Atos Managed Services The Digital Data Center Powering IT to move at the speed of business
Agenda Agenda Overview Business needs Benefits Services Roadmap Architecture Pricing Why Atos Service details 2
Digital Data Center from Atos The evolution of Managed Services data center solutions By fully embracing software defined technologies before others, and backed by a long-standing strategic partnership with VMware, Atos enables customers to evolve to a Digital Data Center infrastructure now. Transforming IT infrastructure that can support existing applications and legacy environments, to release real business value of reduced infrastructure costs, flexible and agile architecture, reducing time to both deploy and change finally meeting the speed of business need. 3
The Technology at a glance Atos DDC is built on software-defined data center architecture (SDDC) and commodity hardware SDDC is a combination of four technologies: existing server virtualization, softwaredefined networking, software-defined storage and management / automation All elements of the data center including networking, storage and compute are virtualized and delivered as a service to customers The control layer is abstracted from the physical layer enabling dynamic provisioning of data center resources based upon software and policies This enables the data center to react to the speed of enterprise requirements, and to tune data center resources to meet application workloads 4
What Digital Data Center is about from manual to automated policy-based operations Traditional Data Center Software Layer Proprietary Hardware Manual Operations Intelligence Network/Storage/Security/Server Software Layer Digital Data Center Orchestration Layer (common to cloud) Intelligence Automated Policy Based Operations Commodity Hardware Source: diagram adapted from VMware Similar to the compute/server virtualization that happened over the last years, the Digital Data Center is a data center in which the remaining infrastructure components of the Data Center (network, storage, firewall/security - on top of compute) get virtualized as well, with the intelligence moving out of the hardware devices towards a new over-arching software layer. The software-defined based Managed Data Center Services are therefore abstracted from the underlying physical infrastructure, enabling programmatic and automated provisioning and management. 5
How Digital Data Center meets your business needs Despite new technologies, new delivery models, IT is still struggling to meet the high expectations of the business. Some of the challenges you face to day include... Business agility businesses now require the IT infrastructure and IT resources to adapt rapidly to meet fluctuating business demand faster and continues delivery Reduction of spiralling complexity the explosion of distributed systems have in some cases outstripped the productivity improvements engendered by server virtualization and lowering hardware costs Doing more with less IT budgets continue to be reduced and CFO s look to either avoid spend, reduction of CAPEX and OPEX Legacy preventing progress many virtualized business applications have remained on older operating systems due to the cost of modernization and the move to cloud is therefore inhibited. Security and sustainable hosting Customer dedicated DDCs whether in Atos high-quality and secure strategic data centers or on customer own data centers to increase IT operational control Evolution virtualization of servers is only part of the story, DDC also virtualizes the storage and network to enable a dynamically accessible pool of all IT resources 6
What are your benefits? flexible, agile architecture reduce capex reduce opex speed up timeto-market capable of spanning VMware based cloud environments in a hybrid model expensive hardware components replaced by software reduced maintenance windows & failure containment less risk in new business initiatives less over-capacity; DDC investments easy to re-use cheaper hardware components; lower write off in case of failure cost-effective 75 VM entry level design better utilization of asset pool unified management & configuration easy to grow models less staff to operate and lower outsourcing operation costs self-service for reduced human interventions faster initial set-up rapid change handling designed for incremental growth easier DR capability workload portability development to production 7
Consult - transform - operate Atos holistic approach for software-defined services Consult and Architect Transform Operate Project Services Project Services Managed Services upfront assessment of your DC environment to your business needs capacity planning future state architecture and roadmap design of software-defined infrastructure, automation and orchestration tools and best practices to create operational SDDC framework move to software-defined architecture in your data center move to Digital Data Center services from Atos and/or within customer owned data centers production deployment & go-live transition to operational support simple and agile provisioning of preconfigured virtualized compute, storage and network resources in a dedicated highly standardized infrastructure pod complete service lifecycle management policy based and flexible resourcing access to service catalogue and modular pricing protected by highly sophisticated security service 8
