Cisco Cloud Strategy

Quick Start Steps

Hybrid Cloud

Presenter Dmitry DukhanRole Director, Hybrid Cloud Sales and Services.Sep 2014Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsLegacy cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.

Through the Cloud Consumption Assessment Service is a software-based service that automates the discovery of Cloud Service Providers (CSP) that are being accessed by the employees across their entire organization. By placing data collection tools in the customer network, Cisco can gather CSP usage data across an entire organization and identify redundant cloud services, potential risks, cloud usage trends, and individuals or groups using cloud services.

The service utilizes data collection tools that capture NetFlow traffic from selected network routers and switches to automate the discovery of CSPs being accessed by an organization during 1-4 weeks. The data collected will identify all CSPs and their category, the risk profile of each CSP based on industry benchmarking, service usage, and allow tracking of cloud usage to individuals or groups.

The service typically discovers 5-10 times more cloud services than were previously known by IT.

2AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsLegacy cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




3

Cloud ServicesPrivateCloudCloud concepts

Traditional IT

Automation and Orchestration

Public CloudCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsLegacy cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




5

IT as a ServiceLoBs

PrivateCloud

Automation and OrchestrationPublic CloudFrom builder to brokerToday IT is under fire:

70-80% operationsProliferation of Public cloudComplexity of technologyShrinking budgets

Public CloudCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsLegacy cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




7..host an application..share documents

with customers.

..collaborate differentlyPublic Cloud ServicesOn Premise: Applications & DC/Private Cloud

We want toKnown Unknown5-10XMoreBusiness Demands Leading to Shadow IT, Lack of Visibility Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Rob Lloyd @ Live Milan: IT organizations spend about 70% of time and money on operationsAs a result of this focus on operations IT organizations couldnt provide services that are so easy to consume, so quickly provisioned, so elastic as the Public Cloud didNo surprise that Lines of Business started to use Public Cloud (most of the times shortcutting IT) Typically Shadow IT phenomenon today is about 5-10X bigger than IT believes This is not our vision but something that happens NOW in most our customers environmentsEven though our cloud offering enlarged significantly (Stronger private cloud offer, ICF, etc) we believe we should start with helping customers gain visibility: Cloud Consumption part 1: Assesment!

In fact, a recent survey of 165 organizations representing over $47 billion in IT spending conducted by advisory firm CEB CIOs estimate shadow IT at 40 percent beyond the official IT budget. CIOs globally estimate that the "shadow" IT spend in other areas of the business represents another 20 percent on top of the official IT budget. However, the real figure is closer to 40 percent.

We are also seeing that in some customers, cloud services are beginning to eclipse on premise hosted applications.This shows how fast oversight of cloud usage is moving away from IT.

Source: http://news.idg.no/cw/art.cfm?id=6DD95486-B0A8-49A2-A1137C1EF715C7D0

8 Gaining Complete Visibility of Public Cloud with Cisco Cloud Consumption Services BoxWindows AzureITerremark

Cisco Cloud Consumption Web PortalCisco Cloud Usage Collector

Salesforce.comWebexForce.com

SaaSPaaSIaaSCustomerNetworkJourney Begins By Gaining Visibility of Your Cloud Usage5-10XMore Discovered Cloud Services Unauthorized CSP Authorized CSPCloud BenchmarkingConsumption AnalyticsSpend DataVendor Profile

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




9Cloud Consumption AssessmentGain Visibility of Public Cloud Usage, Costs & Risk

Risk ProfileFinancial AnalysisCloud Services ManagementCloud Visibility

Initial cloud risk profile

Risk ranking for each Cloud Service ProviderAnalysis by categoryRecommendations for risk mitigation

Categorized list of cloud vendors & detailed usage

Vendor categorizationAddition of new vendors from discovered services

Initial assessment of a cloud service management processesStakeholder interviews & initial governance maturity assessment Cloud management workshop to provide best practices for managing CSPs Identifies financial impact of cloud consumption Overall cloud spendingPotential cost savings strategies Highlight financial & brand exposure Outlines multiple cost avoidance scenariosCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.The Cisco Cloud Consumption Optimization Service is an annual subscription service that will help you become more agile by improving your IT services management practices.

