Service Overview Governance is key to any organisation or Government department wishing to establish a proven and repeatable business formula. How organisations deliver that governance may vary considerably. When considering aspects such as information security, quality and environmental management there are a number of ideal frameworks that your organisations can adopt. These frameworks are described in international standards such as ISO 9001, ISO 14001, ISO/IEC 27001, ISO 22000, ISO/IEC 20000, ISO 22301 and OHSAS 18001. Frequently these are operated as independent systems. In all management systems however, there are certain common elements which can be managed in an integrated way. The essential unity of all these systems within the overall management system of the organisation can then be recognised and used to best advantage. Therefore organisations are quite rightly, questioning the approach of having separate systems. These types of standards have many common elements, but completely different areas of focus. This can lead to organisations duplicating work, and even applying inconsistent practices, policies and procedures to satisfy each standard separately. The integrated management system is the most efficient way of delivery compliance and certification for an organisation across the various information security, quality, environmental and other standards. These standards may represent a critical reference when bidding for a new contract, demonstrating compliance to a greener ICT strategy or demonstrating professionalism through quality management. ISMS (ISO27001:2005, and soon to be ISO27001:2013) in particular is becoming a critical compliance element for organisations wishing to provide extrinsic assurance that they are protecting data appropriately in light of new levels of cyber threat and internet borne attacks. Separate guidance now exists for organisations wishing to implement a single integrated management system in the form of a guidance document called PAS99. Some of the benefits of an Integrated Management System: Single common framework for management systems Reduction in resource requirements Re-use of common documentation requirements Reduce duplicated documents and governance. Increased visibility at Board level Increased board level governance for an organisation Auriga Consulting Ltd s Integrated Management System service is structured to assist organisations of any size. Auriga has been involved in one of the largest ISO 27001 programmes to date (Ministry of Justice 85,000 users), has lead auditors in ISO27001, ISO9001, ISO14001 and experts in the application of the PAS99 standard. Auriga is therefore perfectly placed to deliver your integrated management system. Auriga s experts can assist you at every stage, from programme inception through to certification and integrated management system maturity. With the new ISO 27001 standard looming, make sure you make the right choice when selecting governance assistance, as Auriga is already enabling clients to prepare for the new standards ensuring cost effectiveness within implementation projects. Service Summary Policy and Procedural Authoring Risk Management and Methodology Definition Formal Management System Implementation PAS99 compliance ISO 9001, ISO 14001, ISO/IEC 27001, ISO 22000, ISO/ IEC 20000, ISO 22301 and OHSAS 18001 compliance and certification Scope Development Control and implementation selection Stage 1 and 2 Audit Preparation Audit facilitation, staff preparation and audit response coaching 01
Supporting Specialist Services On-Boarding Auriga believes an essential part of ICT and Cloud outsourcing is the move of the customer s existing solution into the service provider s environment and management umbrella. Our Onboarding service ensures that we integrate both transition and transformation phases delivering a seamless move to the new solution and management services. By focusing on improving the service and ensuring the supplier of the service is delivering the functional and non-functional requirements, Auriga ensures that all elements are integrated. This allows the department to realise the benefits of its service at the earliest possible point in the programme. Although the process can be complex and requires adjustment according to customer environments and requirements, Auriga incorporates identified changes into a single on-boarding process within clearly defined phases. Communication of those phases is deemed critical by Auriga and is seen as key to delivering an eventless On-boarding process. By building and deploying the right On-boarding expertise and stakeholders early in the project, Auriga captures and manages all the required processes, systems and existing services to map and schedule the On-boarding phases. From a holistic perspective, the diagram below illustrates Auriga s commitment and interfacing during the On-boarding phase. Auriga s wealth of experience in the public sector places us in the ideal position to represent your department or public body during the on-boarding phase of a Cloud or ICT procurement strategy. On-Boarding Attendance Conduct Initiation Meeting Auriga Chosen as Supplier Agree Project Requirements and SoWs Allocate Resource / Develop Resource Gateway Plan Agree & Submit Resource Plan/ToRs Commence Delivery Update Stakeholders New Delivery Lead New Account Manager Project Manager Key Stakeholders 02
