IT Architecture FOR DUMHIE5* by Kalani Kirk Hausman. and Susan L. Cook WILEY. Wiley Publishing/ Inc.

Transcription

1 IT Architecture FOR DUMHIE5* by Kalani Kirk Hausman and Susan L. Cook WILEY Wiley Publishing/ Inc.

2 Table of Contents»»» #*»* * *«Introduction 7 About This Book 1 Conventions Used in This Book 2 What You're Not to Read 2 Foolish Assumptions 2 How This Book Is Organized 3 Part I: Developing the Architecture 3 Part II: Defining the Role of IT Architecture 3 Part III: Creating an Enterprise Culture 3 Part IV: Developing an Extended Network Enterprise 4 Part V: Obtaining Value beyond the Basic Enterprise 4 Part VI: Protecting the Enterprise 4 Part VII: The Part of Tens 4 Icons Used in This Book 4 Where to Go from Here 5 Part h Oei/e(opincf the Architecture 7 Chapter 1: Planning for Enterprise Realignment.9 Defining an Enterprise 9 Finding the Best Solution 10 Providing Leadership 10 In the Traditional Enterprise, Everything May Be Independent 11 Too many resource silos 12 Too many platforms 12 Too many people with root access 13 In the Modern Enterprise, Everything Is Connected 13 Defining Success 14 Using Maturity Models 15 Preventing Failure 15 Chapter 2: Exploring Tasks, Roles, and Tools 17 Examining Common Enterprise Architecture Tasks 17 Identifying data requirements 18 Integrating existing resources 18 Defining technical standards 18 Justifying changes 19 Communicating effectively 19

3 or IT Architecture For Dummies Knowing the Roles of Enterprise Architecture 20 Chief architect 20 Lead architect 21 Technology architect 21 Software or application architect 21 Business architect 22 Data architect 22 Using the Right Tool for the Right Job 23 IT governance 24 Enterprise architecture frameworks 25 Project management 27 Chapter 3: Pondering Platform Pros and Cons 29 Standardizing Your Platform Not 29 Recognizing the benefits of standardization 30 Overcoming challenges in standardization 31 Making the Hard Software Choice: Open Source or Closed Source 33 Open source 34 Closed source 36 Working with Open Standards 38 Looking Past Specifications to Business Needs 39 Part 11: Defining the Me of U Architecture b 1 Chapter 4: Reducing Complexity through Standardization and Consolidation 43 Recognizing Complexity in the Enterprise 43 Common sources of complexity 44 Complications of complexity 46 Planning for Consolidation 47 Applying the 80/20 rule 48 Finding value 49 Planning for technology end of life 49 Maintaining the help desk 51 Consolidating skills 51 Addressing Concerns about Standardization 53 Reduced functionality 53 Decreased productivity 54 Incompatibility with existing applications 54 Risk of technology monoculture 55 Preparing for opposition 55

4 Table of Contents xln Consolidating the Data Center 56 Identifying the benefits 57 Reducing complexity through virtualization 59 Implementing desirable redundancy 60 Planning the centralized facility 61 Automating the Data Center 61 Patches and updates 62 Image-based deployment 62 Backup solutions 63 Chapter 5: Planning Enterprise Information Security 65 Protecting Enterprise Data 66 Creating a Security Plan 67 Design a workable program 68 Use a layered framework 68 Implement security standards 70 View security as a program, not as a project 71 Keep security simple 71 Developing a Security Policy 72 Classifying data to be secured 72 Addressing basic security elements 72 Getting management approval 74 Maintaining the policy 74 Training employees 75 Using Technology to Support Security Operations 75 Use collaborative technologies 76 Remain flexible 77 Plan for partner relationships 77 Outsource only when necessary 78 Chapter 6: Complying with Mandates and Managing Risk 81 Keeping Your Company Compliant 81 Legal mandates that affect the organization 82 Discovery and retention 83 Additional requirements 83 Planning to Manage Risk 84 Identifying threats 84 Identifying vulnerabilities..86 Assessing risk 87 Addressing Risk 89 Prioritizing threats 89 Reducing probability 90 Reducing impact 91 Choosing appropriate mitigations 92