Over one year, the service will provide you:Visibility into an organizations cloud usage including a list of cloud vendors being accessed by an organization and detailed usage information about each vendor. Always on access to the customizable cloud consumption dashboard and quarterly visibility review so you can understand how your cloud usage evolves and trends over time. Detailed financial analysis of an organizations cloud consumption and quarterly financial review and cost trendingCloud risk profile and quarterly risk reviews.Help you establish full lifecycle management processes for cloud service providers.

10AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsLegacy CloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




11UCS Integration with Redhat

UCSNexusNexusCRSASRISRUnifiedManagement

Cloud EnablementServicesUnified Data CenterCloud IntelligentNetwork

SecureXCloudConnectorsNetworkManagement

Lew TuckerCloud CTOOpenStackVice Chair

UDCSvcsCINAvoid Vendor Lock In180+ development partnersHighest adoption of any cloud O.S.Most elastic way to implement cloudCisco Validated DesignTested, controlled, bugs fixedOpenStack Requires followership as a full time jobCisco carefully assesses all updates to OpenStack, regardless of their source, prior to deployment.

Elastic Approach to ComputingAutomationOrchestrationPolicySecurityMulti Cloud Multi Tenant Portal

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.UCS: Automation with OpenStackIntegrated, Policy-Based Infrastructure Management

Configuration AutomationOptimized workload placementOpenStack Deployment Automation 1Virtual & Bare metal services (BMaaS Integration) 234Single touch deployment across 1000s nodes

5Dense storage server (storage nodes)Dense compute server (compute nodes)New UCS Product Lines for scale-out & OpenStack Platforms HYPERVISORPhysical Server Provisioning (BMaaS)Virtual Server ProvisioningCisco Services Solutions for OpenStack

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.13UCS Infrastructure for OpenStack (UCSo)+ Policy + ACI

Starter KitOpenStack CVD300 500 VMsEasy Install (Foreman)VPDC

AdvancedUCS C220, 240, M3, FI, N9k (Standalone)/N7k; Netapp/Colussa**, CSR, N1K, VPX, ASAv

Upto Thousands of VMsSingle Portal IaaS & PaasVPDC, FWaaS, LBaaS, VPNaaS, BMaaS

Application Centric Infrastructure Policy ManagementTight Integration Between ACI & Application Containers**Advanced (ACI)Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Application Policy Management Requires Automation

Application Policy Management with ACI

Automated Proactive ActionsPredictive Analytical Models

APIC

(minutes per application)Converged Network, Compute and StorageApplication CentricAdaptive SecuritySecurity policyLoad Balancing policyNetwork policyExisting Application Policy Management without ACIStorage policy

Virtualization policy(6 weeks per application)

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.COPC ServiceCOPC OpenStackHigh AvailabilityDynamic CapacityVirtualized NetworkingDistributed StorageEnterprise AuthEnhanced UI 24/7 Proactive SupportMonitoringCapacity PlanningLive SW Updates

Hardware, Networking & Data Center Agnostic Cisco OpenStack Private Cloud Infrastructure as a ServiceCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Consumption Supported Private Cloud

UCSNexusNexusCRSASRISRUnifiedManagement

Cloud EnablementServicesUnified Data CenterCloud IntelligentNetwork

SecureXCloudConnectors

Utility Model Enabled

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsLegacy CloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




18Cisco Data Center and Cloud Management

UCS DIRECTOR Unified infrastructure Automation for compute, storage, network physical & virtual Heterogeneous & Integrated InfrastructureMultiple UCS domains

UCS CENTRAL

Single UCS domainUCS MANAGER

APIC

Manages Application Centric Infrastructure (ACI) and Nexus fabric PRIME SERVICE CATALOG Cloud management portal private, public, hybrid cloudCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.19ONE Enterprise Cloud SuiteSPoG (Physical / Virtual / Hybrid / HyperScale) Self-Service PortalPSC Integrated Infrastructure ManagementUCS-DMulti-Vendor Compute, Network, Storage, and Virtualization Cloud Operations (3rd Party Billing, Assurance, Resource Mgmt)

Hybrid CapabilitiesICF-B Virtual Application Container Services COPC or UCSO

#C97-733661-00 2015 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialPrime Assurance) As customer mature beyond basic virtual machine provisioning, Cisco Intelligent Automation for Cloud (Cisco IAC) delivers the critical foundational layer for deploying and managing cloud-based computing in a holistic and unified manner.