Design Authority Auriga s Design Authority Service (DAS), provides small, medium or large Cloud architecture programmes governance and assurance to the highest standards. By strategically positioning itself in a role overseeing a department s architecture transition, Auriga s experienced consultants will ensure architectural designs and patterns are delivered in accordance with predefined standards, internal governance frameworks and functional/non functional requirements. Government Departments seeking to transform legacy infrastructure or stand up new G-Cloud based infrastructure maybe met with a myriad of resource and governance requirements. By leveraging its wealth of experience as a Design Authority on multi million pound projects, Auriga provides government departments with a managed service encompassing the relevant expertise necessary for the successful delivery of its Cloud infrastructure. By working with either Auriga s Internal or SI project management team, the design authority service ensures: All project team members understand the solution, its implementation and support requirements Provide assurance that the lead designer or Technical Architecture team understands existing systems/service, is delivering the required functional and non-functional requirements Provide peer-to-peer reviews to address all functional and non functional aspects of the Cloud solution or service Provide expertise outside of the project to review and accept/deny the solution, for e.g.: Business Community for the business aspects, Operational Management for the maintenance and management aspects and the Design Authority for the architectural fit Ensure changes during the maintenance or BAU phase are in accordance with the predefined Service Management Framework and processes Ensure that projects are aligned to the organisational or national strategy Ensure that projects are progressing in line with plans and will deliver the expected outcomes Ensure that organisational standards are applied and where possible national or regional infrastructure are re-used Support the sharing of best practice/knowledge across the government communities; By understanding the unique and specific nature of Government information systems and asset handling requirements, Auriga provides a DAS which encompasses a best of breed approach. By employing experts within the chosen Governance Framework who are also experienced in the Government and Cloud sector, Auriga s approach not only delivers the DAS but also encompasses all legislative, regulatory and CESG requirements. Auriga understands the importance of effective Design Authority and Programme Management. Once the programme team has been engaged, Auriga will help define and implement the required framework, compliance and performance monitoring processes. By ensuring effective communication channels and methods are in place, Auriga s DAS ensures the desired Cloud solution is shaped and delivered. The key parts of the Auriga Design Authority process, includes strategic stakeholder management via effective communications with the programme board. By implementing a framework which adapts to the maturity of the programme, key deliverables across the entire Cloud lifecycle are managed, this includes: Integrated Change, Configuration and Service management MIS Integrated Incident management Security management, including protective monitoring and forensic readiness requirements 03
The Business Customer/ Programme Board Design Authority Governance Compliance Communications Project Management Performance Suppliers/ Delivery Team Solution 04
Governance Provide robust assurance information at regular predefined points Provide or support strategic design oversight on behalf of the business Plan and communicate key assessment points and milestone objectives Manage and develop the assurance process from concept through to implementation and decommissioning Develop an agreed governance framework Develop KPIs and acceptance criteria for key programme stages Manage or participate in project boards Compliance Provide the business with assurance that the Cloud project is delivering a solution that is appropriate, proportionate and pragmatic Raise awareness of and support the adoption of best practice materials within projects Promote consistent delivery practices to enhance delivery capabilities, facilitate, capture and reuse the best practice knowledge materials Ensure alignment to government standards, such CESG and SPF requirements Assurance that the solution produced is fit for purpose and delivers the planned efficiencies and benefits Communicate with Government bodies and the business on standards, policies and strategies for shared services Develop and maintain high level architectural patterns Perform project checkpoint reviews and management reports for key stakeholders Promote use of common standards, governance guidelines across services Conduct design support sessions for suppliers and the business Conduct programme assurance health checks at strategic predefined milestones Performance Support the organisational strategic Cloud vision Assist in driving forward the desired service improvements Consistent and regular review and reporting of Cloud benefits realisation KPI definition and reporting Evaluate and report supplier performance Development of performance monitoring metrics and processes for BAU Performance measurement definition against desired framework Management and report Architecture and Solution deviation Communications Proactively communicate with stakeholder community and suppliers to engage support and active participation Communicate understanding of the strategic Cloud deliverables and objectives via the project management team Share design material to fully exploit benefits across other projects Contribute or manage Lesson Learned exercises Develop a communications plan and engage with the project management teams in the preliminary stages of the project Develop and conduct stakeholder communications and briefings Secure Business Process Analysis Auriga understands that modern business systems are becoming very complicated and reliant on large and growing amounts of disparate information. The enterprise data landscape is vital to the functioning of the enterprise, but is often fractured, clouded by trivia, diluted and obfuscated by complexity. Auriga s Business Analysis service helps organisations understand their collected information and illustrates where liabilities as well as benefits can be realised. 05