Our Project Services step approach to software-defined data center (SDDC) Step approach to SDDC maturity ensures implementation supports IT & business requirements Understanding what is required to build SDDC: Virtualization is common in most environments, but the deployment of SDDC use cases in most situations lead to extension of the current infrastructure Every environment is different prove what works for your organization, then deploy Integrate the core components that bring forward the value of SDDC Flexibility to architect & deploy within customer or Atos Data Centers Readiness Aligning Future State environment to deliver services and achieve business priorities Software defined Infrastructure Services Structured approach to prove use-cases and deploy fully virtualized environment and operational management Automation & Orchestration Automating services and processes for simplified operational management 9
The DDC Managed Services Increased flexibility by dynamically provisioning compute, storage, network and security resources We virtualize all IT components of the enterprise data center to run application workloads whether in centralized data centers, local data rooms or branch offices. We offer DDC services from our own secure data centers with improved levels of efficiency and responsiveness. You can easily access DDC services via our portal using fully automated processes to allocate infrastructure resources whenever and wherever they are required. Start small and scale with your business needs: entry-level of 75 virtual machines with a small variety of initial environments to choose from providing the ability for both test and production workloads to coexist safely within the same environment Scaling up smoothly without down-time when required 10
The DDC Managed Services offering components Virtual Servers Virtual Storage Virtual Data Center LAN enables customers to easily and flexibly provision enterprise ready dedicated and virtualized server resources with pre-defined storage, networking and security services as a complete stack. provides customers with dedicated storage from the DDC that can be dynamically created and delivered per Virtual Machine and controlled by policy. is built using software defined networking technologies. These virtual networks are abstracted from the underlying commodity hardware such that network device instances can be programmatically created. Virtual Firewall Server Protection Portal & Framework solution... allows the necessary firewalling security policies for any given workload to be defined, provisioned and managed, protecting sensitive data and business applications from unauthorized access. provides malware protection on managed and virtual servers to protect the infrastructure against malicious attack. by early identification and remediation of any suspect incident the threat to the business is reduced. provides a standardized web interface to enable authorized users based on entitlement rules to immediately act upon their needs whenever this is required, e.g. for ordering, open and track incidents or access reports. 11
Schematic service overview Existing MS services to offer over the top of the DDC service Custom Application Operations Database Service SharePoint Web Hosting Active Directory VDI Active Directory The Extended Atos Offering Atos DDC Service Structure DDC Technical Architecture MS service modules closely integrated with DDC Virtual Server Linux/Windows Virus Protection SW Defined Storage Virtual Firewall SW Defined Network Backup Atos ATF (portal, ticketing, CMDB) etc Atos Operational Support 12
Planned releases roadmap with major milestones 13
VMware vcenter Orchestrator SDDC Extensibility VMware APIs High level architecture VMware Service Management Layer ATF Automation layer VMware vrealise Automation VMware vrealise Application Director VMware vcenter Orchestrator Management layer Management & monitoring VMware vcenter vrealise Operations vrealise Automation Network NSX for vsphere Virtualization layer Storage VMware vsan Compute VMware ESXi Hardware layer x86 Rack servers switches (L1 Network) local disk 14
The underlying pod architecture (1) This pod approach simplifies and speeds up the delivery, installation and configuration of infrastructure services through a modular and highly industrialised approach. The architecture supports a scale up and out approach. An entry level pod supports a minimum of 75 average virtual machines, scalable in increments of 100 VM s up to 375 VM s per compute cluster.
The underlying pod architecture (2) Once the initial compute cluster is full, a 2 nd and further clusters can be added in line with demand, each one scaling up to full capacity and out to the next cluster.
