Executive Snapshot. Production server virtualization impact on IT service management procedures and controls. Research Report Summary



Similar documents
Cloud Strategy Brief

Change, Configuration, and Release: What s Really Driving Top Performance?

Copyright 11/1/2010 BMC Software, Inc 1

Datacenter Management Optimization with Microsoft System Center

Information Technology White Paper

Breaking Through the Virtualization Stall Barrier

How IT Governance Drives Improved Performance

Preflight Checklist: Preparing for a Private Cloud Journey

ITIL Asset and Configuration Management in the Cloud. January 2016

Contact Centers in the Cloud: A Better Way to Source

Top 10 Reasons to Virtualize VMware Zimbra Collaboration Server with VMware vsphere. white PAPER

Datacenter Management and Virtualization. Microsoft Corporation

Study Shows Businesses Experience Significant Operational and Business Benefits from VMware vrealize Operations

Visible Ops Private Cloud

Reducing the Cost and Complexity of Business Continuity and Disaster Recovery for

Virtualization Essentials

W H I T E P A P E R E n a b l i n g D a t a c e n t e r A u t o mation with Virtualized Infrastructure

Daly Computers Webinar for MEEC: Moving to a Virtualized Environment

SOLUTION WHITE PAPER. BMC Manages the Full Service Stack on Secure Multi-tenant Architecture

Steps to Migrating to a Private Cloud

CA ARCserve Replication and High Availability Deployment Options for Hyper-V

Improve Your Business Through Best Practice IT Management. A White Paper Prepared for Kaseya September 2007

What s New with VMware Virtual Infrastructure

A Guide to Disaster Recovery in the Cloud. Simple, Affordable Protection for Your Applications and Data

Published April Executive Summary

Tips and Best Practices for Managing a Private Cloud

How To Build A High Performance Datacenter With Vmware Vsphere

Identity Management: Bringing the People Component to ITIL

Designing & Managing Reliable IT Services

LANDesk Server Manager. Single Console Multi-Vendor Management Solution

SERVER VIRTUALIZATION.. ROADMAP REPORT..

RackWare Solutions Disaster Recovery

Deployment Options for Microsoft Hyper-V Server

Enterprise IT is complex. Today, IT infrastructure spans the physical, the virtual and applications, and crosses public, private and hybrid clouds.

IBM Tivoli Storage Manager for Virtual Environments

Virtualization with Microsoft Windows Server 2003 R2, Enterprise Edition

Top five lessons learned from enterprise hybrid cloud projects

Enabling the vision of the Modern Datacenter. System Center 2012 SP2 Azure

Windows Server Virtualization An Overview

Running VirtualCenter in a Virtual Machine

Configuration Management in the Data Center

OnX Oracle Cloud Services

How to make auto-discovery work; a dynamic data-driven alternative to the periodic trawl of Discovery and Dependency Mapping (DDM)

Server Virtualization with Windows Server Hyper-V and System Center

Virtualization in Healthcare: Less Can Be More

SOLUTION WHITE PAPER. Align Change and Incident Management with Business Priorities

Developing a Backup Strategy for Hybrid Physical and Virtual Infrastructures

Evolution from the Traditional Data Center to Exalogic: An Operational Perspective

Server Consolidation with SQL Server 2008

Online Transaction Processing in SQL Server 2008

Vistara Lifecycle Management

Server Virtualization with Windows Server Hyper-V and System Center

END TO END DATA CENTRE SOLUTIONS COMPANY PROFILE

Domain 1 The Process of Auditing Information Systems

Achieving IT Operational Reliability and Cost Effectiveness with ITIL and other Best Practices

Planning and Designing Microsoft Virtualization Solutions

Virtualization Reduces the Cost of Supporting Open Industrial Control Systems

The Benefits of VMware s vcenter Operations Management Suite:

Cloud Services Catalog with Epsilon

Virtual Machine Environments: Data Protection and Recovery Solutions

Skelta BPM and High Availability

W H I T E P A P E R. Reducing Server Total Cost of Ownership with VMware Virtualization Software

Sustain.Ability Honeywell Users Group EMEA. Virtualization Solutions: Improving Efficiency, Availability and Performance

W H I T E P A P E R A u t o m a t i n g D a t a c e n t e r M a nagement: Consolidating Physical and Virtualized Infrastructures

CA Cloud Overview Benefits of the Hyper-V Cloud

the limits of your infrastructure. How to get the most out of virtualization

Server Virtualization with Windows Server Hyper-V and System Center

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Datacenter Migration Think, Plan, Execute

EMC E Exam Name: Virtualized Data Center and Cloud Infrastructure Design Specialist

