Building YOURcloud: The Federal Government s first Secure Hybrid Community Cloud

Save this PDF as:
Size: px
Start display at page:

Download "Building YOURcloud: The Federal Government s first Secure Hybrid Community Cloud"

Transcription

1 Building YOURcloud: The Federal Government s first Secure Hybrid Community Cloud Anil Karmel, Deputy Chief Technology Officer National Nuclear Security Administration A Partnership between the Office of the Chief Information Officer and the National Nuclear Security Administration 1

2 RightPath focuses on People, Processes, and Technology to deliver: powered by Immersive Collaboration and Social Networking tools Virtual Servers and Desktops hosted in your Secure Hybrid, Community Cloud 2

3 LLNL HQ/SC KS NNSS Sandia LANL Pantex Y-12 SRS 3

4 4

5 Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources 5

6 Cloud Computing Organizations are faced with large existing technology investments and dwindling budgets { US Data Centers consume between % of the energy budget 6

7 DOE IaaS Business Use Cases Rapid deployment of servers to scientists Security controls based on data sensitivity Calculating energy savings Disaster Recovery Capital Expenditure Reduction 7

8 DOE SaaS Business Use Cases Social Computing Web Conferencing Instant Messaging Enterprise Mobility 8

9 A Cloud of Clouds approach brokering any organization, through any device, to any service respectful of site autonomy; powered by the innovation of the National Labs DOE Cloud On-Premise Cloud NNSA Cloud Other Gov t Agency Cloud Public Cloud INSIGHT Green & Business IT Smart Meters PortfolioStat Enterprise Architecture Data Center Consolidation Services Broker * Powered by developed by LANL FEATURES Virtual Desktops & Servers Enterprise Application Store Enterprise Certification & Accreditation DOE Federal Users General Public Users Laboratory & Plant Users Other Gov t Agecy Users Support Contractors 9

10 * Powered by developed by LANL Services Broker Enclaves Organization: IM-60 Enclave SITES On Premise Cloud DOE Cloud Public Cloud CFO Shared Services Open Science Public Websites Hypervisor Network VDI Compute Remediation Storage 10

11 * Powered by developed by LANL Services Broker Modules 11

12 Secure Hybrid Community Cloud LANL s Infrastructure on Demand is the first Infrastructure-as-a-Service secure hybrid cloud to automatically request and provision virtual servers Value Added Features: GreenIT Smart Meter Dynamic Cost Calculator LifeCycle Management Chargeback / Showback Requestor Responsibility: Enclave Security Plan System Administration Maintenance of operating system and applications Awards: SANS National Cybersecurity Innovators Award: Cloud Security InformationWeek 500 Top IT Government Innovators 12

13 Secure Hybrid Cloud 13

14 Security Journey TRADITIONAL SECURITY Complex Multiple provisioning interfaces Overlapping admin roles Multiple point solutions VIRTUALIZED SECURITY Simple Single interface for provisioning Separation of duties Firewall policy reduction Virtual security appliances Rigid Agents in each VM, AV storms No granular segmentation Rigid Policies tied to servers Labor Intensive Compliance Not change-aware, data leaks Manual assessment Manual remediation Adaptive Agentless Adaptive trust zones, compromised apps quarantined Virtualization aware firewall Automatic Compliance Discover sensitive data Continuous assessment Automated remediation, programmable 14

15 Physical Security Architecture Internet Load Balancer Load Balancer Unclassified A Unclassified B Service A Service B Service C Service D Service E 15

16 Cloud Security: Protect the VDI Clients 16

17 Cloud Security: Quarantine the Compromised Virtual Machines 17

18 Secure Hybrid Cloud Computing Service A VDC Service B VDC Service B VDC Secure VPN On Premise Private Cloud Commercial Cloud Service Provider 18

19 Cross Cloud Management Makes Hybrid Cloud Real Visualize resources across hybrid clouds Copy and operate resources across clouds Deliver enterprise level security Hybrid Cloud Private Clouds Federation & Choice Public Clouds 19

20 Elastic Compute Elastic VDC vshield Edge Elastic VDC Benefits: Cross cluster mobility within or across datacenters On demand networks without physical network configuration 20

21 LANL IoD Elastic Compute VXLAN On Premise Private Cloud Commercial Cloud Service Provider 21

22 22

23 23

24 24

25 25

26 26

27 27

28 Organization Registration Organization Users Organization registration is a critical function of the service broker because it identifies the organizations top level contacts and ensures that unnecessary organization overlap is not occurring. The organizations top level contacts are granted certain permissions throughout their slice of the cloud infrastructure and their contact information is used for notification actions which are leveraged by many of the system s workflows. IoD v3 Service Broker NNSA Private Cloud Virtualization Subsystem Technical Contacts Security Contacts Billing Contacts Shared Service Subsystem AD / LDAP Server Subsystem Storage Subsystem Network Subsystem Selecting Providers Creating Enclaves Granting Permissions Managing configuratio ns Receives Notifications Org Firewall Control Security functions outside of the system Receives Notifications Billing Statement Controls Billing functions outside of the system. 28

29 Provider Selection Organization Users IoD v3 Service Broker Provider selection is one of the core capabilities of the IoD v3 service broker. The IoD v3 service broker allows an organization to select from multiple public and private cloud providers. As mentioned before, this document will focus on what components are leveraged when the service broker interacts with the NNSA Private Cloud. Below is a visual representation of the virtual overlay that is created when an organization selects the NNSA Private Cloud as a provider. Org Campus Networks NNSA Private Cloud OneNNSA Network Virtualization Subsystem vcloud Dir. Shared Service Subsystem AD / LDAP Server Subsystem Provider Defined IP Space / VLAN Org Outside Transport (VLAN) Organization Firewall (Cisco ASA Virtual Context) NetApp Storage Subsystem Org Inside Transport (VLAN) Organization Load Balancer Context (F5 Virtual BIG-IP, Local and Global LB) Cisco Network Subsystem F5 Organization Storage Context virtual (NetApp vserver with Service Level Mounts) 29