Pod pricing summary for Atos Digital Data Center Pricing consists of FIVE key elements 1) Pod initial one off banded charge (DDC pod hardware + software) 2) Monthly banded Pod management charge 3) Monthly charge for DDC pod service options 4) Variable charge for the volume of standard changes, each at fixed rates 5) Various charging types for add on additional services Initial Pod Capex Monthly charge, minimum 3 years (minimum charge for any VM, Gb resource is 1 month) 1. One off charge 2. Pod management 4. Changes 3. Options 5. Add-on services 17
The credentials Leader in Gartner s Magic Quadrant for DC Outsourcing 2014, Europe Atos is the leading European IT services company and has one of the largest managed Data Center capabilities in Europe and operates DC s across the globe. Market recognition For the third year in a row Atos is positioned as a Leader in Gartner s Magic Quadrant for Data Center Outsourcing and Infrastructure Utility Services 2014, Europe Gartner positioned Atos as a Visionary in its Magic Quadrant for Data Center Outsourcing 2014, Asia/Pacific. Gartner positioned Atos as a Challenger in its Magic Quadrant for Data Center Outsourcing and Infrastructure Utility Services 2014, North America Positioned by IDC as a Major Player in the IDC MarketScape: Worldwide Managed Security Services 2014 Vendor Assessment Global footprint Network & Communications 1,700,000 Ethernet ports 700,000 supported web conferencing users 55,325 managed switches 9,160 managed routers Managed Infrastructure Solutions 75+ multi-customer data centers 170,000 managed servers 118,000 installed MIPS 240,700 TB storage Cyber Security 1 million protected endpoints and desktops 7.5 billion monitored events per month 3,500 complex data center firewalls 500,000 digital identities for one single client Project Services 10 years of Data Center transformation expertise delivering over 800 Data Center projects globally more than 100 transformation projects a year 18
Atos is the Number 1 European provider (number 3 worldwide) of vendorindependent managed infrastructure services. We develop and deliver the most cost-effective and suitable solutions leveraging market leading providers to manage, optimize and transform data centers and infrastructure. We have early insight on new technologies, enabling us to develop new and innovative technical solutions. Our strong global footprint, and industry heritage gives us the understanding and the flexibility to adapt easily to our clients culture whatever industry they work in and wherever they are in the world.
Virtual Servers Short description The DDC Virtual Server service enables customers to easily and flexibly provision enterprise ready dedicated and virtualized server resources with pre-defined storage, networking and security services as a complete stack. Both Windows and Linux are supported and deployed through a service catalogue on a customer portal from a managed image library of any vendor supported image version. Key features of the service include: fast dynamic provisioning, flexible server sizing according to application and business needs, pre-defined storage and networking configurations including firewall and load balancing. monthly flat-fee billing, secure environment. Scope of Services Virtual Server Provision of server capacity on demand Secure and Sustainable Hosting Support of customer dedicated environments in Atos strategic highquality data centers Integration in data center operational processes event management, incident and problem management, service-level management, capacity, availability and security management Online portal for all service requests (ordering and changes) Managed Operating Systems Support of Windows OS Linux (Red Hat / Suse) until end of vendor support 20
Virtual Storage Short description The DDC Virtual Storage offering provides customers with dedicated storage from the DDC that can be dynamically created and delivered per Virtual Machine and controlled by policy. The software defined storage enables precise alignment with application requirements of modern virtualized applications and virtual desktop environments and can easily allow the pre-defined server storage configurations to managed in real time. Key business functionality including backup, restore to a low RTO SLA, leveraging the latest software defined storage architecture which fulfils the requirements of modern virtualized applications and VDI environments. Scope of Services Virtual Storage Provision of storage capacity to virtual machines fully automated and policy based. Integration in data center operational processes event management, incident and problem management, service-level management, capacity, availability and security management Backup and recovery of consistent business data Online portal for all service requests (ordering and changes) Customer dedicated environment 21
Server Protection Service Short description The DDC Server Protection service provides malware protection on managed and virtual servers to protect the infrastructure against malicious attack. With Server Protection we reduce the threat to the business by early identification and remediation of any suspect incident. Costs of incident handling are reduced by the integration of automated Security Operation Center processes with new threats being reacted to automatically within the security environment. Scope of Service Malware Protection for Server Basic: Provides anti-virus and signature-based protection for Microsoft Windows environments by the provision of server security against worms, viruses, trojans, and spyware, while also providing an actual environment with current virus detection mechanisms. Malware Protection for Server Advanced: Enhances the Basic service with monthly SLA reporting based on a Malware Protection Service Level Agreement. Also Linux system protection can be optionally added with the advanced service if required. Malware Protection for Server Extended: Enhances the Advanced service with our Host Intrusion Prevention service (HIP). With HIP, Atos delivers unprecedented levels of protection from known and unknown zero-day threats by combining signature and behavioral based detection technics. 22
