- I Office f the Secretary 1000 SW Jacksn, Suite 500 Tpeka, KS 66612 Jim Clark, Secretary Department f Administratin Phne: 785-296-3011 Fax: 785-296-2702 www.admin.ks.gv Sam Brwn back, Gvernr Jint Cmmittee n State Building Cnstructin Overview f mve f Office f Infrmatin Technlgy Data Center and Office Relcatin December 15, 2014 Gd mrning and thank yu fr this pprtunity t prvide additinal infrmatin regarding the mve f the Office f Infrmatin Technlgy's Data Center and ffice relcatin t the BNSF facility in dwntwn Tpeka. The decisin t relcate the data center has been nging within the Department f Administratin and OITS as the state lks t imprve the security f its IT systems in respnse t cncerns raised in studies cnducted by the Legislative Divisin f Pst Audit. I'd like t share with yu what are ur current plans are and why the mve will result in a significant imprvement in the security f the state's data systems. First, I wuld like t share with yu my prfessinal backgrund and hw it relates t the decisin made t relcate the data center. Befre being appinted Secretary f Administratin in 2013, I spent a significant prtin f my prfessinal career auditing and managing IT systems. As many f yu knw, I was emplyed at Kansas Gas Service, Westar and Onek frm 1978 until 2001. During that span I was respnsible fr the accunting, legal and management infrmatin systems fr Kansas Gas Service, as well as their interface with Onek's systems, the ne-time parent cmpany f Kansas Gas Service. At Westar Energy, I was respnsible fr management infrmatin technlgy systems and telecmmunicatins departments fr the cmpany and its subsidiaries frm 1995 t 1997. I am intimately familiar with the BNSF building in dwntwn Tpeka and the data center. Frm 1997 t 2001 my ffice was lcated in that building during my years at Westar. The mve t the BNSF facility will prvide the State f Kansas with greater physical security fr its data systems, which are an essential backbne t prviding great custmer service t gvernment agencies and 2.8 millin residents statewide. The BNSF facility will imprve current cnditins frm a Tier 1 status t a Tier 4, the highest classificatin f security and infrastructure. The facility has the means t functin at nrmal levels even in the event f ne r mre equipment failures. There are redundancies built in the facility, including multiple cling units, backup generatrs, pwer surces and chillers. If ne piece f equipment fails, anther starts up and replaces its utput instantaneusly. Bth the Department f Hmeland Security and Westar have chsen t be in this facility, as well. A definitin f the requirements t be rated at varius tier levels is attached t my testimny. Jint Cmmittee n State Building Cnstructin December 15, 2014 Attachment 5
Mving OITS t this lcatin will result in upgrades in security and access cntrl that will address deficiencies that have been identified in recent audits. Thank yu fr this pprtunity t appear befre this cmmittee. I wuld be pleased t answer additinal questins regarding this mve r any ther questins yu may have regarding OITS security... ' Jim Clark Secretary f Administratin
Data center tier standards exist t evaluate the quality and rei iabi I ity f a data center's server hsting ability. The Uptime Institute uses a smewhat mysterius fur-tier ranking system as a benchmark fr determining the reliability f a data center. This prprietary rating system begins with Tier I data centers, which are basically warehuses with pwer. and ends with Tier IV data centers, which ffer 2N redundant pwer and cling in additin t a 99.99% uptime guarantee. A Tier Ill data center is cncurrently maintainable, a llwing fr any planned maintenance activity f pwer and cling systems t take place withut disrupting the peratin f cmputer hardware lcated in the data center. In terms f redundancy, Tier II I ffers "N+ I" availability. Any unplanned activity such as peratinal errrs r spntaneus failures f infrastructure cmpnents can still cause an utage. In ther wrds, Tier Ill isn't cmpletely fault tlerant. A Tier IV data center is fault-tlerant, allwing fr the ccurrence f any unplanned activity while still maintaining peratins. Tier IV facili ties have n single pints f failure. The basic cncept is that a Tier IV design requires duble the infrastructure f a Tier Ill design. Nte that bth Tier Ill and Tier IV data center specificatins require IT equipment t have dual pwer inputs t permit maintenance f pwer distributin cmpnents between the UPS and IT equipment. Data Center Tiers Enterprise Crpratins 99.995% Uptime 26.3 filinutes Dwntime Per Year 2N+1 Fully Redundant 96 Hur Pwer Outage Prtectin TIER 3 -- - ----- ---------... TIER2 Large Businesses 99.982% Uptime 1.6 Hurs Dwntime Per Year N+1 Fault Tlerant 72 Hur Pwer Outage Prtectin f1ledium-size Businesses 99.749% Uptime 22 Hurs Dwntime Per Year Partial Redundancy in Pwer and Cling TIER 1 Sma ll Businesses 99.67W:~ Uptime 28.8 Hurs Dwntime Per Year N Redundancy Explained: Tier 1, Tier 2, Tier 3 and Tier 4 Data Centers