Achieving Control: The Four Critical Success Factors of Change Management. Technology Concepts & Business Considerations

Automating the Virtual Datacenter. Saša Hederić VMware Systems Engineer SE Europe

Best Practices for Managing Virtualized Environments

ASSET Connect. The next level in Critical Environment Operational Efficiency

IT INFRASTRUCTURE MANAGEMENT SERVICE ADDING POWER TO YOUR NETWORKS

Providing Self-Service, Life-cycle Management for Databases with VMware vfabric Data Director

Best Practice Operations Management for System Virtualization. A White Paper Prepared for BMC Software February 2007

Service Asset & Configuration Management PinkVERIFY

> Solution Overview COGNIZANT CLOUD STEPS TRANSFORMATION FRAMEWORK THE PATH TO GROWTH

VMware Site Recovery Manager Overview Q2 2008

Service Automation to implement and operate your Cloud initiatives

White Paper The Dynamic Nature of Virtualization Security

Data Center Infrastructure Management

Windows Server 2008 R2 Hyper-V Live Migration

Leveraging ITIL to Manage Your Virtual Environment. Laurent Mandorla, Manager Fredrik Hallgårde, Consultant BearingPoint, Inc.

WANT TO SLASH DOWNTIME? FOCUS ON YOUR SERVER OPERATING SYSTEM

Global Headquarters: 5 Speen Street Framingham, MA USA P F

Program Summary. Criterion 1: Importance to University Mission / Operations. Importance to Mission

Course Outline. Create and configure virtual hard disks. Create and configure virtual machines. Install and import virtual machines.

Planning and Deploying a Disaster Recovery Solution

VMware Business Continuity and Disaster Recovery Technology Consulting Services

Streamlining Patch Testing and Deployment

_experience the commitment TM. Seek service, not just servers

WHITE PAPER Linux Management with Red Hat Network Satellite Server: Measuring Business Impact and ROI

MS 10751A - Configuring and Deploying a Private Cloud with System Center 2012

Always On Infrastructure for Software as a Ser vice

IBM Global Technology Services March Virtualization for disaster recovery: areas of focus and consideration.

Demystifying Virtualization for Small Businesses Executive Brief

HP Virtualized Network Protection Service

Transcription:

Executive Snapshot Production server virtualization impact on IT service management procedures and controls Research Report Summary This executive snapshot is a summary of the IT Process Institute server virtualization maturity study. Recommendations in the research report are based on a postimplementation analysis of data from 323 IT organizations. The study s goal was to better understand the impact of virtualization on datacenter operating practices. Analysis and resulting recommendations are not product focused. The research report identifies baseline maturity procedures and controls that should be considered to reduce risk as organizations virtualize business critical systems. The report also highlights higher maturity procedures and controls recommended for organizations moving beyond consolidation objectives. This independent research study was funded by the generous support of our managing sponsors Protiviti and CA, and project sponsor VMware. Advancing the Science of IT Management IT Process Institute www.itpi.org Copyright 2009 IT Process Institute 1 of 8

Table of Contents Introduction... 3 Recommended server virtualization practices... 4 Impact on performance... 6 Other environmental factors... 6 Recommendations... 7 Study demographics... 8 About the Author Kurt Milne is the managing director of the IT Process Institute. He has 20 years of experience at leading technology companies including Hewlett Packard and BMC Software. His main areas of expertise include IT service management and IT controls, inventory and supply chain management, and computer integrated manufacturing. About the IT Process Institute The IT Process Institute is an independent research organization that exists to advance IT management science through independent research, benchmarking, and development of prescriptive guidance. Our vision is to identify practices that are proven to improve the performance of IT organizations. www.itpi.org 2009 IT Process Institute. All rights reserved. No part of this publication may be used, copied, reproduced, modified, distributed, displayed, stored in a retrieval system, or transmitted in any form other than PDF by any means (electronic, mechanical, photocopying, recording, or otherwise) without the prior written authorization of the IT Process Institute. Submit requests to info@itpi.org. v071009 Copyright 2009 IT Process Institute 2 of 8