5 IT Architecture For Dummies Part 111: Creating an Enterprise Culture 93 Chapter 7: Developing Identity and Access Management Strategies 95 Introducing Identity and Access Management (IAM) 95 Identifying Users 96 Something users know: Password 97 Something users have: Access token 98 Something users are: Biometric identification 99 Something users do: Behavioral identification 101 Authenticating Users 102 Authentication standards 102 Directory 103 Central authentication 103 Federated authentication 104 Single sign-on 104 Cross-realm authentication 105 Authorizing Access 106 File and database rights 106 Service rights 107 Application rights 107 Creating an Identity Management Strategy 108 Reviewing technologies 108 Assigning aggregate rights 108 Meeting legal requirements 108 Keeping it simple 109 Finding benefits 109 Implementing an Identity Management Solution 110 Identification 110 Authentication 110 Authorization Additional functions Chapter 8: Developing a Network Culture through Collaboration Solutions 113 Establishing Networks of Trust 113 Creating a team from a mob 114 Developing strong lines of communication 115 Calculating the value of networks with Metcalfe's Law 115 Developing Network Culture through Social Media 116 Using social networking 117 Employing collective intelligence 118 Setting social-media policies 119 Employing Groupware 120 Considering the benefits of groupware 120 Selecting a groupware solution 121 Ill Ill

6 Table of Contents Working with Enterprise Portals 123 Activating common features of portals 123 Developing network culture with portals 126 Integrating business intelligence tools 126 Chapter 9: Reviewing Communication Methods 127 Identifying Classes of Communication 127 Messaging 128 Chat 128 Electronic mail ( ) 129 Instant messaging 131 Text messaging 132 Community Sites 132 Blogs 133 Discussion boards and forums 133 Wikis 134 Conferencing 135 Videoconferencing 135 Virtual reality 136 Voice over Internet protocol (VoIP) 137 Web conferencing 137 Broadcast Communications 138 Podcasting 139 Really Simple Syndication (RSS) 139 Streaming media 140 Part IV: betieiopinq an Extended NetWork Enterprise... HI Chapter 10: Managing Data Storage 143 Determining Storage Requirements 143 Conducting a storage survey 144 Interviewing personnel 145 Identifying Important Data Categories 145 File repositories 145 File versioning 146 Databases 146 Multimedia Logging 148 Virtual servers 149 Creating a Storage Policy 149 Addressing specific storage topics 150 Distributing the policy 151

7 IT Architecture For Dummies Designing a Storage System 152 Selecting appropriate storage configurations 152 Exploring enterprise-level storage strategies 153 Dealing with expanding storage needs 155 Protecting Stored Data 157 Fault tolerance 158 Backup and recovery 158 Data removal 159 Chapter 11: Managing Application Development 163 Exploring the Software Development Life Cycle 164 Waterfall 165 Prototype 166 Spiral 167 Rapid Application Development Strategies 168 Agile programming 169 Extreme programming 170 Scrum programming 170 Designing Application Architecture 171 Multitiered architecture 171 Service-oriented architecture 172 Including Accessibility 173 Chapter 12: Planning for the Mobile Enterprise 175 Introducing Mobile Computing 175 Laptops 176 Netbooks 176 Tablets 176 Cell phones 177 Bluetooth 177 Long-range wireless 177 Exploring Mobile Computing in the Enterprise 178 Device interaction 179 Boosters and dead zones 179 Going Mobile beyond the Enterprise 182 Navigation 182 Connectivity and bandwidth 183 VPN and SSL access 183 Remote desktops 184 Power 184 Planning for SmartPhone Computing 186 Familiarity 186 Planning ahead 186 Device locking 187 On-device encryption 187 Kill pills 188 Laptop LoJack 188

