Get Your Head in the Cloud The Hidden Power of Coupa s True Cloud Solution
INTRODUCTIONS David Williams VP, Technology @metakube Sanket Naik VP, Cloud Operations & Security @SanketNaik Jim Benoit Senior Buyer & Project Lead Coupa Implementation
Who Are Y all?
Our History in the Cloud
True Cloud from Different Perspectives Photo Andrew Lipson, used with permission
A Black Box
The Nuts and Bolts
A collection of People Processes Software Hardware
Abstracted Layers of Complexity
People 10
Processes, or, One Codeline is Awesome rc1 (13.0.0.rc1) rc2 (13.0.0.rc2) Release (13.0.0) 013_release master System/ Integration Testing Regression Test Start Regression Test End Branch New Features Release Tag Deferred SWAT/ Integrations/ Sustaining Pull Requests Accepted SWAT/ Integrations/ Sustaining Pull Requests Fixes for bugs found by QA Milestone 11
But Also Hard Enough Release (12.0.0) rc1 (12.0.1.rc1) rc2 (12.0.1.rc2) Release (12.0.1) rc1 (12.0.2.rc1) rc2 (12.0.2.rc2) Release (12.0.2) 012_release master Regression Test Start Regression Test End 013_release Branch Deferred SWAT/ Integrations/ Sustaining Pull Requests Fixes for bugs found by QA Accepted SWAT/ Integrations/ Sustaining Pull Requests Release Tag Milestone 12
Quality Throughout the Process Reviews Designs are reviewed for correctness and consistency All check- ins are code reviewed by func:onal experts Aspect- oriented developer checklists Automated tests Mandatory unit tests for all model changes Tests are run automa:cally all the :me System (integra:on) tests are automated Non- func4onal concerns Analysis of API, and CSV interfaces Performance and scalability studies Con:nuous security and penetra:on tes:ng Pla8orm reliability Version updates on dependent libraries and sohware PlaIorm security updates Code analysis in con:nuous integra:on 13
Software & Hardware: A High-Level Map
More Specifically Load Balancer Firewall Web Server 1/ App Server 1 Web Server 2/ App Server 2 Application Tier Firewall Firewall Backup Firewall MySQL Master/Slave 1 MySQL Master/Slave 2 Database Tier Utility Server 1 Utility Server 2 Utility Tier Primary Data Center Secondary Data Center
Your Driver of Savings as a Service
What Do You Need from the Cloud?
We think you need Dependability Security Interoperability Simplicity
Dependability
Dependability Designed for Failure Resilient & Elastic Monitored 24 x 7 x 365
Designed for Failure Backups Every hour 3 Levels of Failover Data Center Region Backup Real-time Database Replication RTO = 0-1hr RPO = 0-1hr
Resilient & Elastic at a Global Scale 24x7 Cloud Operations Defense in Depth Security & Compliance State of the Art Facilities Active Active Hot Replication Global Support Model Best in Class SLAs 99.999% Availability Power & HVAC
Always Up
Monitored 24 x 7 x 365 Transaction Monitoring App Performance CPU Utilization Disk Space Memory Consumption Intrusion Detection Background Queue Execution SFTP Connectivity Exception Handling Inbound & Outbound Email Integration Connectors Throughput
Security & Compliance
Security Physical Electronic People Process & Auditing
Physical Security
Electronic Security
Security Operations & Tools Firewalls Intrusion Detection Systems Anti-virus Security Scanning Penetration testing Static code analysis Single Sign-on (SSO) Encryption Threat Intelligence 24 x 7 monitoring Data lifecycle management
Security Operations & Tools contd. Single sign-on (SSO) Support for SAML 2.0 Integrated authentication to Active Directory Integration Security Integration Method Security Mechanism IDoc, Flat File SFTP dropoff Per customer SFTP user SSH keys authentication and Host key verification REST API SSL API key for authentication IP whitelisting (coming soon)
People
Process & Auditing SSAE 16 Type II SOC 1 6+ years of auditable and materially clean reports HIPAA Compliant US/EU Safe Harbor Certified FedRAMP (Q4, 2015) SOC 2 (Q4 2015) ISO 27001 (Q3, 2016) PCI (Q4, 2016)
Interoperability
Interoperability Integrated Cloud Agnostic Partner-Oriented Self-Service Transparent
Simplicity at Scale
Let s Talk Practice
General Mills
One more thing
What s New New hosting in Sydney for Australian customers Second region in Frankfurt for European customers coming soon Launching Enterprise Stack (ES) 4.0.2 Reliability More resilience to failures for infrastructure components Zero downtime upgrades for most infrastructure components Elasticity Auto-scaling of utility services like email processing and background job processing Performance Bigger and faster hardware CPUs, memory, SSD, IOPS Average response time improved by up to 50% Throughput increased by up to 100% Security Full data at rest encryption (DARE) Data in transit security for email (Opportunistic TLS)
THANK YOU!
Photo Credits Surveyor - https://www.flickr.com/photos/usoceangov/13266228925 Nuts & Bolts - https://www.flickr.com/photos/microassist/6990640490 ENIAC - https://www.flickr.com/photos/8136496@n05/2196367188 LEGO Tower - https://www.flickr.com/photos/paulspace/2967861316 LEGO Minifigs - https://www.flickr.com/photos/hyku/380020264 (modified) Golden Collosseum by Juan de Dios Santander Vela https://www.flickr.com/photos/juandesant/210777110 Library by Jeremy Noble https://flic.kr/p/48wfpp Icy Roads by Wilson Hui https://flic.kr/p/eoidbu Key & Circuit board perspecsys.com Day 87 by Pascal https://flic.kr/p/7dazzy Horse racing by Paul https://flic.kr/p/63qeif Serious Scaffolding by Dan DeLuca https://flic.kr/p/5ydz2c Flying a bit close by Mark Lehmann https://flic.kr/p/9lmb2a Anchor Chain - https://www.flickr.com/photos/chefranden/4777900975 Poodle - http://flickr.com/photos/92305862@n00/422417777 Lego Dimensions - http://en.wikipedia.org/wiki/lego#/media/file:lego_dimensions.svg Relativity by Andrew Lipson - http://www.andrewlipson.com/escher/relativity.html RFID closed - https://www.flickr.com/photos/amagill/34762677 Elgin Pocket Watch - https://www.flickr.com/photos/gozalewis/3257641860