30 Enclave Creation Organization Users IoD v3 Service Broker Enclaves within an organization provide a container for workloads and configurations. Each Enclave is protected by an edge firewall and contains virtual networks and servers. Enclaves also provide configuration control of RBAC, Load balancer rules, public IP mappings, and global load balancing rules. A large portion of the Service Broker s functionality is dedicated at simplifying the user experience related to configuring the enclave so that end-to-end communications for systems hosted in the cloud is achieved without manual intervention. Org Campus Networks NNSA Private Cloud OneNNSA Network Virtualization Subsystem vcloud Dir. vshield Shared Service Subsystem AD / LDAP Server Subsystem Hardware ESXi Storage Subsystem Org Inside Transport (VLAN) Org Outside Transport (VLAN) Organization Firewall (Cisco ASA Virtual Context) Organization Load Balancer Context (F5 Virtual BIG-IP, Local and Global LB) Network Subsystem Enclave Networks (VLAN / VXLAN s) Enclave Networks (VLAN / VXLAN s) Organization Storage Context virtual (NetApp vserver with Service Level Mounts) 30

31 Enclave RBAC Organization Users IoD v3 Service Broker NNSA Private Cloud After an Enclave is created, Role Based Access Control (RBAC) is established by assigning permissions to the organization s technical staff. The Technical Contact that creates an Enclave becomes the Enclave Owner. This contact can then grant permissions to administrators and other technical staff that need configuration control for that Enclave. The Security Contact is informed of the actions that the technical contact is preforming and can take action relating to personnel security. Technical Contact Security Contacts Virtualization Subsystem vcloud Dir. vshield AD / LDAP Shared Service Subsystem Server Subsystem Granting Permissions Notification Storage Subsystem Enclave Administrators Network Subsystem 31

32 Enclave Management Organization Users IoD v3 Service Broker NNSA Private Cloud Virtualization Subsystem vshield Shared Service Subsystem Server Subsystem Storage Subsystem Network Subsystem Cisco F5 Once an Enclave has been established and applications are ready to be presented to end users, several configuration steps need to be taken. The Service Broker should simplify these steps but provide control at the organization level. For instance, if an Enclave Admin is ready to present an application to the organization s users, they would need to configure static NAT and Load Balancer Rules. Control is maintained because public NAT and access rules can only be set by the organization s technical and security contacts. End Users Technical and Security Contacts Enclave Administrators End User Traffic Flows Public NAT, Org Access Control Load Balancer Rules, SSL Offload Static NAT, Access Control, VPN Applications and Shared Services Org Campus Networks OneNNSA Network Org Outside Transport (VLAN) Org Inside Transport (VLAN) Enclave Networks (VLAN / VXLAN s) 32

33 Business Dynamic Cost Calculator Chargeback / Showback Green and Business IT Smart Meters Enterprise Application Store 33

34 Technical Unified Management across private, hybrid and public clouds Broker Concept cloud computing meets travel agency Advanced Orchestration no touch Comprehensive Management Networks and Firewalls Load Balancers DNS Workload Management 34

35 Security Software Defined Security Network Storage Compute Adaptive Security VDI Remediation Enclave Interactive Intelligence Business Social Cyber 35

36 Secure Workload Portability Automated Cloud Risk Management What s Next? Moving Target Security Network Virtualization SustainIT 36

37 SustainIT Integrated Capabilities Data Center High-Level View Data Center Detail View DC Pro Analysis Sustainable Portfolio Project Manager Facility TCO Modeling Real-time Energy Monitoring and Management 37 37

38 Begin with the end goal in mind Rapid results Focus on real business solutions Low risk Take a lean, agile approach to technology Low cost 38

39 Anil Karmel Deputy Chief Technology Officer, NNSA RightPath Chief 39

Cloud Architecture and Mobility

Cloud Architecture and Mobility Cloud Architecture and Mobility Anil Karmel, NNSA M&O Chief Technology Officer RightPath Chief Architect A Partnership between the Office of the Chief Information Officer and the National Nuclear Security

More information

Cloud and Mobility. J Travis Howerton, NNSA Chief Technology Officer Anil Karmel, NNSA M&O Chief Technology Officer

Cloud and Mobility. J Travis Howerton, NNSA Chief Technology Officer Anil Karmel, NNSA M&O Chief Technology Officer Cloud and Mobility J Travis Howerton, NNSA Chief Technology Officer Anil Karmel, NNSA M&O Chief Technology Officer A Partnership between the Office of the Chief Information Officer and the National Nuclear

More information

Key Management Challenges in a Cloud Ecosystem

Key Management Challenges in a Cloud Ecosystem Key Management Challenges in a Cloud Ecosystem A Discussion Starter Based on the Cloud Security WG s Research - Dr. Michaela Iorga, NIST (presenting) Anil Karmel, C2 Lab, Inc. (presenting) Juanita Koilpilai,

More information

Security in the Software Defined Data Center

Security in the Software Defined Data Center Security in the Software Defined Data Center Francesco Vigo Senior Systems Engineer, VMware fvigo@vmware.com Ugo Piazzalunga Technical Manager, SafeNet ugo.piazzalunga@safenet-inc.com Agenda Software Defined

More information

Keith Luck, CISSP, CCSK Security & Compliance Specialist, VMware, Inc. kluck@vmware.com

