The Open Group SOA Tutorials 1 – The Impact of SOA on Business 2 – SOA Maturity Assessment using OSIMM 3 – SOA Governance 4 – Architecting SOA 5 – Developing an SOA with TOGAF 6 – Implementing SOA SOA Governance
Chris Greenslade – CLARS Mats Gejnevall, Capgemini SOA Governance Created by Heather Kreger, IBM Carleen Christner, HP Chris Greenslade – CLARS Mats Gejnevall, Capgemini
Copyright Copyright (c) 2009-2012 The Open Group. All rights reserved. This material ("Material") may not be used, copied, distributed, modified, or shown, except under license from The Open Group. Open Group member organizations are hereby granted a non-exclusive license to use, copy, distribute and show the unmodified material for any purpose, for so long as they are current, paid-up members of The Open Group. Others may use, copy, distribute and show the unmodified material free of charge for non-commercial use. That will usually mean using it inside the organization, and not for commercial exploitation. To use the material for commercial purposes, an organization must apply to The Open Group for a Commercial License. Any modification to the original Material, or any document that contains any portion of the Material shall constitute a derivative work. Anyone may create such derivative works and shall retain all right, title and interest in the changes or additions it makes to the Material, but nothing herein shall be deemed to transfer any right, title or interest in the Material. Furthermore, any derivative work shall always fully acknowledge the right, title and interest of The Open Group in the original Material (together with any contributor acknowledgements), and shall not claim or imply that any derivative work is the official Material. For the avoidance of doubt, creating a derivative work for commercial use shall constitute commercial use of the Material. SOA Governance
What You Will Learn What SOA governance is How it relates to other governance structures in the business What high-level governance structures and processes to be put into place SOA Governance
Agenda SOA Governance in the Enterprise The SOA Governance Reference Model (SGRM) The SOA Governance Vitality Method (SGVM) Conclusions Illustrated through the application of SOA at an example company, DDB Group SOA Governance
The Importance of SOA Governance Governance is a means for establishing and enforcing how people and solutions work together to achieve organizational objectives SOA Governance provides the framework for planning, developing, deploying and managing the SOA solution Benefits: Ensure alignment Establish controls Reduce cost over time Mitigate risks SOA Governance
Governance in the Enterprise SOA Governance Extends IT and EA governance to ensure that the benefits that SOA extols are met EA Governance Business Governance IT Governance Supports SOA Governance Extends Aligns SOA Governance
Summary of The DDB Group Dispatch management processing applications to be re-written and sunset Interface with external logistics company systems GLOBALLY Using SOA Using MIMOSA and MESA History Formed in 1882 Success due to:- Quality of products Patented Processes Global growth by acquisition of similar companies Semi-autonomous operation The Business Challenge United front to customer Establish global branding Reduce administrative overhead Preserve specialist production processes Rationalization of post production processes Current Status Produces hi-tech drill bits, cutters, routers, grinders and millers Customers are manufactures, users and spares wholesalers Preferred supplier to major machine tool manufacturers Products only manufactured against verified orders Rationalized order and production management Rationalized financial control SOA Governance
DDB Group - migration step 1 Traditional Ordering Online Ordering Order Management Production Management Financial Control Production Facility Group Dispatch Management Production Facility Production Facility Production Facility Dispatch Management Possible re-use Dispatch Management Dispatch Management Dispatch Management International (logistics providers) Intercontinental (air freight agents) National (van fleets) SOA Governance
SOA Governance People Roles & Responsibilities Organizational structure Processes Governing processes Governed processes Technology Infrastructure Tools SOA Governance
SOA Governance Reference Model Guiding Principles Roles and Responsibilities SOA Processes Governing Governed Process artifacts Technology Guiding Principles Governing Processes Governed SOA Processes Artifacts Roles and Responsi-bilities Technology SOA Governance
SOA Governance Framework Adaptable and extensible generic reference model for SOA Governance Method to create and keep Governance regimen vital Division between SOA Governance and SOA Management SOA Governance
DDB Group Assumption: Mid-size manufacturing company, DDB Group already has Business, IT, and EA Governance structures Needs to define Governing, Governed, and Vitality processes Goals: Centralize dispatch processing Duplication reduction Enable outsourcing Participation in global supply chain Comply with MIMOSA and MESA SOA Governance
Key SOA Governance Guiding Principles Conformance to the organization’s: Business governance Enterprise architecture Adherence to the MESA and Open Group SOA Reference Architecture Governance funding model Guiding principles are adapted to the organization and assist in prioritization and decision making for SOA and SOA Governance All of these could apply To DDB Group Plus: Duplication reduction Enabling Outsourcing Support MIMOSA and MESA SOA Governance