Where to start When trying to get control of the enterprises information it is difficult to know where to start. This is where Auriga s Process Mapping service can help especially when dealing with Cloud based programmes. The process begins with a decision to act: Compile an Information on Assest Registar (IAR) Build Top Level Business Models Identify Critical Assests & Systems Expand model detail & coverage link into design phase Auriga initiates and manages an initial audit of what you have. This is an information gathering exercise, where a member of Auriga s Business Analysis teams interviews key stakeholders throughout the organisation to capture the data landscape: details of what information is held, by whom, in what systems is the business process covering and to value the information. Auriga will then refine or develop the data into an Information Asset Register, which defines the data landscape for the organisation or government department. By focusing largely on the value of the data, we tell you what information matters most to your organisation, initiating the second phase of our service: what you do with it and how your current processes will map across to your Cloud based application, infrastructure or service. We start the next stage of the process by building a business architecture, using standard business process modelling tools (e.g. BPMN2.0/MS Visio), to create a view of your organisation. We link the data world to the world of activities, people processes and systems and thus providing a more visual picture of how your enterprise uses data. We aim to keep it simple and accessible to all members of your Cloud programme. Once available, the business architecture can be reviewed by the relevant stakeholders, corrected and validated. We finalise the model and produce a reliable map and process description. This provides the enterprise with the details they require to transition its systems and processes to the Cloud. Auriga s Business Analysis service aims to bring improvements in data quality, security and general business efficiencies when migrating its infrastructure or services to the Cloud. The finalised business model serves as the kernel of a more detail business process modelling exercise to ensure the updated systems will deliver improved effectiveness, efficiency and security. Auriga s Business Analysis service provides organisations and government departments with a comprehensive view of their current business processes and data assets. It assists organisations in understanding what they have today and how they operate. The aim is to improve your business and current operating model, particularly when pursuing a transition of your current in-house services to a Public or Private Cloud solution. In doing so, Auriga focuses on the current business model, documents it and establishes the difference between the business as it is, and how the organisation expects to be transitioned. By employing a variety of modelling tools, Auriga explores and extracts all opportunities for improvement and ensures your organisation recognises them at an early stage. Depending on the department s requirements and the most appropriate model, Auriga will graphically represent the business processes. Auriga are specialists in UML and BPMN models but can also utilise alternative ways of modelling depending on the customer s requirements. Ultimately, Auriga aims to extract and deliver the following for organisations aiming to gain efficiencies and achieve desired business improvements through the Cloud: Discover, document and communicate the businesses Cloud needs Help improve and manage the business processes and systems by a combination of process modelling, systems thinking and Cloud based innovation Use models to understand and communicate the business processes, and ensure stakeholders also understand the benefits of change Help businesses systemically improve their business via Cloud based infrastructures Organise business analysis workshops Help the organisation see the essence of the business and Cloud programme 06
Auriga focuses on decoupling the desired Cloud solution and your business model. We see the transition as not a solution at all, but the underlying process and data with technology being an enabler for that model. Auriga s discovery exercise ensures that the system built or procured is appropriate. Auriga looks at the business as a whole, not just one small part of it, or one business user and their software or system. This systemic view finds the Cloud solution that suits the entire enterprise or desired scope. Auriga understands that the organisation considering moving or procuring a service from the Cloud is being innovative. We have under taken analysis tasks with past customers who simply cannot stand still, doing so would mean going out of business. Auriga knows that you want to be competitive and effective, especially as a Government department delivering critical public services. Innovation plays a vital part of our business change strategy and drives system development and the change approach. With a particular focus and expertise in Cloud infrastructure, Auriga are experts in this field. Auriga are innovators, and build better Cloud based processes, systems, products and services making businesses function more productively. Innovative Cloud solutions need not cost more, so Auriga assist clients in making a better, more effective solution for their business. Auriga believes in making and communicating a universal message for stakeholders, and we work closely with your business communication teams to ensure effective communication and buy-in