8 Table of Contents Defining Mobile Access Policy 189 Mobile computing policies 190 Remote access policies 190 Wireless use policies 191 Part V: Obtaining Value beyond the Basic Enterprise 193 Chapter 13: Virtualizing Enterprise Systems 195 Getting the Scoop on Virtualization Technology 196 Virtualizing Servers 197 Hosting virtual machines 198 Separating hardware and software tech refresh planning 199 Emerging best practices 200 Virtualizing Workstations 201 Using thin and thick clients 202 Virtual desktops 202 Remote desktops 203 Client hosting 203 Virtualizing Applications 203 Cloud Computing 204 Private clouds 205 Best practices 205 Chapter 14: Facilitating High-Performance Computing 207 Supercomputers Rule the World 207 Desktop computing 208 Parallel computing 210 Distributed computing 210 Everyday High-Performance Computing 211 Computing clusters 212 Visualization clusters 214 Grid computing 215 Volunteer computing 216 Compute farms 217 Desktop High-Performance Computing 217 Chapter 15: Enabling Green IT 219 Practicing Green Technology 219 Extended replacement cycles 220 Telework and telecommuting 220 Data center location 220 Energy tax credits 221 ENERGY STAR 221 Considering Alternative Energy 222 Reducing Consumables 223

9 IT Architecture For Dummies Selecting Green Hardware 224 Configuring Green Settings 225 Virtualizing Hardware 226 Ensuring Green Disposal 226 Part VI: Protecting the Enterprise 229 Chapter 16: Planning Technology Updates 231 Reviewing Hardware Update Strategies 231 Keeping systems until they fail 232 Using defined replacement cycles 232 Riding the cutting edge 236 Employing trickle-down replacement 237 Relying on surplus technology 238 Using technology as a reward 238 Replacing technology in an ad-hoc manner 239 Planning for Sub-System Updates 240 Upgrading components 240 Updating firmware 241 Updating device drivers 241 Planning Software Updates 242 Understanding the need for testing 242 Exploring deployment strategies 243 Planning for software maintenance 245 Chapter 17: Planning Security Strategies 247 Identifying Threats to the Enterprise 247 Malware 247 Application vulnerabilities 249 Directed network attacks 250 Selecting Appropriate Countermeasures 250 Malware protection 250 Secure application development 251 Data loss prevention 251 Encryption 252 Firewalls 254 Intrusion detection and prevention 256 Network address translation 257 Network monitoring 260 Chapter 18: Planning Business Continuity and Disaster Recovery 261 Defining Business Continuity and Disaster Recovery 261 Keeping Your Business in Business: Continuity Planning 262 Participating in a business impact analysis 262 Participating in risk assessment 264

10 Table of Contents Preparing a Recovery Plan 264 Developing scenarios 264 Incorporating virtualization strategies 265 Testing the plan 267 Updating the plan 267 Using Alternative Sites 268 Selecting the right type of site 268 Managing the alternative site 269 Communicating During a Disaster 270 Part (/ll: The Part of Tens. 273 Chapter 19: Ten Challenges for Redesigning an Existing Enterprise 275 Dealing with Lack of Executive Support 275 Handling Opposition to Change 276 Deciding on a Platform: Open Source versus Closed Source/Commercial Off-the-Shelf 276 Eliminating Resource Silos 277 Integrating Legacy Systems 277 When Change Doesn't Happen Fast Enough 278 Maintaining Compliance throughout the Process 278 Dealing with Separate Revenue Streams 279 Supporting Personally Owned Equipment 279 Know Your Limits 280 Chapter 20: Ten "Low-Hanging Fruit" Opportunities 281 Eliminate Resource Silos 281 Standardize the Workstation Environment 282 Create a Centralized Data Center 282 Consolidate Resources Already Within the Data Center 283 Implement Automated Update/Patch Management Solutions 283 Implement Enterprise-Level Anti-Malware Solutions 284 Use Risk Assessment Results to Find Easily Fixed Vulnerabilities 285 Schedule Workstation Replacement 285 Implement Virtualization 286 Reduce Cost from Consumables by Implementing Green IT Practices 286 Glossary 289 Index 313