Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure DevOps for Government in MOC

PublishHillary Armstrong Modified over 6 years ago

Similar presentations

Presentation on theme: "Secure DevOps for Government in MOC"— Presentation transcript:

1 Secure DevOps for Government in MOC
Hanscom milCloud Secure DevOps for Government in MOC

2 DoD Software “Development”
More than $32B per year on IT Systems Test, Evaluation & Certification Process $2.2B over budget $948M over budget $2.4B over budget $808M over budget Official Acquisition Process

3 DoD & Cloud Mixed messages Slow adoption Evolving policy
Mapping old policies & process to new world Data center vs. cloud Mostly in IaaS phase Paperwork Process

4 What is Hanscom milCloud (HmC)
HmC delivers cloud and security orchestration… simultaneously across multiple public & private clouds… with Automation and Validation… and DevOps across the your favorite tools and the entire lifecycle. It provides self service access to… automated provisioning of applications, configs & data, source code builds, and ElasticTest™, for functional & performance tests, security scans, and network defense. Along with… workflow orchestration, a whole new level of system design discipline, and access to shared library of assets for true collaboration.

5 HmC & MOC Integration Windows server & desktop USAF Challenges
Need for security stack Remote access restricted No Windows (AF loves Windows!) Use Government issues credentials Accreditation Data distribution controls Get things done HmC Implementation AWS VPC-like infrastructure Browser based Remote access to console Windows server & desktop PKI support for auth-n Umbrella accreditation Impact Level governance All other CONS3RT capabilities, inc. ElasticTest™ for functional, performance and security validation

6 Standard OpenStack Project
Flat network No firewall, NAT, etc. Limited logging Protection limited to security groups Separation of activities requires individual OpenStack projects public router user-network user A VM user B VM

7 CONS3RT Deployed Open Stack Project
Each cloudspace has an Open Stack router Each user network has perimeter system to provide firewall logging nat other network services as needed CONS3RT creates and configures: networks nat instance firewall rules

8 Powered by: www.cons3rt.com
Peter Walsh (617)

Download ppt "Secure DevOps for Government in MOC"

Similar presentations

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
If you knew what I know or CloudWave - Improving services in the Cloud through collaborative adaptation Eliot Salant IBM Haifa Research.

If you knew what I know or CloudWave - Improving services in the Cloud through collaborative adaptation Eliot Salant IBM Haifa Research.
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
DevOps: Why you should care Bruce Vincent Senior Technology Strategist and IT Architect.

DevOps: Why you should care Bruce Vincent Senior Technology Strategist and IT Architect.
1 Security on OpenStack 11/7/2013 Brian Chong – Global Technology Strategist.

1 Security on OpenStack 11/7/2013 Brian Chong – Global Technology Strategist.
BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.

BETA!BETA! Building a secure private cloud on Microsoft technologies Private cloud security concerns Security & compliance in a Microsoft private cloud.
CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,

CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,
Cloud Attributes Business Challenges Influence Your IT Solutions Business to IT Conversation Microsoft is Changing too Supporting System Center In House.

Cloud Attributes Business Challenges Influence Your IT Solutions Business to IT Conversation Microsoft is Changing too Supporting System Center In House.
Cloud Computing in Large Scale Projects George Bourmas Sales Consulting Manager Database & Options.

Cloud Computing in Large Scale Projects George Bourmas Sales Consulting Manager Database & Options.
Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.

Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.
Achieving Agility with WSO2 App Factory S. Uthaiyashankar Director, Cloud Solutions WSO2 Inc. Dimuthu Leelarathne Software Architect WSO2 Inc.

Achieving Agility with WSO2 App Factory S. Uthaiyashankar Director, Cloud Solutions WSO2 Inc. Dimuthu Leelarathne Software Architect WSO2 Inc.
Successful Deployment and Solid Management … Close Relatives Tim Sinclair, General Manager, Windows Enterprise Management.

Successful Deployment and Solid Management … Close Relatives Tim Sinclair, General Manager, Windows Enterprise Management.
1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!

1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!
UI and Data Entry UI and Data Entry Front-End Business Logic Mid-Tier Data Store Back-End.

UI and Data Entry UI and Data Entry Front-End Business Logic Mid-Tier Data Store Back-End.
2 3 4 5 6 7 8 9 Light showcase: System Center 2012 SP1- Operations Manager Medium showcase: System Center 2012 SP1- Operations Manager Deep showcase:

Light showcase: System Center 2012 SP1- Operations Manager Medium showcase: System Center 2012 SP1- Operations Manager Deep showcase:
MICROSOFT CONFIDENTIAL – INTERNAL ONLY

MICROSOFT CONFIDENTIAL – INTERNAL ONLY
From Virtualization Management to Private Cloud with SCVMM 2012 Dan Stolts Sr. IT Pro Evangelist Microsoft Corporation

From Virtualization Management to Private Cloud with SCVMM 2012 Dan Stolts Sr. IT Pro Evangelist Microsoft Corporation
Maintaining Network Health. Active Directory Certificate Services Public Key Infrastructure (PKI) Provides assurance that you are communicating with the.

Maintaining Network Health. Active Directory Certificate Services Public Key Infrastructure (PKI) Provides assurance that you are communicating with the.
Identity Solution in Baltic Theory and Practice Viktors Kozlovs Infrastructure Consultant Microsoft Latvia.

Identity Solution in Baltic Theory and Practice Viktors Kozlovs Infrastructure Consultant Microsoft Latvia.

Similar presentations

Ads by Google