What are the features f a Tier 1 data center? A: Tier I facilities are generally utilized by small businesses and feature: 99.671% Uptime n redundancy 28.8 Hurs f dwntime per year. What are the features f a Tier 2 Data Center? The benefits f a Tier 2 fac ility include: 99.749% Uptime Partial redundancy in pwer and cling Experience 22 hurs f dwntime per year What are the features f a Tier 3 Data Center? A: Tier 3 facilities are utilized by larger businesses and feature: 99.982% uptime N mre than 1.6 hurs f dwntime per year N+ I t~llllt tlerant prviding at least 72 hur pwer utage prtectin What are the features f a Tier 4 Data Center? A: Tier 4 facilities typically serve enterprise crpratins and prvide the fllwing: 99.995% uptime per year 2N+ I fully redundant infrastructure 96 hur pwer utage prtectin 26.3 minutes f annual dwntime. Unfrtunate!;, the Uptime Institute has chsen nt t fully publish the evaluatin criteria fr these different tier levels. Few data centers have tier certificatins frm the Uptime Institute. Only 38 facilities r design dcuments fr facil ities have fficial tier certificatins at this pint; these are primarily enterprise data centers. The result is that the Uptime Institute's definitins have been misused by the industry, ignrantly in many cases. Facility bui lders, designers and m' ners have tried t tweak the terminlgy slightly t give it their O\\ n unique flavr. Enterprises shuld questin any Tier IV claims by data center prviders because it is difficult t get custmers t pay the rates necessary t mnetize the Tier IV investment f rugh I) duble that f a Tier Ill facility. Tier I Research has established a hi-level data center quality rating system. with the fllw ing criteria Data Center Tier Tplgy As defined by The Uptime Institute. Data center tier standards bjectify the design features f a particulm faci lity based upn infrastructure design, capacities, functinalities and peratinal sustainability. The Uptime Institute released a revised versin f the data center tier standards verview in 2012. Such revisins were made by the advisry bard t reflect the type f changes that have been made t evaluate engine generatrs. evaprative cling methdlgies, and il and fuel systems lcated
nsite. Restatement f the tier standard ranking system was necessary t further rate nsite perfrmance during system lifecycle, specifically - the UPS (Uninterruptible pwer supply). Let's examine hw the fllwing variables determine a facility's tier standard rating system: What are the requirements f a Tier I facility? A Tier 1 data center has basic signal paths that are nt redundant in nature. This means that mst f the appliances prviding supprt t servers and ther types f netwrking equipment have nly 12 hurs f backup pwer/nsite fuel fr electrical generatrs. What are the requirements f a Tier II facility? Tier!I data centers are redundant t the pint that if ne were t remve the backup generatr equipment frm a signal path, nrmal cmputing peratins wuld cnti nue withut interruptin. Therefre. the Tier II facility is redundant in capacity yet functins with a nn-redundant signal path. Benefits f a Tier II facility include: 12 hurs f n-site backup pwer Redundant pwer supplies can be remved frm facility withut causing any interruptin t cmputing equipment. Tier II fac il ities have t be serviced nly nce a year resulting in less dwntime fr cnsumers. What are the benefits f a Tier III facility? 1\. Tier Ill facility prvides multiple signal paths fr redundancy equipment and distributin cmpnents. Subsequently, nly ne pwer distributin path can serve cmputer equipment at any given mment. Benefits f a Tier III facility include the fll wing: Multiple pwer distributin paths and capacity cmpnents that are supplied with cncurrent energy. All critical cmpnents are supplied with dual pwer surces and are fault tlerant. 12 hurs f 'N' redundant pwer supplied by n-site fuel systems. Cmputer equipment is served by ne signal path at a time. What are the benefits f a Tier IV facility? A Tier IV data center is the mst fault tlerant faci lity with multiple pwer distributin paths. redw1dancy cmpnents and active distributin paths serving every piece f critical cmputing cmpnent simultaneusly. Benefits f Tier IV facility include the fllwing: Distri butin paths that are physically islated frm ne anther, ften referred t as "cmpartmentalized distributin paths. preventing harm frm a s ingle event that may take place n site. 12 hurs f f uel strage 'n-site. Cling. systems that are cntinuusly available 2417/365.
FUithermre, a single ended failure will nt impact critical cmputing equipment because multiple distributin paths supply electricity simultaneusly. The Uptime Institute declares that each cmpnent lcated within the facility must nt affect distributin paths if remved fr maintenance r testing. Als, each redundant cmpnent must be designed t autmatically respnd t failure preventing any further damage t critical hardware. Premium Data Center: Facility must meet N+ l redundancy standards in each f the fllwing areas: uninterruptible pwer supply (UPS), backup generatrs and HVAC systems. Preferably, the facility shuld be n multiple po\ver grids as well as having 24/7 staffing and cntinuus vide surveillance. Bimetric security is preferred, but nt required. VESDA (r better) fire detectin and dry-pipe pre-actin r gasbased fire suppressin are required. Multiple fiber prviders must serve the facility thrugh tw r mre entrance facilities. Data center resiliency is based nt nly n physical pwer and cling inti astructure, but als n netwrk cmmunicatins redundancy and fire detectin and suppressin. These are key attributes missing frm the Uptime Institute's data center tier ratings, which fcus n the pwer and cling infrastructure. Standard Data Center: Facilities with sufficient pwer and cling capacity and basic fire suppressin are in this categry, as are data centers with nn-redundant HVAC and UPS units and nly a single backup generatr. The bttm line is that data center custmers are lking fr high availability and security fr IT equipment, which implies redundancy tr pv-er, cling and netwrk cnnectins: :fire detectin and suppressin; the ability fr cncurrent maintainability and the 24x7 staffing and security tund in a premium data center.