Keith Luck, CISSP, CCSK Security & Compliance Specialist, VMware, Inc. kluck@vmware.com 1 Keith Luck, CISSP, CCSK Security & Compliance Specialist, VMware, Inc. kluck@vmware.com Agenda Cloud Computing VMware and Security Network Security Use Case Securing View Deployments Questions 2 IT consumption

More information

Copyright 2015 EMC Corporation. All rights reserved. 1

Copyright 2015 EMC Corporation. All rights reserved. 1 Copyright 2015 EMC Corporation. All rights reserved. 1 CLOUD READY DATA PROTECTION BUILT FOR SOFTWARE DEFINED DATACENTER YATIN PATIL Copyright 2015 EMC Corporation. All rights reserved. 2 TWEET US! Are

More information

VMware vcloud Networking and Security

VMware vcloud Networking and Security VMware vcloud Networking and Security Efficient, Agile and Extensible Software-Defined Networks and Security BROCHURE Overview Organizations worldwide have gained significant efficiency and flexibility

More information

vcloud Suite Architecture Overview and Use Cases

vcloud Suite Architecture Overview and Use Cases vcloud Suite Architecture Overview and Use Cases vcloud Suite 5.8 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new

More information

VMware for your hosting services

VMware for your hosting services VMware for your hosting services Anindya Kishore Das 2009 VMware Inc. All rights reserved Everybody talks Cloud! You will eat your cloud and you will like it! Everybody talks Cloud - But what is it? VMware

More information

SOLUTION BRIEF Citrix Cloud Solutions Citrix Cloud Solution for On-boarding

SOLUTION BRIEF Citrix Cloud Solutions Citrix Cloud Solution for On-boarding SOLUTION BRIEF Citrix Cloud Solutions Citrix Cloud Solution for On-boarding www.citrix.com Contents Introduction... 3 The On- boarding Problem Defined... 3 Considerations for Application On- boarding...

More information

Consumption IT. Michael Shepherd Business Development Manager. Cisco Public Sector May 1 st 2014

Consumption IT. Michael Shepherd Business Development Manager. Cisco Public Sector May 1 st 2014 Consumption IT Michael Shepherd Business Development Manager Cisco Public Sector May 1 st 2014 Short Bio Cloud BDM in Public Sector (SLED + FED) Cisco for 14 + years Focused on cloud for 4 + years Awareness,

More information

Server & Cloud Management

Server & Cloud Management Technical Bootcamp: The Cloud-enabled Datacenter with Windows Server 2012 and System Center 2012 This 3-day, instructor-led course will help you understand how to evolve a traditional datacenter configuration

More information

5 Key Reasons to Migrate from Cisco ACE to F5 BIG-IP

5 Key Reasons to Migrate from Cisco ACE to F5 BIG-IP 5 Key Reasons to Migrate from Cisco ACE to F5 BIG-IP With support for Cisco ACE load balancer ending, organizations need to find an alternative. Contents Introduction 3 Advanced Architecture 3 Ease of

More information

VMware vcloud Networking and Security Overview

VMware vcloud Networking and Security Overview VMware vcloud Networking and Security Overview Networks and Security for Virtualized Compute Environments WHITE PAPER Overview Organizations worldwide have gained significant efficiency and flexibility

More information

Cloud Computing and Data Center Consolidation

Cloud Computing and Data Center Consolidation Cloud Computing and Data Center Consolidation Charles Onstott, PMP Chief Technology Officer, Enterprise IT Services SAIC Steven Halliwell General Manager for State and Local and Education Sales Amazon

More information

Dell Active System, Enabling service-centric IT, the path to the Cloud. Pavlos Kitsanelis Enterprise Solutions Lead Greece, Cyprus, Malta

Dell Active System, Enabling service-centric IT, the path to the Cloud. Pavlos Kitsanelis Enterprise Solutions Lead Greece, Cyprus, Malta Dell Active System, Enabling service-centric IT, the path to the Cloud Pavlos Kitsanelis Enterprise Solutions Lead Greece, Cyprus, Malta Delivery Deployment Cloud models & approaches Private Operated and

More information

Course 20533: Implementing Microsoft Azure Infrastructure Solutions

Course 20533: Implementing Microsoft Azure Infrastructure Solutions Course 20533: Implementing Microsoft Azure Infrastructure Solutions Overview About this course This course is aimed at experienced IT Professionals who currently administer their on-premises infrastructure.

More information

Architecting and Building a Secure and Compliant Virtual Infrastructure and Private Cloud

Architecting and Building a Secure and Compliant Virtual Infrastructure and Private Cloud Architecting and Building a Secure and Compliant Virtual Infrastructure and Private Cloud Rob Randell, CISSP Principal Systems Engineer Security Specialist Agenda What is the Cloud? Virtualization Basics

More information

Infrastructure Virtualization for Hybrid Cloud

Infrastructure Virtualization for Hybrid Cloud Infrastructure Virtualization for Hybrid Cloud Technology Transformation Public cloud has delivered elastic computing to enterprises by offering on-demand resources to accommodate the burst computing needs.