SOA Governance Roles & Responsibilities Outsourced Logistics Company DDB Group process Impacts these Roles And Boards SOA Governance
SOA Governing Processes Compliance - provides the mechanism for review and approval/rejects against the criteria established Dispensation - allows for appeals of noncompliance to established processes Communication - educates, supports and communicates SOA governance across the organization Compliance Dispensation Communication SOA Governance
SOA Governing Processes – DDB enforce reduction in duplication process Keep a registry of available services Developers to check for existing services that meet requirements If a new service is identified, submit ‘new service request’ to registry Governance board works funding out for service owners Signoff from Governance Board before new services are developed Registry record for new services granted has Board Signoff record Compliance Dispensation Communication Petition Governance Board for exception to redevelop service Inform developers of new services and requirement for signoff for new services SOA Governance
SOA Governing Processes – DDB enable outsourcing No static service invocations, all invocations must obtain service via service registry Keep a registry of available dispatching, order and logistics services Processes look up services to be used for dispatch, order processing and logistics Signoff from Governance Board before new services and processes are deployed Compliance Dispensation Communication Petition Governance Board for exception to invoke service directly Inform developers of new requirement for looking up all services and signoff for new services before deployment SOA Governance
SOA Governing Processes – DDB enforce MIMOSA/MESA compliance Signoff from Governance Board before new services are developed to ensure appropriate compliance with MIMOSA protocols Execute MIMOSA compliance testing on new services and service interactions Registry record for new services granted has Governance Board MIMOSA Compliance record Compliance Dispensation Communication Petition Governance Board for exception to not comply with MIMOSA Inform developers of requirement for compliance with MIMOSA and signoff SOA Governance
SOA Governed Processes Govern DDB Group Service Identification Process Service Planning and Implementation Registry requirement SOA Governance Functional View Detailed View SOA Governance
SOA Governance Artifacts and Technology Process Artifacts Appeal record Exception record Dispensation record Compliance record Communication Plan A SOA Governance Technology Storage and access capability Policy enforcement Monitoring Management Workflow DDB Group would need these to make sure all services in registry have been approved by the Governance Board for: Uniqueness, Service Lookup, MIMOSA Compliance SOA Governance
SOA Governance Vitality Method If there are more than 10% Policy Exceptions the policy should be reexamined (uniqueness, MIMOSA, service lookup) DDB Group monitors that all service records in registry have approval records SOA Governance
DDB Group 2 Years Later The DDB Group SOA governance regimen has been implemented based upon the adoption of the outsourced logistics services New organization-wide SOA governance board interacts with the business, IT, EA Governance Boards DDB’s Service Portfolio Management includes the business services for the outsourced dispatch management processes DDB Group is engaging successfully internationally, expanding business opportunities Tracking, reporting and analysis methods have been developed for SOA governance metrics SOA Governance
What You Have Learned What SOA governance is How it relates to other governance structures in the business What high-level governance structures and processes need to be put into place SOA Governance
Conclusions Governance is the means of ensuring that enterprise operation aligns with business goals Good governance is crucial if SOA is to realise its business potential The SOA Governance Reference Model describes processes, organizational structures, and enabling technologies for SOA The SOA Governance Vitality Method helps you customize the processes, structures and technologies for your enterprise – and update them over time to keep them relevant Good SOA governance enforces continued compliance with an enterprise SOA Reference Architecture SOA Governance
Questions please ? SOA Governance
Backup Slides SOA Governance
Sample DDB Group Metric Analysis Metric: Percentage of services in registry with Reuse Exception records attached Definition: Service Records have either SOA Governance Board approval or Reuse exception records attached. This metric tests the efficacy of the governance control point for ensuring unique services are developed and that exception granting bar is high. Goal: After establishment of a six-month core foundation services, expect this percentage to continually decrease to less than 10% Vitality: Further analyze the causes of reuse exceptions. Make and implement changes to the governance control point for service reuse. SOA Governance
Sample Trouble Ticket Metric Analysis Metric: Percentage of development trouble tickets caused by inadequate design Definition: Development trouble tickets are assigned a root cause with “inadequate design” being one of the root causes. To test the efficacy of the governance control point for quality service design, measure the percentage of all tickets caused by inadequate design. Goal: After establishment of a six-month baseline, expect this percentage to continually decrease Vitality: Further analyze the causes of poor design and inadequate requirements. Make and implement changes to the governance control point for quality service design. SOA Governance