Introduction The use of server virtualization has moved beyond test and development environments. Many IT organizations are aggressively consolidating production systems to reduce server footprint and related power and cooling costs. Those that are now comfortable with the technology are virtualizing business critical systems, and are consolidating as many servers as is feasible. They are now looking to leverage their investment in technology and expertise to achieve other virtualization related objectives such as high availability, disaster recovery, as well as building dynamic computing environments to optimize resource utilization and increase business agility. Gaining experience with the rules, policies, and automation that enable a dynamic virtual resource pool is also a step toward tapping cloud computing resources in a dynamic environment. The IT Process Institute conducted a study of server virtualization practices and controls to find out what procedural changes IT organizations make to optimize benefit and reduce risk in production datacenter environments. We conducted 15 executive interviews to identify what procedures and controls were modified to manage virtualized servers. Interviews revealed a range of production procedural changes from; a) not much changed due to a strong existing foundation of production controls, to b) controls were added in a number of areas in order to get comfortable virtualizing business critical systems. Other organizations have not yet moved into production in part due to concerns about a lack of operational best practices. In general, IT executives felt that heavy use of virtualization was the new normal state of datacenter management, and were curious about what other organizations have done to optimize benefit and minimize risk of this powerful technology. Those who have not yet virtualized business critical systems in production asked What operational procedures should we implement to get comfortable moving virtualization into production? Those aggressively pursuing consolidation objectives asked What changes to operating procedures and controls should I consider as we pursue higher maturity objectives and use virtualization in a more dynamic environment? To determine what virtualization procedures and controls are frequently implemented to manage the technology, we developed a web-based survey based on what we heard in the interviews, and collected data from 323 IT organizations primarily based in North America in October 2008. We found that 72% of study participants are aggressively virtualizing production servers. The other 28% are virtualizing servers outside production environment, with 44% of them tentatively deployed in production. Copyright 2009 IT Process Institute 3 of 8

Those aggressively virtualizing production servers are pursuing a mix of objectives including server consolidation (19%), high availability and disaster recovery (22%) and dynamic resource optimization (31%). Of the 72% of study population aggressively pursuing production virtualization, 58% had at one point paused adoption to review security and operating risks, in order to get comfortable with new technology in the production environment. Now, 64% of those aggressively pursuing virtualization initiatives are comfortable virtualizing business critical systems. In fact, 69% have virtualized systems in scope for compliance and control audit. Recommended server virtualization practices We identified recommended virtualization practices based on statistically significant differences in frequency of use of 8 categories of 51 server virtualization practices between 1) those not yet in production, 2) those pursuing consolidation objectives, and 3) those pursuing higher maturity objectives. Not yet in production organizations not aggressively virtualizing production servers average 41% of the 51 tested practices in use. Baseline maturity organizations aggressively consolidating production servers average 45% of tested practices in use. High maturity organizations that have consolidated servers and are now pursuing high availability, disaster recovery, and dynamic resource objectives, average 69% of tested practices in use. When we divided the high maturity group into two separate uses cases, we found additional differences in use of procedures and controls. High maturity static those organizations pursuing high availability objectives and disaster recovery objectives, where virtualized resource changes are made as an exception to an otherwise static deployment. Failover and disaster recovery responses are initiated manually, or based on policies and rules that trigger move or re-provisioning of virtualized systems. High maturity dynamic those organizations pursuing dynamic resource objectives, where policies and rules trigger virtualized resource cloning and moving as an automated response to normal expected operating conditions. Analysis of the differences in frequency of use of various virtualization procedures and controls between different maturity groups reveals recommended server virtualization practices: Baseline maturity practices 11 practices recommended for those organizations consolidating servers and virtualizing business critical systems in the production environment. Copyright 2009 IT Process Institute 4 of 8

Due to the ease and speed of virtual server provisioning, change process discipline should be strengthened. Provisioning processes should be defined and enforced, and use standardized build images. Due to increased potential impact of host configuration changes, host administrator access and maintenance procedures should be standardized and enforced. And more comprehensive performance and capacity management measures should be implemented to manage service levels of multiple virtual machines and applications consolidated on a single host. High maturity static practices 25 recommended practices for those organizations expanding beyond server consolidation to high availability and disaster recovery objectives. Virtual environments are still primarily static when pursuing these objectives. Moving or re-provisioning virtual resources in response to exceptional conditions is often manual, or may be automated based on policies and rules. However, quickly responding to performance impacting events requires a higher degree of configuration standardization and control. Speed and standardization require higher levels of virtualization training and process control. Provisioning processes should be standardized using an access controlled library of approved build components. Builds should be tested to verify that virtual machines can be re-provisioned consistently. However, a trust but verify approach should be used to ensure change process is followed, and to ensure configuration compliance. High maturity dynamic practices 12 recommended practices for those organizations pursuing dynamic resource management objectives. Incremental controls primarily in the area of configuration discovery and tracking, change management, and capacity management. Automating the movement of virtual resources within a cluster increases the complexity of considerations needed to codify rules and policies. Targeting criteria, configuration compliance, patch schedule and other considerations should be added to the standard change review process. Changes related to expected virtual environment moves should be added to list of pre-approved changes. Discovery and configuration item tracking requirements are expanded to manage more frequent automated movement of resources and applications. Overall, a level of standardization and high process control and maturity is required to support higher levels of automation. Overall, these practices should be considered by IT executives pursuing various virtualization objectives. These practices should also be reviewed by IT audit as part of governance risk and compliance evaluation of virtualization impact on IT control requirements. Copyright 2009 IT Process Institute 5 of 8