More information

Cisco Prime Network Services Controller. Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems

Cisco Prime Network Services Controller. Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems Cisco Prime Network Services Controller Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems Agenda Cloud Networking Challenges Prime Network Services Controller L4-7 Services Solutions

More information

Moving beyond Virtualization as you make your Cloud journey. David Angradi

Moving beyond Virtualization as you make your Cloud journey. David Angradi Moving beyond Virtualization as you make your Cloud journey David Angradi Today, there is a six (6) week SLA for VM provisioning it s easy to provision a VM, the other elements change storage, network

More information

Unleash the IaaS Cloud About VMware vcloud Director and more VMUG.BE June 1 st 2012

Unleash the IaaS Cloud About VMware vcloud Director and more VMUG.BE June 1 st 2012 Unleash the IaaS Cloud About VMware vcloud Director and more VMUG.BE June 1 st 2012 2 Who? Viktor van den Berg Consultant @ PQR Former Dutch VMUG Leader Blogger at www.viktorious.nl Twitter @viktoriousss

More information

ADVANCE YOUR MISSION WITH THE CLOUD DO MORE WITH LESS CLOUD SOLUTIONS CDW NONPROFIT

ADVANCE YOUR MISSION WITH THE CLOUD DO MORE WITH LESS CLOUD SOLUTIONS CDW NONPROFIT ADVANCE YOUR MISSION WITH THE CLOUD DO MORE WITH LESS CLOUD SOLUTIONS CDW NONPROFIT 2 CLOUD SOLUTION Cloud/hosted software spending by nonprofits and associations increased by 43% while technology hardware

More information

Implementing Microsoft Azure Infrastructure Solutions

Implementing Microsoft Azure Infrastructure Solutions Course Code: M20533 Vendor: Microsoft Course Overview Duration: 5 RRP: 2,025 Implementing Microsoft Azure Infrastructure Solutions Overview This course is aimed at experienced IT Professionals who currently

More information

Application Centric Cloud Solutions. Fast IT! Stefan Ruoss Business Consultant Fast IT! Datacenter Technology Team

Application Centric Cloud Solutions. Fast IT! Stefan Ruoss Business Consultant Fast IT! Datacenter Technology Team Application Centric Cloud Solutions Fast IT! Stefan Ruoss Business Consultant Fast IT! Datacenter Technology Team Agenda Bimodal IT DC and Cloud Strategy Cloud ready! Orchestration and Automation Wrap

More information

Empowering Private Cloud with Next Generation Infrastructure. Martin Ip, Head of Advanced Solutions and Services Macroview Telecom

Empowering Private Cloud with Next Generation Infrastructure. Martin Ip, Head of Advanced Solutions and Services Macroview Telecom Empowering Private Cloud with Next Generation Infrastructure Martin Ip, Head of Advanced Solutions and Services Macroview Telecom People Media Healthcare Govt Business Private Hybrid Public & more Connecting

More information

Driving Down the Cost and Complexity of Application Networking with Multi-tenancy

Driving Down the Cost and Complexity of Application Networking with Multi-tenancy White Paper AX Series Driving Down the Cost and Complexity of Application Networking with Multi-tenancy February 2013 WP_ADC_ADP_012013.1 Table of Contents 1 Introduction... 3 2 Application Delivery Partition

More information

Predstavenie Oracle Cloud Platform

Predstavenie Oracle Cloud Platform Predstavenie Oracle Cloud Platform Gabriela Hečková Technology Sales Consultant 1 Digital Business: Challenging Old Business Models Trends Driving Digital Disruption Mobile Social Big Data Internet of

More information

Building an Enterprise Hybrid Cloud with the VMware vcloud Solution

Building an Enterprise Hybrid Cloud with the VMware vcloud Solution Building an Enterprise Hybrid Cloud with the VMware vcloud Solution Eduardo Penedos Customer Presentation 2009 VMware Inc. All rights reserved Agenda VMware vcloud Initiative IT Needs Cloud To Enable Efficiency

More information

Software defined networking. Your path to an agile hybrid cloud network

Software defined networking. Your path to an agile hybrid cloud network Software defined networking Your path to an agile hybrid cloud network Is your enterprise network ready for the latest business and consumer trends? Cloud How easily can your users connect to cloud resources?

More information

Learn how to build Enterprise Hybrid Clouds for your customers using VMware vcloud

Learn how to build Enterprise Hybrid Clouds for your customers using VMware vcloud Learn how to build Enterprise Hybrid Clouds for your customers using VMware vcloud 1 The business has strict demands of IT As the CIO, I provide Through Cloud I am able business with the to cost effectively

More information

VMware vcloud Director for Service Providers

VMware vcloud Director for Service Providers Architecture Overview TECHNICAL WHITE PAPER Table of Contents Scope of Document....3 About VMware vcloud Director....3 Platform for Infrastructure Cloud...3 Architecture Overview....3 Constructs of vcloud

More information

VMUG - vcloud Air Deep Dive. 2014 VMware Inc. All rights reserved.

VMUG - vcloud Air Deep Dive. 2014 VMware Inc. All rights reserved. VMUG - vcloud Air Deep Dive 2014 VMware Inc. All rights reserved. Agenda 1 Overview of vcloud Air 2 Advanced Networking Capabilities 3 Use Cases 4 Overview of Disaster Recovery Service 5 Questions 2 VMware

More information

Intro to NSX. Network Virtualization. 2014 VMware Inc. All rights reserved.

Intro to NSX. Network Virtualization. 2014 VMware Inc. All rights reserved. Intro to NSX Network Virtualization 2014 VMware Inc. All rights reserved. Agenda Introduction NSX Overview Details: Microsegmentation NSX Operations More Information SDDC/Network Virtualization Security

More information

Uni On-Board. An Introduction to Uni Systems Cloud On-boarding services portfolio. White Paper Solution Brief

Uni On-Board. An Introduction to Uni Systems Cloud On-boarding services portfolio. White Paper Solution Brief Uni On-Board An Introduction to Uni Systems Cloud On-boarding services portfolio White Paper Solution Brief Contents Introduction... 3 The On-Boarding problem Defined... 3 Defining an application workload...

More information

Potecting your business assets in The Cloud, with. Secure Multitency Environment from CloudHPT.

