I’ve been speaking to more and more clients lately who are not just saving money with cloud computing — they’re using the principles of the cloud to completely transform how they source, build, and deliver all IT services. Savvy I&O leaders should look beyond the per-hour savings promised by the cloud to the core tenets of cloud computing itself. How do the public clouds do it? Why can’t you?
Well, you can. You can transform your IT operating model from that of widget-provider to a true service-oriented business partner. Forrester writes extensively about how to make the IT to BT (business technology) transition. I recently spoke at length with the IT management team at Commonwealth Bank of Australia (CBA) about their multi-year IT transformation to what they call “everything-as-a-service.” I was put in touch with them by one of their primary suppliers, cloud service management and automation vendor ServiceMesh.
We’ll be publishing a complete case study soon, but I wanted to share some of the basics here because they outline a strategy anyone can achieve, regardless of your current level of cloud maturity. The bank started by establishing six core tenets to be enforced across all I&O services moving forward, whether hosted internally or externally. These guiding principles neatly summarize the core value dimensions of cloud computing itself:
Pay as you go. Business customers only pay for products and services actually used, on a metered, charge-back basis, under flexible service agreements, as opposed to fixed-term contracts.
With VMworld in full swing this week and Microsoft’s cloud-centered Windows Server 2012 launching soon after, your options for technology to build and deploy enterprise clouds is about to expand significantly. Meanwhile, Amazon continues to drop prices faster than your local Wal-Mart, introduce new cloud compute and storage services almost monthly, and has already gobbled up a trillion objects in S3. Is it time to start moving your workloads to the cloud?
Forrsights surveys show that companies are indeed moving to the cloud, primarily for speed and lower costs — but are the savings really there? The answer might not be obvious. Are you heavily virtualized already? Have you moved up the virtualization value chain beyond server consolidation to using virtual machines for better disaster recovery, less downtime, automated configuration management, and the like? Do you have a virtual-first policy and actively share resources across business units? If you run a mature virtual environment today, your internal infrastructure costs might already be competitive with the cloud.
Cloud Services Offer New Opportunities For Big Data Solutions
What’s better than writing about one hot topic? Well, writing about two hot topics in one blog post — and here you go:
The State Of BI In The Cloud
Over the past few years, BI business intelligence (BI) was the overlooked stepchild of cloud solutions and market adoption. Sure, some BI software-as-a-service (SaaS) vendors have been pretty successful in this space, but it was success in a niche compared with the four main SaaS applications: customer relationship management (CRM), collaboration, human capital management (HCM), and eProcurement. While those four applications each reached cloud adoption of 25% and more in North America and Western Europe, BI was leading the field of second-tier SaaS solutions used by 17% of all companies in our Forrester Software Survey, Q4 2011. Considering that the main challenges of cloud computing are data security and integration efforts (yes, the story of simply swiping your credit card to get a full operational cloud solution in place is a fairy tale), 17% cloud adoption is actually not bad at all; BI is all about data integration, data analysis, and security. With BI there is of course the flexibility to choose which data a company considers to run in a cloud deployment and what data sources to integrate — a choice that is very limited when implementing, e.g., a CRM or eProcurement cloud solution.
“38% of all companies are planning a BI SaaS project before the end of 2013.”
In November 2011, Atos and Yonyou (formerly Ufida) announced the creation of a joint venture dubbed Yunano™ aimed at the European SMB market. The two companies are at it again, this time focusing specifically on the Chinese domestic market. I recently met with Herbie Leung, CEO of Atos in Asia Pacific, to discuss the partnership and future market opportunities in China. This new agreement essentially covers three areas of collaboration:
Bringing PLM and MES expertise to Yonyou customers. With more than 1.5 million customers, Yonyou is one of the largest software providers in China with strengths in ERP and CRM solutions. However, the company lacks capabilities in adjacent areas like product lifecycle management (PLM) and manufacturing execution systems (MES). Following the SIS acquisition, Atos has significantly strengthened its capabilities in these domains and will offer them to Yonyou clients.
Helping Yonyou’s customers migrate to private cloud architectures. The lack of private cloud technical skills in China led Yonyou to leverage Atos’s expertise to develop private cloud assessment workshops and ERP migration services targeting the China market. Atos will in turn leverage Canopy, a company it recently created in partnership with EMC and VMware to provide cloud solutions to its clients globally.
Helping Yonyou expand into new markets in Asia. Like many Chinese companies, Yonyou has global aspirations.While theYunano joint venture focuses on bringing Yonyou’s ERP solutions to the mid-market in EMEA, the new partnership will leverage Atos go-to-market capabilities to take the Yonyou solutions to other markets in Asia.
Protocol gut check. That's how someone recently described some research I've got under way for a report we're calling the "TechRadar™ for Security Pros: Zero Trust Identity Standards," wherein we'll assess the business value-add of more than a dozen identity-related standards and open protocols. But it's also a great name for an episode of angst that recently hit the IAM blogging world, beginning with Eran Hammer's public declaration that OAuth 2.0 -- for which he served as a spec editor -- is "bad."
As you might imagine, our TechRadar examination will include OAuth; I take a lot of inquiries and briefings in which it figures prominently, and I've been bullish on it for a long time. In this post, I'd like to share some thoughts on this episode with respect to OAuth 2.0's value to security and risk pros. As always, if you have further thoughts, please share them with me in the comments or on Twitter.