Impact on performance Analysis of soft outcomes measures reveals that both baseline and high maturity groups score very high on the measure that indicates virtualization making production quality and service management efforts easier. More specifically, those organizations that have moved beyond consolidation objectives have higher levels of performance in key areas of reduced sprawl and configuration variance, increased use of automation, and reduced operational risk. Those pursuing dynamic resource objectives have significantly higher performance in the areas of, increased speed and agility, fewer war room responses to service outages, as well as reduced audit effort. Analysis of hard performance measures reveals a statistically significant correlation between use of recommended practices and various hard outcome measures. Baseline maturity group the use of host access controls predicts higher levels of availability as measured by minutes of downtime per month. Host configuration changes are a potential single point of failure for multiple virtualized systems. Controlling access and clearly documenting maintenance procedures helps insure availability of virtualized systems. High maturity group the use of provisioning automation and discovery practices predicts lower release rollback rate. Ensuring that systems are in a known configuration state helps ensure release procedures work as intended. Data also suggest the use of capacity management practices predicts better service support performance with measures such as the rate of incidents resolved within service level agreement limits, and mean time to repair large outages. High maturity dynamic the use of provisioning automation and configuration discovery practices predicts a higher rate of production systems that match target configuration. Configuration compliance with desired configuration state helps ensure automated provisioning and resource expansion work as intended. Other environmental factors High maturity organizations measure a higher percentage of changes tested before release (average 81%), and more frequent use of a build library and automated provisioning. These measures suggest that effectively managed provisioning, either manually or automated, helps achieve a more tightly consistent environment. Baseline and high maturity organizations measure similar percentage of servers virtualized as part of hardware refresh (average 51%), rate of incidents escalated to L2/L3 virtualization specialists (10%), and percent of datacenter assets tracked with a unique identification number (75%). There was no significant variation among other measures such as patch frequency, discovery scanning frequency, planned maintenance hours. Copyright 2009 IT Process Institute 6 of 8

Recommendations The benefits of server virtualization are significant. However, moving server virtualization in production environments requires changes to operating procedures and controls in order to optimize benefits and manage operational risk. Those organizations with a solid foundation of operating best practices such as ITIL, may only need minor modifications to existing procedures and controls to aggressively pursue server consolidation objectives. Those organizations that don t have a strong set of operational controls should consider implementing or strengthening key IT processes as part of server consolidation initiatives. Those organizations moving beyond initial consolidation efforts to high availability and disaster recover objectives, should consider additional procedures and controls that incrementally improve a wide range of operating best practices. Those organizations using virtualization to pursue dynamic resource management objectives, have the most comprehensive procedure and control requirements. However, the expanded requirements generally represent a level of mastery of lower maturity practices, with increased process consistency and more adoption of automation. Overall, those responsible for datacenter operations and performance should work with server administrators and virtualization specialists to consider implementing the recommended practices that match their server virtualization objectives. IT audit can also use these lists to evaluate the impact of production virtualization on the audit checklist, as part a governance risk and compliance review process. Copyright 2009 IT Process Institute 7 of 8

Study demographics Data was collected from 323 IT organizations by custom research firm HANSA/GCR. A web-based survey, based on findings from 15 executive interviews, was used to collect data in October 2008. The survey respondents were invited from HANSA/GCR North American IT executive interview panels. 46% of survey respondents are IT Executive, Vice President or Director level job titles. VP/Executive Director Job Title (323) 18% 28% Manager 37% Individual Contributor 17% 0% 10% 20% 30% 40% A broad range of company revenues (or operating budgets if public agency) are represented: $20B + $5B - 20B Revenue (323) 13% 16% 26% less than $500M 18% between $500M and $1B 27% $1B and $5B 29% from companies with revenue >$5B. $1B - 5B 27% $500M - 1B 18% $250M - 500M 12% $100M - 250M 14% 0% 5% 10% 15% 20% 25% 30% Industry (323) 0% 5% 10% 15% 20% 25% 30% Manufacturing (not high-tech or automotive) 15% Finance & Insurance Health Care Services 11% 11% Business Services High-tech Manufacturing Government & Public Administration Education, University Utilities & Energy 9% 8% 7% 6% 6% Other 29% Copyright 2009 IT Process Institute 8 of 8

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information