Potecting your business assets in The Cloud, with. Secure Multitency Environment from CloudHPT. Potecting your business assets in The Cloud, with Secure Multitency Environment from CloudHPT. Whitepaper 1 Introduction Goal of This Document To provide a guide to the security features of CloudHPT. CloudHPT

More information

VMware End User Computing

VMware End User Computing VMware End User Computing Overview 2014 VMware Inc. All rights reserved. Architecture for IT Any Device Business Mobility: Applications Devices Content Any Application Traditional Applications Modern,

More information

Implementing Microsoft Azure Infrastructure Solutions 20533B; 5 Days, Instructor-led

Implementing Microsoft Azure Infrastructure Solutions 20533B; 5 Days, Instructor-led Implementing Microsoft Azure Infrastructure Solutions 20533B; 5 Days, Instructor-led Course Description This course is aimed at experienced IT Professionals who currently administer their on-premises infrastructure.

More information

Virtualization and IaaS management

Virtualization and IaaS management CLOUDFORMS Virtualization and IaaS management Calvin Smith, Senior Solutions Architect calvin@redhat.com VIRTUALIZATION TO CLOUD CONTINUUM Virtual Infrastructure Management Drivers Server Virtualization

More information

Understanding Cisco Cloud Fundamentals CLDFND v1.0; 5 Days; Instructor-led

Understanding Cisco Cloud Fundamentals CLDFND v1.0; 5 Days; Instructor-led Understanding Cisco Cloud Fundamentals CLDFND v1.0; 5 Days; Instructor-led Course Description Understanding Cisco Cloud Fundamentals (CLDFND) v1.0 is a five-day instructor-led training course that is designed

More information

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions Course 20533B: Implementing Microsoft Azure Infrastructure Solutions Sales 406/256-5700 Support 406/252-4959 Fax 406/256-0201 Evergreen Center North 1501 14 th St West, Suite 201 Billings, MT 59102 Course

More information

Why Cisco for Cloud? IT Service Delivery, Orchestration and Automation

Why Cisco for Cloud? IT Service Delivery, Orchestration and Automation Why Cisco for Cloud? IT Service Delivery, Orchestration and Automation Sascha Merg Technical Lead for Data Center Sales, Cisco Central Europe samerg@cisco.com June 2014 Agenda What is ITaaS and why should

More information

Proactively Secure Your Cloud Computing Platform

Proactively Secure Your Cloud Computing Platform Proactively Secure Your Cloud Computing Platform Dr. Krutartha Patel Security Engineer 2010 Check Point Software Technologies Ltd. [Restricted] ONLY for designated groups and individuals Agenda 1 Cloud

More information

The Evolving Data Center. Past, Present and Future Scott Manson CISCO SYSTEMS

The Evolving Data Center. Past, Present and Future Scott Manson CISCO SYSTEMS The Evolving Data Center Past, Present and Future Scott Manson CISCO SYSTEMS Physical» Virtual» Cloud Journey in Compute Physical Workload Virtual Workload Cloud Workload HYPERVISOR 1 VDC- VDC- 2 One App

More information

The growing importance of a secure Cloud environment

The growing importance of a secure Cloud environment The growing importance of a secure Cloud environment Jan Tiri jtiri@vmware.com System Engineer, VMware BeLux 2009 VMware Inc. All rights reserved Cloud components Enterprises Cloud Service Providers Private

More information

vcloud Suite 5.1- Build your Private Cloud

vcloud Suite 5.1- Build your Private Cloud vcloud Suite 5.1- Build your Private Cloud Darius Spaicys & Libor Nedas VMware Baltics 2011 VMware Inc. All rights reserved VMware is the Customer Proven Market Leader (EMEA) Company Overview $3.77 billion

More information

IT Infrastructure Services. White Paper. Utilizing Software Defined Network to Ensure Agility in IT Service Delivery

IT Infrastructure Services. White Paper. Utilizing Software Defined Network to Ensure Agility in IT Service Delivery IT Infrastructure Services White Paper Utilizing Software Defined Network to Ensure Agility in IT Service Delivery About the Author Siddhesh Rane Siddhesh Rane is a Technical Architect and part of the

More information

locuz.com A comprehensive orchestration tool for setting up private and hybrid clouds

locuz.com A comprehensive orchestration tool for setting up private and hybrid clouds locuz.com A comprehensive orchestration tool for setting up private and hybrid clouds An innovative and flexible cloud platform for creating, deploying and managing highly reliable and scalable cloud infrastructure

More information

Data center fo the future software defined DC

Data center fo the future software defined DC Data center fo the future software defined DC Giedrius Markevičius Prekybos vadovas Baltijos šalims 2011 VMware Inc. All rights reserved It took us 4 years to get to 1 million VMs, now we add 1 million

More information

Where in the Cloud are You? Session 17032 Thursday, March 5, 2015: 1:45 PM-2:45 PM Virginia (Sheraton Seattle)

Where in the Cloud are You? Session 17032 Thursday, March 5, 2015: 1:45 PM-2:45 PM Virginia (Sheraton Seattle) Where in the Cloud are You? Session 17032 Thursday, March 5, 2015: 1:45 PM-2:45 PM Virginia (Sheraton Seattle) Abstract The goal of this session is to understanding what is meant when we say Where in the

More information

Managing Cloud Infrastructure

Managing Cloud Infrastructure Managing Cloud Infrastructure The Key to deliver IT as a Service Eitan Segal Technology Consultant 1 Managing Cloud Infrastructure The Key to Deliver IT as a Service Eitan Segal Technology Consultant 2

More information

Remote Voting Conference

Remote Voting Conference Remote Voting Conference Logical Architecture Connectivity Central IT Infra NIST Best reachability in India for R-Voting Initiative 200+ Physical MPLS POPs across India 5 Regional Data Centre at Pune,

More information

Strategic Direction of Networking IPv6, SDN and NFV Where Do You Start?