from all areas of the business affected by the Cloud transition programme. By facilitating workshops and engagement seminars, we ensure that the solution we build for our clients is the right one. Design & Development Auriga provides an end to end Cloud utilisation programme encompassing the initiation, discovery, design, development and implementation phases of your Cloud programme. By understanding your business requirements and processes, Auriga utilises its expertise to manage the supplier and solution selection phase through to the design and development phases. By working with our customers and engaging all relevant stakeholders, we can begin to develop a design that delivers all requirements and satisfies all areas of the business. By being experts in Security, Business Process and Cloud technologies, Auriga are able to efficiently and effectively design and develop a tailored Cloud based solution that satisfies internal governance requirements as well as those dictated by CESG. This expertise has been developed by working with both G-Cloud solution providers to achieve accreditation and Public Sector Bodies seeking to procure those services. Auriga operates its Cloud adoption service in a way which ensures transformational outcomes in which your organisations ICT and operations change for the better. This can only be done by managing and delivering the following core elements: Assess and document existing business process and develop models which capture the business approach Understand and adopt the internal governance frameworks and approach Assess and document the inherent ICT capability Manage and deliver Cloud feasibility study Engage stakeholders and fully document requirements Improve and adjust Business processes if required Develop, design and agree the conceptual and logical Cloud strategy Engage suppliers and manage the procurement process Select Best-fit Cloud solution Work with the project team to identify key project stages Initiate and drive through Cloud solution Plan, implement and deliver Cloud service through to in-service, inc On-boarding, transition and transformation The following diagram (next page) illustrates these stages in more detail: 07
Stage Outcome CONSTRUCTION COMPOSITION CHARACTERISATION CONCEPTION GOAL: Understand clients and organisational needs FOCUS: Commercial and strategic organisational posture, understanding key process architectures, objectives and outcomes DELIVERY: 90% time spent on client site, working alongside all concerned stakeholders at various departments GOAL: Strategy formulation and review FOCUS: Definition of a structured, innovative solution formulated with client s requirements DELIVERY: Engagement of key stakeholders is a key requirement as this will be the stage at which definition of key technical deliverables will be agreed GOAL: Solution design and development resourcing FOCUS: Structured, innovative process designing a solution with emphasis on architecture flexibility, extensibility and mroi (measurable return on investment) DELIVERY: Will involve the technology and architectural aspects as well as input from cross departmental system users enabling the design is representative of different user groups GOAL: Timely, on budget delivery of agreed solution FOCUS: Structured, methodological process embedded with time defined milestones and key success factors enabling successful project delivery DELIVERY: Delivery will comprise of defined solution specific processes for end to end testing, user acceptance testing and final deployment Understanding of business architectural and process landscape Understand organisational commercial and regulatory landscape Facilitation of creative strategy enabling stakeholder engagement and alignment A definitive methodological approach to create a measurable and strategic process for solution implementation Structured process embedding key industry best practice frameworks Multi level user experience analysis enabling innovation and efficiency in existing processes whilst retaining and/or improving user engagement to systems Feasibility demonstration and identification of KPI s (key performance indicators) at various project composition and construction stages Proof of concept demonstration of chosen strategy Identification of KSF s (key success factors) for the development of a successful solution A user centric design focussed on the system usability of different user groups on the front-end and manageability and administration of the back-end Delivery of a tested solution Design documents and architectural diagrams produced are reusable for extensibility of the solution with regard to demands of a growing business The mroi based composition approach allows stakeholders to measure the benefits of the solution even after deployment ORGANISATIONAL POSTURE ESTABLISHED INNOVATIVE STRATEGY CREATION ITERATIVE DESIGN BASED ON CLIENT SPECIFIC KPI S SUCCESSFUL DEPLOYMENT DEVELOPMENT DESIGN Whether you are procuring a Full or Hybrid Cloud solution, Auriga s expertise in this field assists in ensuring your organisation s future strategy implementation yields the functionality intended. 08
