of scale • Focus on the Business, not on running and maintaining Datacenters • Empower and break silos. Increase speed and agility of development Photo by Riccardo Annandale on Unsplash @bruno_amaro

Slide 8

Slide 8

What about Security and Compliance? • Cloud providers meet compliance standards such as ISO 27001, CSA, PCI DSS, HIPAA, GDPR, … • Cloud providers make it easier for your organizaLon to meet the same compliance standards. • Effortless to enable data encrypLon at rest (SSE) and in transit (SSL/TLS). Source: AWS Shared Responsibility Model @bruno_amaro

Slide 9

Slide 9

GeCng to know the AWS building blocks Compute Network Storage Security & IdenNty • AWS EC2 • AWS VPC • AWS EBS • AWS IAM • AWS ECS / EKS / Fargate • AWS Route 53 • AWS S3 • AWS KMS / CloudHSM • AWS Lambda • AWS Elastic Load Balancing • AWS EFS • AWS Inspector / Advisor / • AWS Amplify • AWS CloudFront GuardDuty / Shield @bruno_amaro

Slide 10

Slide 10

Different ways to build the same application in AWS • TradiJonal / VM based • LiM-and-shiM strategy 10 @bruno_amaro

Slide 11

Slide 11

Different ways to build the same applica&on in AWS • Container-based • Re-plaQorm strategy 11 @bruno_amaro

Slide 12

Slide 12

Different ways to build the same application in AWS • Serverless • Re-architect strategy 12 @bruno_amaro

Slide 13

Slide 13

Pitfalls: Learning Hard Lessons • This stuff is only for tech companies ❌ ❌ • Cloud will immediately save money ❌ • DevOps automaJcally breaks silos ❌ • No need for OperaJons “Every company is a technology company” Peter Sondergaard at Gartner Symposium Photo by Pawel Janiak on Unsplash @bruno_amaro

Slide 14

Slide 14

Typical AWS piKalls

AWS account defaults Make Cost management a priority Lack of MulF-Account Governance Missing Infrastructure as Code pracFces Not using IAM properly EncrypFon & Secrets Missing out on interesFng out-of-the-box data Well-Architected Framework 14 @bruno_amaro

Slide 15

Slide 15

Culture and Process: Beyond Technology “DevOps is the combination of cultural philosophies, practices, and tools that increases an organization’s ability to deliver applications and services at high velocity(…)” source: amazon.com SRE is a prac4cal way to implement DevOps SRE practices align to DevOps pillars philosophy Developers focus on feature velocity and innova3on; operators focus on reliability and consistency. source: Google source: Developing an SRE Culture, Google @bruno_amaro

Slide 16

Slide 16

Benefits & Results of Adop&ng an SRE Mindset SRE incorporates aspects of software engineering and applies them to IT operations • Helps software systems to evolve and continuously improve on availability, latency, performance and capacity. • Enables the organization to create a common language among Engineering teams • SRE culture brings a unified vision, promoting collaboration and knowledge sharing within teams. Source: devoptopologies.com • Operations is treated a value center, not cost center. @bruno_amaro

Slide 17

Slide 17

How do you move a mountain? Becoming a cloud-na/ve and data-driven organisa/on Strategy Governance CxO, VP’s, Board members Directors, Product Owners, Architects, Leads Where do we want to go? WHO How do we get there? Execu0on How fast are we going? Developers, Data Scientists, Product Owners, Designers, Architects, Leads, Agile PMs A specific AI experiment WHAT & HOW Data & AI Strategy Workshop Cloud & DevOps Transformation Workshop Data Governance: What data do we have? Where is it? Who can access it? Cloud/DevOps Governance: Development Best PracNces, Default Tooling, etc Building a Data Lake Developing an IoT Data PlaZorm Web and Mobile E-Commerce @bruno_amaro

Slide 18

Slide 18

Establishing a Cloud & DevOps Center Of Excellence PlaLorm / SysOps/ SRE CoE / Steering Group provides alignment and guidance: • • • • • Governance and Culture Technology Strategy Cost Management Documentation and Guidelines Enable Agile Methods Project A … Data AnalyOcs CoE / Steering Group Project Z Project B … Highly aligned, loosely coupled @bruno_amaro

Slide 19

Slide 19

Establishing a Cloud & DevOps CoE Project X Development team have freedom and responsibility. CoE / Steering Group Head of SW / Chief Architect Leads from Teams Architects Business Owners … CoE / Steering Group • • • • Guidance Empowerment Alignment … Pla<orm / SysOps / SRE Team Security Engineer Cloud Engineer Site Reliability Engineer Chaos Engineer • • • … Guidance Support Enablement Platform / SysOps/ SRE Can be either VerNcal or Horizontal team @bruno_amaro

Slide 20

Slide 20

Next Steps in Your Learning Journey Courses & Books • AWS Cloud Practitioner Certification • The Phoenix Project: A Novel About IT, DevOps, and Helping Your Business Win A few selected talks & articles: • “7 AWS Deadly Sins“ @ AWS Community Summit Online 🇬🇧 • “From DevOps to DevSecOps: How Establishing a Threat Modeling Process Can Help You Transition” @ NDC Oslo Online 🇳🇴 • How to Get the Most From AWS Cost Management Tools (IOD ) • Cloud Security and AWS: a 3-part series (Reblaze) Photo by Ricardo Rocha on Unsplash @bruno_amaro

Slide 21

Slide 21

Thanks! Bruno Amaro Almeida brunoamaro.com Ques%ons? Feedback? Reach out on: @bruno_amaro @brunoamaroalmeida