With all the talk about cloud security threats, it’s important to remember that no matter where your data and applications reside, you should consider your data insecure.
Fundamentally, security isn’t a hyper-complex enterprise; It’s not, as they say, rocket science. It often feels that way, because the discipline is so broad in scope; encompassing both disparate technologies and governance frameworks. But, the vast majority of risk can be mitigated through adhering to basic foundational security.
More to know: A review of breaches outlined within the Verizon 2017 Data Breach Investigations Report (DBIR) against the Center for Internet Security (CIS) top 20 critical security controls found that:
• Adopting the first 5 controls could mitigate 85% of attacks, and
• Adopting all 20 controls could mitigate 97% of attacks.
That basic foundational security can be expressed in one essential formula, which boils down what is under your control as an IT security professional and what is outside your purview. That equation is as follows.
A traditional enterprise advisory engagement is often a “one and done” deal — you have an IT problem to solve or a new technology to implement and the consulting agency comes in, gathers info, makes recommendations, helps with the execution and steps out of your way.
That’s great for large-scale improvements. But modern IT practices preach continuous improvement, agile methodology, and DevOps practices even beyond the software development world. With the advent of cloud, it’s all about continuous, constant iterations of your software and services.
Many SaaS platforms take care of this for you. That may not be the case with IaaS and remaining hardware, however. Focusing your existing staff on business goals and service delivery while augmenting it with an advisory and managed service provider partner can take even your backend infrastructure and upstack applications into the realm of continuous improvement via cloud management services, automation, and feedback loops.
Multi-cloud is the IT service model du jour, but it comes with a set of challenges that many IT departments aren’t yet ready to tackle. There are many reasons to go with more than one cloud provider, including the use of specific services or abilities, backing up storage across various vendors, maintaining availability or minimizing latency, and even using different cloud vendors as bargaining chips for pricing negotiation.
A managed services partner might be the best way for you to take advantage of multi-cloud IT infrastructure and services, especially if you face the all-too-common cloud skills gap that many organizations encounter.
Read on for statistics on multi-cloud adoption and cloud skills difficulties, as well as ways in which a partner can help you alleviate the top multi-cloud obstacles.
There are myriad technical considerations when deciding how to architect and deploy your cloud infrastructure, but your business structure, size, strategy, and industry are also significant factors.
You don’t need to take a deep dive into technical evaluations of each workload to choose between public cloud and a hybrid or private infrastructure. It’s possible that your business practices will make that decision for you before you ever get to individual app/system analysis.
Here are the business traits to consider as you weigh your cloud options.
Here we are again, talking about digital transformation. While the pile of buzzwords threatens to overwhelm at times, this particular movement has real benefits for organizations that are still running IT in the old style, with break-fix scrambling, disjointed service delivery, and a take-it-or-leave it approach to technology procurement.
Rather than focusing simply on the end goal from an IT perspective, your IT department should be focused on the bigger picture. Your users are in effect your customers — and your company’s customers are supported by those users. By bringing business goals and processes under the IT umbrella, you help foster communication, efficiency, improve IT services, and most importantly revenue growth across the organization.
Here are three areas to focus on when transforming your IT department into a service center.
A new report from Deloitte found that IT spending is on the rise, with executives taking a more hands-on role in procuring or ordering investment in technology and related staff. But while 57% of execs reported spending more on technology, 33% said they have little or no formal IT governance policies.
If it seems slightly foolish to spend significantly more on technology without certifying a business purpose and implementing controls over the lifespan of that technology — well, it is. The report does come with the caveat of polling only midmarket and private organizations. We would expect more public businesses to have formal IT governance in place. But that doesn’t excuse organizations of all sizes from measuring the effectiveness of IT in meeting business and compliance goals.
Get started with an overview of IT governance and what you should include in your policy.
We’ve gone back and forth on this for many years now. Are enterprise data centers dying? Gartner seems to think so, recently predicting that by 2025, 80% of enterprises will have shut down their traditional data centers, compared to 10% today.
That’s less than ten years out. Do you foresee your data center being put out to pasture within a decade? Or largely decommissioned and consolidated? It doesn’t seem too far-fetched considering an average hardware lifespan of three years. You could cycle through your servers three times over before then — and most of those compute workloads will likely end up in the cloud or hosted elsewhere.
Here's how that change will affect how you procure and manage IT services.
Migrating to the cloud? Now is the perfect time to start or continue your digital transformation. There are several methods when it comes to cloud migration. At some point in your cloud journey you’re bound to encounter more than one of them and each of them certainly has its purpose.
But if you aren’t designing in the cloud, for the cloud (which could involve rearchitecting or procuring replacement application components), you’re missing out on many of the biggest advantages of cloud computing.
Here’s why “lift and shift” ends up stifling what could be a transformative cloud migration that sets the stage for your enterprise IT for years to come.
While microservice application architecture dates back to 2011, enterprise IT tends to move relatively slowly when it comes to the adoption of new technologies. The concept and methodology has been refined in concert with the rise of cloud computing, and now microservices are a popular way to build, deploy, and most importantly scale applications.
Microservices can improve your agility, security, and resiliency, but they require a major adjustment to your development team’s workflow and the architecture of your application itself. Read on to learn the advantages of microservices and potential caveats for their use.
Cloud IT infrastructure has plenty of overlap with traditional on-premise servers, but there are additional layers of complexity and new tools to learn as well. That’s why building a successful cloud team is so important to an effective cloud deployment.
A managed service provider can help you fill your cloud skills gaps and architect a versatile and resilient cloud platform for your applications and data. But if you want continued success in the cloud, having a cloud architect on your IT team goes a long way.
How has the role of a cloud architect evolved and what are they responsible for? Let’s take a look.