Project Specification & Selection Auriga s Project Specification and Selection service provides a screening and business alignment service for government departments. By ensuring projects have been assessed against a predefined set of criteria prior to presentation to stakeholders, Auriga ensures your projects are built on sound business decisions. This is especially pertinent to Cloud based ICT projects where a number of elements must be assessed to ensure a good business fit and sound financial decision making. This may require an assessment against corporate procurement standards through to security and business functionality. By understanding your business model, Auriga is able to provide the resources, evidence and artefacts necessary to secure funding from board level. Even failed projects are used as a valuable resource, by extracting key data and indicators, a lessons learned process is followed to provide critical corporate feedback. The initial screening process, if required, is developed, implemented and followed by Auriga s project personnel to ensure a minimum project outlay and discount projects on the grounds of solid business decisions. Auriga has a wealth of experience in developing efficient but effective project screening. This is developed and managed in conjunction with the Public Sector Body once a good understanding of the business model and project requirements have been fully understood. The process always begins with the development of a business case which seeks to identify a number of key facts. What are the identified risks, costs, resource requirements, business impacts, legislative and security requirements? The following diagram provides a holistic view of this process: Posture Assessment Client Analysis Posture Assessment SECURITY Confidentially Integrity Availability ACL pool of Expertise and KPI s project repository Target Operating Model (TOM) Key process architectures Strategic objectives BUSINESS COMPLIANCY ISO27001 ISO9001 FOIA 2000 DPA 1998 etc Formulation of key success factors (KSF s) mapped to business objectives and TOM s Risk posture Legacy system dependencies Engagement levels of various user groups IT INFRASTRUCTURE SUPPLIERS SLA s Data Ownership Software Dependencies Proposal to board based on user centric innovation and measurable returns on investments on all implementation levels Resource allocation Migration costs User training COSTS 09
Once these facts have been understood and the project details gathered, a business case is developed in conjunction with the Public Sector Body. The project selection is successful, Auriga can then discuss the next phases with the customer, such as Project Initiation Documents, Resource Plans, Supplier selection etc. At this point, Auriga calls upon its other services from its integrated portfolio. Deployment Auriga have the expertise to help organisations and Government departments make the right decisions over the move to Cloud based services, and support the technical deployment itself, if required. The decision of transition to Cloud, and whether that Cloud should be a private (enhanced hosting solution) or a shared public Cloud is a daunting one without the expertise that Auriga can offer. There are a number of factors involved in this decision process and Auriga will help you make the right decision, and help you specify and migrate the new Cloud based environment: Technical and Architectural Analysis: Appraisal of corporate strategy with respect to the current ICT hosting and delivery model Appraisal of the current business process and application requirements Appraisal of the current ICT architecture and how this services or hinders current business operations Appraisal of scalability, network requirements, client-serverdatabase architecture, interoperability, connectivity and software lifecycle Appraisal of the Information Assurance requirements of the ICT infrastructure, and how a Cloud hosting environment would increase potential market capabilities Commercial Analysis: Appraisal of fully cost descriptive Cloud hosting options, such as desktop as a service or software as a service against projected licensing costs of fixed infrastructure Comparative and detailed cost analysis models, e.g. Price per hosted and supported seat, Vs. price per data centre rack hosting Analysis of per seat monthly support Cloud based services when used for the delivery of fixed term client contracts and the project savings in infrastructure investment Business Process and Application Analysis: Appraisal of the organisations core business processes and whether these can be changed or improved to leverage Cloud based service delivery Appraisal of current in-house and externally provided services, and their suitability for Cloud based hosting Appraisal of core business applications, their architecture, and their suitability for migration to the Cloud Appraisal of governance or regulatory requirements and the identification of appropriate Cloud solutions that will allow those requirements to be federated out, e.g. Pre-accredited G-Cloud platform for classified UK HMG services Transformation to Cloud Based Service Agile application development methodology implementation Agile project management SIAM enterprise architecture delivery Transformation management Technical Deployment Application migration and development to Cloud orientated architecture Web-based service architecture design and tiering Protective monitoring, perimeter protection and IDS specification Remote connectivity design and testing Virtualisation and Storage Area network specification Information Assurance specification The decision to transform an organisation to Cloud based services is possibly one of the most critical in the life of an organisation, but significant damage can also be done by not making that decision. Auriga has the expertise to assists its clients with making the right decision, and support them in all aspects of that transformation including the technical migration itself. 10