Strategic Direction of Networking IPv6, SDN and NFV Where Do You Start? Strategic Direction of Networking IPv6, SDN and NFV Where Do You Start? Yanick Pouffary HP Distinguished Technologist, Chief Technologist Technology Services Mobility & Networking Forward-looking statements

More information

WHITE PAPER: Egenera Cloud Suite for EMC VSPEX. The Proven Solution For Building Cloud Services

WHITE PAPER: Egenera Cloud Suite for EMC VSPEX. The Proven Solution For Building Cloud Services WHITE PAPER: Egenera Cloud Suite for EMC VSPEX The Proven Solution For Building Cloud Services Build, Manage and Protect Your Cloud with the VSPEX Certified Egenera Cloud Suite Today, organizations are

More information

What s New with VMware Virtual Infrastructure

What s New with VMware Virtual Infrastructure What s New with VMware Virtual Infrastructure Virtualization: Industry-Standard Way of Computing Early Adoption Mainstreaming Standardization Test & Development Server Consolidation Infrastructure Management

More information

HAWAII TECH TALK SDN. Paul Deakin Field Systems Engineer

HAWAII TECH TALK SDN. Paul Deakin Field Systems Engineer HAWAII TECH TALK SDN Paul Deakin Field Systems Engineer SDN What Is It? SDN stand for Software Defined Networking SDN is a fancy term for: Using a controller to tell switches where to send packets SDN

More information

Netzwerkvirtualisierung? Aber mit Sicherheit!

Netzwerkvirtualisierung? Aber mit Sicherheit! Netzwerkvirtualisierung? Aber mit Sicherheit! Markus Schönberger Advisory Technology Consultant Trend Micro Stephan Bohnengel Sr. Network Virtualization SE VMware Agenda Background and Basic Introduction

More information

VMware Overview Journey to Cloud Computing Adam Oaten Technical Partner Manager

VMware Overview Journey to Cloud Computing Adam Oaten Technical Partner Manager VMware Overview Journey to Cloud Computing Adam Oaten Technical Partner Manager 2009 VMware Inc. All rights reserved Agenda Evolution of IT Customer Journey Components of vsphere & New Features in 4.1

More information

VMware vcloud Air Networking Guide

VMware vcloud Air Networking Guide vcloud Air This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition. To check for more recent editions of this document,

More information

Aligning Applications and Connectivity to Enable Fast And Safe Cloud Computing Derrick Loi, May 2015

Aligning Applications and Connectivity to Enable Fast And Safe Cloud Computing Derrick Loi, May 2015 Orange Cloud for Business Aligning Applications and Connectivity to Enable Fast And Safe Cloud Computing Derrick Loi, May 2015 Page 1 Orange Cloud for Business (OCB) who we are transformation & outsourcing

More information

WHITE PAPER: Egenera Cloud Suite

WHITE PAPER: Egenera Cloud Suite WHITE PAPER: Egenera Cloud Suite ... Introduction Driven by ever-increasing business demand, cloud computing has become part of many organizations IT strategy today. Driving this transition is the need

More information

vcloud Air - Virtual Private Cloud OnDemand Networking Guide

vcloud Air - Virtual Private Cloud OnDemand Networking Guide vcloud Air - Virtual Private Cloud OnDemand Networking Guide vcloud Air This document supports the version of each product listed and supports all subsequent versions until the document is replaced by

More information

SOFTWARE DEFINED NETWORKING

SOFTWARE DEFINED NETWORKING SOFTWARE DEFINED NETWORKING Bringing Networks to the Cloud Brendan Hayes DIRECTOR, SDN MARKETING AGENDA Market trends and Juniper s SDN strategy Network virtualization evolution Juniper s SDN technology

More information

Secure Cloud Computing

Secure Cloud Computing Secure Cloud Computing Agenda Current Security Threat Landscape Over View: Cloud Security Overall Objective of Cloud Security Cloud Security Challenges/Concerns Cloud Security Requirements Strategy for

More information

Shifting Roles for Security in the Virtualized Data Center: Who Owns What?

Shifting Roles for Security in the Virtualized Data Center: Who Owns What? Shifting Roles for Security in the Virtualized Data Center: Who Owns What? SESSION ID: CSV-T07 Rob Randell, CISSP Director Systems Engineering Principal Security Architect VMware / NSBU Malcolm Rieke Director

More information

VMware Software Defined Network. Dejan Grubić VMware Systems Engineer for Adriatic

VMware Software Defined Network. Dejan Grubić VMware Systems Engineer for Adriatic VMware Software Defined Network Dejan Grubić VMware Systems Engineer for Adriatic The Transformation of Infrastructure Infrastructure Servers Clouds Be more responsive to business, change economics of

More information

Delivering the Software Defined Data Center

Delivering the Software Defined Data Center Delivering the Software Defined Data Center Georgina Schäfer Sr. Product Marketing Manager VMware Calvin Rowland, VP, Business Development F5 Networks 2014 VMware Inc. All rights reserved. F5 & Vmware

More information

Cloud computing: the IBM point of view

Cloud computing: the IBM point of view Building an Smarter Planet with Dynamic Infrastructure Cloud computing: the IBM point of view Ciro Puglisi, Infrastructure Offering Leader, CEEMEA cpug@ch.ibm.com, +41 58 333 4157 Cloud Computing can go

More information

SUSE Cloud 2.0. Pete Chadwick. Douglas Jarvis. Senior Product Manager pchadwick@suse.com. Product Marketing Manager djarvis@suse.