I’ve participated in cloud events in four different countries over the past two weeks. Attendees were primarily senior and mid-level IT decision-makers seeking guidance and best practices for implementing private clouds within their organizations. Regardless of the country of origin, industry focus or level of cloud-related experience, one common theme stood out above all others during both formal and informal discussions – the importance of effective communication.
The key takeaway – don’t get dogmatic about terminology. In fact, when it comes to cloud-related initiatives, choose your words carefully and be prepared for the reaction you’re likely to get.
‘Cloud computing’ as a term remains over-hyped, over-used, and still often poorly understood – because of this, typical reactions to the term are likely to range from cynicism and doubt to defensiveness and derision and all the way to outright hostility. Ironically, the fact that it’s not a technical term actually creates more confusion in many instances since its meaning is so general as to apply to practically anything (or nothing, depending on your point of view or perhaps your level of cynicism).
At all four events over the past two weeks – and in fact in nearly all discussions of IT priorities I’ve had over the past six months – CIOs and other senior IT decision-makers have consistently made clear that ‘cloud computing’ as a general objective or direction isn’t a top priority per se. However, they are unanimous in their belief that data center transformation is essential to supporting business requirements and expectations.
Last year, my colleague, James Staten, and I published evaluations of the (internal) private cloud and public cloud markets — this year we’re going to fill in the remaining gap in the IaaS space, by publishing a Forrester Wave evaluation on Hosted Private Cloud Solutions. Vendors participating in this report will be evaluated on key criteria, a demo following a mandatory script, and customer references for validation of the solution. Throughout the research process I’ll be providing some updates and interesting findings before it goes live in early Q4 2012.
So, what is hosted private cloud? Like almost every product in the cloud space, there’s a lot of ambiguity about what you’ll be getting if you sign on to use a hosted private cloud solution. Today, NIST defines private cloud as:
The cloud infrastructure is provisioned for exclusive use by a single organization comprising multiple consumers (e.g., business units). It may be owned, managed, and operated by the organization, a third party, or some combination of them, and it may exist on or off premises.
Hosted private cloud refers to a variation of this where the solution lives off-premises in a hosted environment while still incorporating NIST's IaaS service definition, particularly where “[t]he consumer does not manage or control the underlying cloud infrastructure but has control over operating systems, storage, and deployed applications.” But there’s a great deal of variation in today’s hosted private cloud arena. Usually solutions differ in the following ways:
During a recent global analyst event in Paris, Capgemini presented its strategy to a panel of market and financial analysts. It hinges on two main objectives: improving the resilience of the organization in an uncertain economic environment — especially in Europe — and finding new levers for margin improvements.
From an operations point of view, Capgemini intends to continue leveraging the usual suspects: industrialization, cost cutting, and accelerating the development of its offshore talent pool. It also aiming to optimize its human resource pool via a pyramid management program aimed at, among other things, allocating the right experience level to the right type of work.
More interestingly, the company showcased some of the global offerings it has put together or refined over the past 12 months. Capgemini’s strategic intent is to develop offerings addressing three major client-relevant themes – customer experience, operational processes, and new business models. The offerings will be enabled by a combination of cloud, mobile, analytics, and social technologies. Among the set of offerings managed globally, I found the following of particular interest due to their emerging nature and Capgemini’s interesting approach to developing them:
Services budgets represent 10% of annual IT operating and capital budgets[i], but Forrester sees considerable evidence that the influence of these IT Services vendors is proportionally higher — and growing dramatically. While there are several reasons for the rising importance of your services partners, at the most fundamental level Forrester sees that:
Business professionals need immediate access to tech-enabled innovation. Most strategic business initiatives now have an underlying technology component. Service providers come to the table with the tech savvy, vertical market expertise, and best practices to make these initiatives work.
IT professionals can’t keep pace with business demand. The volume and complexity of technology demands from business professionals means that traditional IT organizations have difficulty keeping pace. They too need to work with the best mix of IT service providers to meet the demands of their business. Effective supplier management is quickly becoming the most essential skill in IT organizations.
Our latest survey on IT budgets and priorities shows that 35 percent of enterprises have a big focus on cloud computing (calling it a high or critical priority), but do we really know how best to apply that investment?
We continue to see a large disconnect between what the business wants from cloud services and what the IT department wants to offer and support. The short story is the business wants public cloud services (or something very, very close to this value proposition) for delivering new services and capabilities to market. Yet IT wants to offer private cloud solutions that improve operational efficiency and drive down overall IT costs. IT doesn't have its head in the sand about business' demands, they just have to balance these desires against what IT is measured on - the cost and security of services provided. And frankly they don't trust the public cloud.
Knowing the psychology above, how best can an enterprise set a winning cloud strategy? if it invests purely against the business care-abouts it may win time to market but risks investing ahead of its ability to support and protect the business. If it invests against the IT priorities it risks alienating the business, increasing circumvention and being a laggard competitively. The answer lies in striking an appropriate balance between these conflicting priorities and choosing a strategy that encourages the most collaboration between business and IT and accelerating everyone's experience level with these new technologies. And that balance will be different for every firm based on their competitive market, regulatory environment and geography. But in general, most enterprises are being far more conservative than they should.