Transition Management Auriga has the expertise to simplify and fully manage an organisation s transformation to Cloud process; it is this simplification and ownership that will ensure success. Auriga brings a wealth of experience from multiple market sectors and is expert in applying Cloud transformation management to realise true operational value. Auriga implement business transformation programmes for organisations wishing to transfer to Cloud based services around a flexible framework of transformation phases. In most organisations, valuable existing staff resources can provide critical insight and information concerning the current operation and environment, which in turn can help to baseline the as-is environment and provide an accurate indication of the gap that is to be addressed in moving to the new Cloud based environment. The initiation and planning phases ensure that your organisation understands the future Cloud based state, and the impacts and the benefits of the change from static to Cloud based services. Without this clear plan, and the associated impact assessment, transformation to Cloud programmes usually fail. In order to understand the impact of the change it is critical to understand the starting point from a business process and organisational standpoint. This type of business process analysis is a core Auriga skill and modelling the current process in a simple and effective manner gives many executives new and welcome insight into their own organisation. Planning also requires management systems for the governance of change and risk. Implementation and transition phases typically require greater resource, but because of operational imperatives may actually be shorter in duration. Manage and embed phase is designed to ensure the Cloud transformed environment is embedded, managed, monitored, improved and critically, that all possible benefits from the new Cloud based services are being realised. The transformation to Cloud process as a whole must be supported with effective culture change, ensuring the new state is embedded thoroughly within the organisation process, culture and in new ways of working. Initiation: The initiation phase is designed to set formal governance in place, capture expectations and qualify these by clearly showing the current and to-be Cloud states as well as the delta between them. The following high level tasks are undertaken in this stage. Establish roles and governance Understand vision, corporate strategy and required outcomes Baseline the current scope to understand the gap Quantify the impact Identify stakeholders and develop the communications strategy Planning: The planning phase sets a transformation governance and delivery framework. This delivery framework takes account of available resources, business operations and also ensures that corporate strategy is embedded into the transformation. Understand and create realistic implementation schedule and dependencies Create the transformation to Cloud plan Implement project risk management system Implementation and transition: The implementation and transition phase relies on effective planning, but also the ability to flex and adapt where needed. To this end, dedicated risk management supports the change to take account of the unexpected. This implementation and Cloud transition phase is the largest, with some elements (such as culture change) requiring significant effort in their own right. Implement the transformation to Cloud plan Stakeholder management Culture change: Risk management Change management for go-live The Auriga transformation to Cloud process is described by the four following core phases: 11
Manage and improve new Business As Usual (BAU): The management of the new BAU Cloud environment is critical in closing the loop between planning, implementation and ensuring that the implementation has achieved its aims. Measurement of effectiveness of the transformation to Cloud work must be augmented with identified opportunities for improvement, whether those improvements are in efficiency or profitability. This phase must also provide indicators for how benefits have been realised. Realise benefits Measurement of effectiveness Measurement of critical success factors Improvement actions Embed culture change and new ways of working within the Cloud environment. The end-to-end Auriga approach ensures that transformation to Cloud programmes, large or small, are designed properly, stay on track and deliver all expectations for your organisation. SIAM Enterprise Architecture/Project Management & Selection Auriga s SIAM Enterprise Architecture Project Management service has been designed to manage the challenges of business enabling service delivery from a fragmented IT service layer. An Auriga SIAM customer s IT service layer design will likely consist of separate networking, infrastructure and application services from differing vendors. This is also indicative of intelligent procurement creating competitive environments for suppliers and driving organisational costs down. When disparate suppliers are delivering the IT service layer together, demarcation and communication issues can hinder efficient problem resolution and even the simplest of configuration and change management tasks. This problem is particularly prevalent in Cloud based transition projects; when organisations and departments are relying for the first time on external parties for the delivery business critical applications. The following diagram (next page) shows the positioning of SIAM enterprise in the context of an existing organisation. It also shows how those existing services wrap around the SIAM services to provide full integration. Whether clients/customers are procuring a private or public Cloud based solution, Auriga s expertise in this field assists in ensuring your organisation s future strategy implementation does not turn in to a resource draining failure. Auriga ensures your organisation s legal, security and statutory obligations are met and that supplier services are contractually secured. Following on from Auriga s Business Analysis service (or building on your own), our SIAM Enterprise Architecture service can take ownership and management, or provide input into the following areas: Manage the procurement process for Cloud based services, ensuring alignment with your organisations corporate strategy Develop, communicate and manage service level