Presentation is loading. Please wait.

Presentation is loading. Please wait.

AWS Boulder - Denver Meetup – January 2017

Published byLoren Hunt Modified over 6 years ago

Similar presentations

Presentation on theme: "AWS Boulder - Denver Meetup – January 2017"— Presentation transcript:

1 AWS Boulder - Denver Meetup – January 2017
11/24/2018 IT Governance with AWS AWS Boulder - Denver Meetup – January 2017 Mike Reese, Solution Architect

2 IT Governance (ITG) “The processes that ensure the effective and efficient use of IT in enabling an organization to achieve it’s goals” – Gartner IT Glossary

3 Why it’s important Risk Management
Aligning IT goals with those of the business Making IT a key element of the business strategy Aid in compliance Optimize IT operations Performance management Elevating IT above a cost center Improved communication across business units

4 What it entails Mapping IT initiatives to business objectives
Does the project support the goals of the business? Implementing best practices Facilitating the alignment of priorities between IT and business units Effective resource management

5 Governance Models Centralized vs Local vs Distributed
GOOD BEST There’s no one, perfect model Understand the operating model of the business Determine which processes are core to the business Consider the business culture BETTER “centralize for efficiency, decentralize for effectiveness” Michael Pilkington Former CIO of Euroclear

6 Governance in AWS Understand the AWS Shared Responsibility Model
11/24/2018 Governance in AWS Understand the AWS Shared Responsibility Model Understand the organization’s compliance requirements Establish a set of controls to meet compliance objectives Implement policies and procedures to validate compliance Continually monitor the effectiveness of the compliance controls

7 AWS Governance Best Practices
Access control and IAM configuration Standard users and or groups Cross-account and/or federated roles EC2 instance roles S3 and shared resource roles Security requirements

8 AWS Governance Best Practices
Amazon VPC configuration and networking The number of VPCs per AWS account The subnet structure within a VPC The use of multiple availability zones (Azs) Connectivity options: internet gateways, virtual private gateways, routing

9 AWS Governance Best Practices
Resource tagging Define common keys and expected values across all accounts Enforce tagging through auditing and automation Implement automatic tagging via an automated deployment strategy

10 AWS Governance Best Practices
AMI creation and management Preconfigure for host-based security software and OS hardening Avoid including customized software and configurations that might change frequently

11 AWS Governance Best Practices
AWS CloudTrail AWS CloudWatch Centralized Logging Notifications AWS Config

12 AWS Governance Best Practices
Development of a shared services VPC

13

Download ppt "AWS Boulder - Denver Meetup – January 2017"

Similar presentations

1 NETE4631 Cloud deployment models and migration Lecture Notes #4.

1 NETE4631 Cloud deployment models and migration Lecture Notes #4.
Infrastructure as a Service (IaaS) Amazon EC2

Infrastructure as a Service (IaaS) Amazon EC2
Cloud Computing 1100101 (101).

Cloud Computing (101).
Identity and Access Management Business Ready Security Solutions.

Identity and Access Management Business Ready Security Solutions.
Tim Vander Kooi Systems

Tim Vander Kooi Systems
Research Business Technology Pfizer Enterprise Elastic HPC Mike Miller Pfizer Research Business Technology May 18 th Prism Meeting Stockholm Sweden.

Research Business Technology Pfizer Enterprise Elastic HPC Mike Miller Pfizer Research Business Technology May 18 th Prism Meeting Stockholm Sweden.
Cisco Live 2014 4/23/2017 Enabling a Hybrid Cloud Extension between Enterprises and AWS with Cisco CSR 1000V and LISP http://cisco.com/go/cloudrouter.

Cisco Live /23/2017 Enabling a Hybrid Cloud Extension between Enterprises and AWS with Cisco CSR 1000V and LISP
1 The Fast(est) Path to Building a Private/Hybrid Cloud October 25th, 2011 Paul Mourani RightScale.

1 The Fast(est) Path to Building a Private/Hybrid Cloud October 25th, 2011 Paul Mourani RightScale.
Be Microsoft’s first and best customer Enabling world-class and predictable customer, client, and partner experience Protecting Microsoft’s physical and.

Be Microsoft’s first and best customer Enabling world-class and predictable customer, client, and partner experience Protecting Microsoft’s physical and.
Chapter 3 Pre-Incident Preparation Spring 2016 - Incident Response & Computer Forensics.

Chapter 3 Pre-Incident Preparation Spring Incident Response & Computer Forensics.
Launch Amazon Instance. Amazon EC2 Amazon Elastic Compute Cloud (Amazon EC2) provides resizable computing capacity in the Amazon Web Services (AWS) cloud.

Launch Amazon Instance. Amazon EC2 Amazon Elastic Compute Cloud (Amazon EC2) provides resizable computing capacity in the Amazon Web Services (AWS) cloud.
#SummitNow Alfresco Deployments on AWS Cost-Effective, Scalable & Secure Michael Waldrop Director, Solutions Engineering .

#SummitNow Alfresco Deployments on AWS Cost-Effective, Scalable & Secure Michael Waldrop Director, Solutions Engineering .
100% Exam Passing Guarantee & Money Back Assurance

100% Exam Passing Guarantee & Money Back Assurance
AMAZON SIMPLE CLOUD DEPLOYMENT Matt Quill Charlie Cano.

AMAZON SIMPLE CLOUD DEPLOYMENT Matt Quill Charlie Cano.
S3 Lifecycle Policies to Glacier

S3 Lifecycle Policies to Glacier
Deploying Docker Datacenter on AWS © 2016, Amazon Web Services, Inc. or its affiliates. All rights reserved.

Deploying Docker Datacenter on AWS © 2016, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Issues in Cloud Computing. Agenda Issues in Inter-cloud, environments  QoS, Monitoirng Load balancing  Dynamic configuration  Resource optimization.

Issues in Cloud Computing. Agenda Issues in Inter-cloud, environments  QoS, Monitoirng Load balancing  Dynamic configuration  Resource optimization.
Avtec Inc Virtualization - Securely Moving to the Cloud.

Avtec Inc Virtualization - Securely Moving to the Cloud.
Architecting Enterprise Workloads on AWS Mike Pfeiffer.

Architecting Enterprise Workloads on AWS Mike Pfeiffer.
MODULE #8 – Amazon Machine Image [AMI] AWS Administration SUVEN IT  How to create an AWS account ?  How to manage an AWS Console?  Navigating the AWS.

MODULE #8 – Amazon Machine Image [AMI] AWS Administration SUVEN IT  How to create an AWS account ?  How to manage an AWS Console?  Navigating the AWS.

Similar presentations

Ads by Google