Virtual Data Center LAN Short description The DDC Virtual DC LAN Atos is built using software defined networking technologies. These virtual networks are abstracted from the underlying commodity hardware such that network device instances can be programmatically created, provisioned and managed, with the underlying physical network serving as a simple packet-forwarding backplane. Network, security and load balancing services are allocated to each virtual server according to policy, and remain with the virtual machine should it require to be moved between physical hosts within the dynamic virtualized environment. As a result, the network infrastructure can be dynamically provisioned and flexibly managed. Scope of Service Virtual Data Center LAN Basic comprises both virtualization technology (VMware) as well as the physical network connectivity (Juniper). It includes basic load balancing functionality and provides connectivity to and from management systems as well as Internet access. Virtual Data Center LAN Advanced provides all basic services and additionally as an option advanced load balancing functionalities as well as connection to legacy networks. 23
Virtual Firewall Short description DDC Virtual Firewall services allow the necessary firewalling security policies for any given workload to be defined, provisioned and managed, protecting sensitive data and business applications from unauthorized access as securely as any physical infrastructure. However, the added benefit is that any security changes can be automatically propagated based on policy and without manual intervention, reducing the time to secure any given domain and removing the risk of human error. With software defined technology, predefined firewall images and highly automated service deployments the Virtual Firewall service enables a one time, deploy many configuration, resulting in a significantly faster and cost effective service. DDC now allows repeatable application stacks to be built up with the complete networking and security requirements built in. The Virtual Firewall service is designed for enterprise customers using network zones such as Internet, Intranet, Extranets & DMZs. Scope of Service Virtual DC Edge Firewalls manage and control passing network traffic from traditional but virtualized security zones i.e. Internet, DMZs, Intranets or Business partner zones. Distributed Firewall enables microsegmentation whereby each virtual machine within the DDC environment can be secured through a machine specific firewall policy. Distributed firewall manages and secures the virtual machine s incoming and outgoing communication, immediately on start up. Virtual Firewalls will be implemented on virtual network, compute and storage environments in specific data centers of Atos or on customer premise. These environments, including the underlying DC network are software-defined. 24
Project Services Short description Our Project Services underpin the Atos DDC Services by providing the expertise and methodology to transform both physical and virtual computing environments into fully Software-Defined Data Centers. With our IT Consulting, Transformation & Migration project services we enable our clients to deploy software defined networks and/or storage or to move a totally software defined DDC environment. The service includes evaluation of the existing environment, business requirements definition, architecture and infrastructure design, technology integration, Proof-of-Concept and fullscale deployment with management automation and orchestration. Our subject-matter experts are industry trained and certified and our global project experience spans over 10 years with more than 800 projects. Scope of Service Transformation to softwaredefined network to decouple the physical network to create a single virtual network. Programmatically create physical network attributes in a virtualized environment. Transformation to softwaredefined storage with policy approach to storage management that creates a high-performance persistent storage tier; clustering server hard disk and solid state drives (HDDs and SSDs). SDS creates a flash optimized highly resilient shared data store designed for virtual environments. Transformation to softwaredefined data center creating a Workflow approach to orchestration of events and tasks that rapidly deploy and provision resources. Automated control and execution of events and tasks through prewritten scripts (written instructions) for policy-based virtual data centers. 25
Thank you For more information please contact: Ralf Eichler, Atos Managed Services, VP Head of Global Portfolio Management, M+ +491 739649891 ralfeichler@atos.net Atos, the Atos logo, Atos Consulting, Atos Worldline, Atos Sphere, Atos Cloud and Atos WorldGrid are registered trademarks of Atos SE. May 2014. 2015 Atos. Confidential information owned by Atos, to be used by the recipient only. This document, or any part of it, may not be reproduced, copied, circulated and/or distributed nor quoted without prior written approval from Atos. 02-06-2015