SUSE Cloud 2.0. Pete Chadwick. Douglas Jarvis. Senior Product Manager pchadwick@suse.com. Product Marketing Manager djarvis@suse. SUSE Cloud 2.0 Pete Chadwick Douglas Jarvis Senior Product Manager pchadwick@suse.com Product Marketing Manager djarvis@suse.com SUSE Cloud SUSE Cloud is an open source software solution based on OpenStack

More information

EMA Radar for Private Cloud Platforms: Q1 2013

EMA Radar for Private Cloud Platforms: Q1 2013 EMA Radar for Private Cloud Platforms: Q1 2013 By Torsten Volk ENTERPRISE MANAGEMENT ASSOCIATES (EMA ) Radar Report March 2013 BMC Software EMA Radar for Private Cloud Platforms: Q1 2013 (IaaS, PaaS, SaaS)

More information

Barnaby Jeans Sr. Solution Architect Business Critical Applications

Barnaby Jeans Sr. Solution Architect Business Critical Applications Barnaby Jeans Sr. Solution Architect Business Critical Applications Connected, Mobile, Information-Centric World Business Reduction in Complexity via New IT Architectures and Business Models The IT Dilemma

More information

Partner Guide. August 26 August 30 Moscone Center San Francisco, CA

Partner Guide. August 26 August 30 Moscone Center San Francisco, CA Partner Guide August 26 August 30 Moscone Center San Francisco, CA Overview 1 Welcome Partners The premier virtualization and cloud computing event of the year is better than ever for VMware Partners.

More information

Virtualization, SDN and NFV

Virtualization, SDN and NFV Virtualization, SDN and NFV HOW DO THEY FIT TOGETHER? Traditional networks lack the flexibility to keep pace with dynamic computing and storage needs of today s data centers. In order to implement changes,

More information

Simplify IT. With Cisco Application Centric Infrastructure. Roberto Barrera rbarrera@grupo-dice.com. VERSION May, 2015

Simplify IT. With Cisco Application Centric Infrastructure. Roberto Barrera rbarrera@grupo-dice.com. VERSION May, 2015 Simplify IT With Cisco Application Centric Infrastructure Roberto Barrera rbarrera@grupo-dice.com VERSION May, 2015 Content Understanding Software Definded Network (SDN) Why SDN? What is SDN and Its Benefits?

More information

Adatbázis hibrid felhő - egyszerűbb, mint gondolná

Adatbázis hibrid felhő - egyszerűbb, mint gondolná Adatbázis hibrid felhő - egyszerűbb, mint gondolná Sárecz Lajos 2015. október 7. Copyright 2015 Oracle and/or its affiliates. All rights reserved. 1 Safe Harbor Statement The following is intended to outline

More information

HP OpenStack & Automation

HP OpenStack & Automation HP OpenStack & Automation Where we are heading Thomas Goh Cloud Computing Cloud Computing Cloud computing is a model for enabling ubiquitous network access to a shared pool of configurable computing resources.

More information

Microsoft Private Cloud

Microsoft Private Cloud A Comparative Look at Functionality, Benefits, and Economics November 2012 1 1 Copyright Information 2012 Microsoft Corporation. All rights reserved. This document is provided "as-is." Information and

More information

VM-Series for VMware. PALO ALTO NETWORKS: VM-Series for VMware

VM-Series for VMware. PALO ALTO NETWORKS: VM-Series for VMware VM-Series for VMware The VM-Series for VMware supports VMware NSX, ESXI stand-alone and vcloud Air, allowing you to deploy next-generation firewall security and advanced threat prevention within your VMware-based

More information

Business Values of Network and Security Virtualization

Business Values of Network and Security Virtualization Business Values of Network and Security Virtualization VMware NSX in the context of the Software Defined Data Center Klaus Jansen Virtual Networks Sales Specialist VMware NSBU 2014 VMware Inc. All rights

More information

F5 and VMware. Realize the Virtual Possibilities.

F5 and VMware. Realize the Virtual Possibilities. . Realize the Virtual Possibilities. Simplify. Accelerate. Manage. Secure. Discover how deliver a Software-Defined Data Center by providing simplified end-to-end networking through an application-centric

More information

SDN PARTNER INTEGRATION: SANDVINE

SDN PARTNER INTEGRATION: SANDVINE SDN PARTNER INTEGRATION: SANDVINE SDN PARTNERSHIPS SSD STRATEGY & MARKETING SERVICE PROVIDER CHALLENGES TIME TO SERVICE PRODUCT EVOLUTION OVER THE TOP THREAT NETWORK TO CLOUD B/OSS AGILITY Lengthy service

More information

SOLUTIONS. Secure Infrastructure as a Service for Production Workloads

SOLUTIONS. Secure Infrastructure as a Service for Production Workloads IaaS SOLUTIONS Secure Infrastructure as a Service for Production Workloads THE CHALLENGE Now more than ever, business and government are facing the challenge of balancing conflicting demands. Market pressures

More information

White Paper: Optimizing the Cloud Infrastructure for Enterprise Applications

White Paper: Optimizing the Cloud Infrastructure for Enterprise Applications White Paper: Optimizing the Cloud Infrastructure for Enterprise Applications 2010 Ashton, Metzler, & Associates. All rights reserved. Executive Summary Given the technological and organizational risks

More information

How Cisco IT Automated End-to-End Infrastructure Provisioning In an Internal Private Cloud

How Cisco IT Automated End-to-End Infrastructure Provisioning In an Internal Private Cloud Cisco IT Case Study June 2012 Cisco IT Elastic Infrastructure (CITEIS) Gen2 How Cisco IT Automated End-to-End Infrastructure Provisioning In an Internal Private Cloud Offering Infrastructure as a Service