agreements for all external suppliers Manage the assessment and integration of external supplier agreements and service layers Manage the assessment, integration and future development of existing supplier agreements Design, Implement and manage the on-boarding and integration of new Cloud based services into your existing organisation Manage the critical culture change activities that will ensure your organisation makes the most of any Cloud based environment By understanding current strategic requirements, Auriga can create a services integration program and build client s critical business capabilities. Auriga will help design and implement an integrated, transparent Cloud based IT service and supply chain by assessing your organisation s strategic goals and core business services. Auriga s SIAM experts ensure supplier management, enterprise architecture, service management and overall service integration are orchestrated in a manner which delivers the expected Cloud efficiencies. 12
SIAM Enterprise Positioning Enterprise Architecture Architecture Vision & Design Architecture Policy & Standards Architecture Roadmap & Plans Architecture Management Policy & Standards Mgt (Inc Security) Programme Mgt & Governance includes: Systems Integration Overall Direction & Support Programme Risk Management Project Management Standards Requirements Development Validation Integrated Project Management Project Risk Management Decision Analysis & Support Retained Controls: Procurement and Contract Mgt Vendor Management Exit Management Service/Solution Assurance Requirements Development 2. Service Desk 2.1 Service Desk General, 2.2 Incident, 2.3 Request Management and 2.4 Problem Management 1. Core SIAM - Service Integration & Management 1.1 Access Management 1.7 Service Catalogue Management 1.2 Availability Management 1.8 Service Level Management 1.3 Capacity Management 1.9 Standards & Architecture 1.4 Change Management 1.10 Financial Management Support 1.5 Event Management 1.11 Service Provider Management 1.6 IT Service Continuity Mgt 3. Service Knowledge Management Central Repository for all Service Management Reference material 4. Service Provider Assurance 4.1 Service Level Design & Review 4.2 Service & Supplier Quality 4.3 Regulatory Service Provider Compliance 5. IT Info Security Support 5.1 Incident & Event Monitoring 5.2 Protective Monitoring 5.3 Forensic Analysis 5.4 Security Assurance/ Accreditation 5.5 Security Incident Prevention 6. Service Transition Planning & Support 6.1 Service Transition Planning 6.2 Project Management 6.3 Release & Deployment Mgt 7. Service Validation & Testing 7.1 Test Planning & Design 7.2 Service Evaluation 7.3 Test Environment Mgt Decision Analysis & Support Assurance & Validation Service Strategy & Architecture Demand Management Business Service catalogue Business Relationshop Mgt Business Architecture Financial Management Service Portfolio Mangement Risk Management Service Towers; eg: Desktop Services, Hosting Services, Network Services (PSN), Cloud Services Retained Organisation Retained supported by Managed Service SIAM Enterprise Services Services 13
Auriga believes that effective SIAM is key to making these services work together, whilst ensuring the security of your assets. A comprehensive strategy for SIAM will enable organisations or Government department to manage their services efficiently and securely. Auriga uses its wealth of experience in the SIAM field to design, procure, integrate and implement an effective and efficient service, encompassing all areas of the business or project scope. Strong operational and commercial governance is at the heart of Auriga s SIAM Architecture service, and this is fundamental to your organisation s Cloud requirements. Without effective governance and control, there is significant risk of a service collapse and impact to business critical services. By providing an effective SIAM service, Auriga creates the space for government departments to concentrate on running their critical public services, or private sector suppliers on their business critical services. Sourcing services from multiple vendors and providers is common practice, for example the Tower model currently being adopted across government. These types of procurement strategies are attractive because of the flexibility and cost savings they attract, however they can also create integration difficulties. A system which ensures effective and timely release and change management A managed finance and billing model Effective Cloud based ICT solution delivering both functional and non-functional requirements Cross-supplier service orchestration overseen via the departments service management stream Auriga s expertise delivers a SIAM solution which remains independent from the service suppliers, acting as an agent on behalf of the Government department. In conjunction with the department, Auriga ensures that the SIAM service remains independent and accountable to the business. In order to do this, Auriga strive to understand your business and manage the delivery of all solutions on your behalf. Auriga s SIAM Enterprise Architecture and Project Management service utilises a perfect blend of ITILv3 and SIAM goals to ensure that delivery of the following organisations: Services that leverage Cloud based service efficiency Integration of disparate service providers delivering a unified service layer to the whole organisation Services where responsibility for solution effectiveness is owned across the SIAM service, especially where Hybrid Cloud infrastructures are procured An effective system for managing cross-organisation Cloud based service delivery, or where there is a general service demand A solution that is capable of effectively managing crosssupplier disputes and service discrepancies Centrally managed testing, assurance and accreditation strategies 14