More information

Cloud Computing. Jean-Claude DISPENSA IBM Distinguished Engineer

Cloud Computing. Jean-Claude DISPENSA IBM Distinguished Engineer Cloud Computing Jean-Claude DISPENSA IBM Distinguished Engineer Best Student Recognition Event July 6-8, 2011 EMEA IBM Innovation Center La Gaude, France Business needs are growing - IT costs are increasing

More information

Don't outsource IT! Bring your own Cloud with SDN

Don't outsource IT! Bring your own Cloud with SDN Don't outsource IT! Bring your own Cloud with SDN Education Session 19 Herman Chao Systems Engineering Manager, Cisco State of CA Government May 2015 Agenda Industry Need and Trends The Network Challenge

More information

VIRTUALIZATION SECURITY IS NOT AN OXYMORON. With Kaspersky, now you can. kaspersky.com/business Be Ready for What s Next

VIRTUALIZATION SECURITY IS NOT AN OXYMORON. With Kaspersky, now you can. kaspersky.com/business Be Ready for What s Next VIRTUALIZATION SECURITY IS NOT AN OXYMORON With Kaspersky, now you can. kaspersky.com/business Be Ready for What s Next PREPARING FOR THE VIRTUALIZATION ADVANTAGE Widely acknowledged and celebrated, the

More information

Microsoft Private Cloud

Microsoft Private Cloud Microsoft Private Cloud Lorenz Wolf, Solution Specialist Datacenter, Microsoft SoftwareOne @ Au Premier Zürich - 22.03.2011 What is PRIVATE CLOUD Private Public Public Cloud Private Cloud shared resources.

More information

Securing the Virtualized Data Center With Next-Generation Firewalls

Securing the Virtualized Data Center With Next-Generation Firewalls Securing the Virtualized Data Center With Next-Generation Firewalls Data Center Evolution Page 2 Security Hasn t Kept Up with Rate Of Change Configuration of security policies are manual and slow Weeks

More information

SESSION 703 Wednesday, November 4, 9:00am - 10:00am Track: Advancing ITSM

SESSION 703 Wednesday, November 4, 9:00am - 10:00am Track: Advancing ITSM SESSION 703 Wednesday, November 4, 9:00am - 10:00am Track: Advancing ITSM Optimizing ITSM for Cloud Computing Reginald Lo Director, Accelerate Management, VMware rlo@vmware.com Session Description Organizations

More information

Cloud.. Migration? Bursting? Orchestration? Vincent Lavergne SED EMEA, South Gary Newe Sr SEM EMEA, UKISA

Cloud.. Migration? Bursting? Orchestration? Vincent Lavergne SED EMEA, South Gary Newe Sr SEM EMEA, UKISA Cloud.. Migration? Bursting? Orchestration? Vincent Lavergne SED EMEA, South Gary Newe Sr SEM EMEA, UKISA Technology shifts center on applications Advanced threats APIs Internet of things Mobility SDDC/Cloud

More information

IT as a Service Emerges as a New Management Paradigm in the Software-Defined Datacenter Era

IT as a Service Emerges as a New Management Paradigm in the Software-Defined Datacenter Era Customer Needs and Strategies IT as a Service Emerges as a New Management Paradigm in the Software-Defined Datacenter Era Mary Johnston Turner IDC OPINION IT as a service (ITaaS) represents a fundamentally

More information

VMware Integrated Partner Solutions for Networking and Security

VMware Integrated Partner Solutions for Networking and Security VMware Integrated Partner Solutions for Networking and Security VMware Integrated Partner Solutions for Security and Compliance VMware vcloud Networking and Security is the leading networking and security

More information

EMC IT AUTOMATES ENTERPRISE PLATFORM AS A SERVICE

EMC IT AUTOMATES ENTERPRISE PLATFORM AS A SERVICE EMC IT AUTOMATES ENTERPRISE PLATFORM AS A SERVICE Self-service portal delivers ready-to-use development platform in less than one hour Application developers order from online catalog with just a few clicks

More information

Microsoft Private Cloud. A comparative look at Functionality, Benefits, and Economics

Microsoft Private Cloud. A comparative look at Functionality, Benefits, and Economics Microsoft Private Cloud A comparative look at Functionality, Benefits, and Economics Published: July 2012 Copyright Information 2012 Microsoft Corporation. All rights reserved. This document is provided

More information

Converged Infrastructure to Private Cloud

Converged Infrastructure to Private Cloud Converged Infrastructure to Private Cloud Geert Kuijken Chief Technologist Converged Infrastructure & Cloud What s coming your way: it will be a hybrid world Build Consume Traditional IT Here today! Private

More information

Implementing Microsoft Azure Infrastructure Solutions

Implementing Microsoft Azure Infrastructure Solutions Implementing Microsoft Azure Infrastructure About this Course This course is aimed at experienced IT Professionals who currently administer their on-premise infrastructure. The course introduces the student

More information

What Is Microsoft Private Cloud Fast Track?

What Is Microsoft Private Cloud Fast Track? What Is Microsoft Private Cloud Fast Track? MICROSOFT PRIVATE CLOUD FAST TRACK is a reference architecture for building private clouds that combines Microsoft software, consolidated guidance, and validated

More information

RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL

RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL Pascal Geenens CONSULTING ENGINEER, JUNIPER NETWORKS pgeenens@juniper.net BUSINESS AGILITY Need to create and deliver new revenue opportunities faster Services

More information

SDN Applications in Today s Data Center

SDN Applications in Today s Data Center SDN Applications in Today s Data Center Harry Petty Director Data Center & Cloud Networking Cisco Systems, Inc. Santa Clara, CA USA October 2013 1 Customer Insights: Research/ Academia OpenFlow/SDN components

More information