Cisco IAC provides the essential automated management and orchestration that enables organizations to control and manage cloud-based services transparently throughout their lifecycle. Cisco IAC can cover a diverse range of cloud deployments and is a flexible solution that can scale from initial cloud deployments to large-scale enterprise-wide initiatives to deliver maximum value to customers.

Cisco IAC is the point from which organizations can burst into hybrid cloud computing as well as multi-hypervisor platforms. Solution accelerators are community-based solutions that extend the management capability of Cisco IAC. The most popular is the multi-cloud solution accelerator which allows Cisco IAC to manage vCloud Director, Amazon EC2 and OpenStack.

Cisco UCS Director has begun the integration process with Cisco IAC to deliver the ability to recognize UCS Director as a node on the multi-cloud accelerator and provision virtual machines just as managing Amazon EC2. Additionally, customers can provision physical storage into their existing virtual data centers and associate the file store as appropriate.

Via IAC, youll be able to select (and allow users to select) capabilities that are delivered through UCS Director with the single touch in IAC. IAC requests an asset from UCS Director and UCS Director does the configuration of, say, a FlexPod

World-class service portal and service catalogue that creates a standardized set of services to the end-users

Integrates cloud connectors to integrate with public/hybrid clouds and the Nexus 1000V InterCloud to manage the overall solution holistically.

Integrate via API with other management platforms so you can leverage other system management that you have

20AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




21Public Cloud: Giants and Intercloud partnersHybrid

EconomicsSpeedScaleDataSovereigntySecurityControl

ChoiceEasy

Cisco Intercloud Fabric SoftwareCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Striking an ideal balanceAllow for adjusting and adapting to the environment, network/application needs and demands, in order to keep in balance22AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco InterCloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




23

Providing Solutions to Public and PartnerCisco Confidential

Cisco Intercloud Fabric

DC/PrivateClouds3rd Party PublicCloudsPowered Partner CloudsSaaS

OI

OpenBlock

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Before I go into the Intercloud Fabric Software Solution, let me first level-set on the delivery options that are available to our customers todayThe options available to our customers:On Premise Infrastructure or Private Cloud (most of which are just Virtualized Workloads today ) Examples - Vblock, FlexpodPublic Cloud Example AMZN, Azure Soon to be Cisco Powered and CCS as wellHosted Example Sunguard, Rackspace

Customers are beginning to understand the differentiated benefits across all three options and based on the analyst data are now looking for ways to unlock the value in each option and do so with the least friction.

24

Cisco Intercloud Fabric

Customers

Cisco Intercloud Fabric Software OPENCHOICE3rd Party Cloud Providers

and

Cisco Powered Services

End-to-end SecurityUnified ManagementComplianceNo Vendor Lock-inAny Hypervisor to any ProviderHeterogeneous InfrastructureHybrid Cloud

OpenEcosystemOIPT

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.25Security Considerations: SummaryData in Transit b/w Enterprise DC and Public SP Cloud Key Management, Data Encryption and Hashing Inter VM Security in the Public SP Cloud Intercloud DriverKey Management, Data Encryption and Hashing Layer 3 Security FW via IC CSRLayer 2 Security FW via IC VSGEncryption algorithm AES-128-GCM, AES-128-CBC, AES-256-GCM (Suite B), AES-256-CBCHashing algorithm SHA-1, SHA-256, SHA-384All data in motion is cryptographically isolated and encryptedEnterprise to Cloud & VM to VM within CloudEnterprise owns the keys

26

PROVIDER CLOUDSENTERPRISE CLOUDSVMIntercloud ExtenderOtherTenants

VMMVM with ICDIntercloud Fabric DirectorVM Intercloud SwitchS2S Data TunnelAccess Data TunnelIntercloud Fabric Secure ExtenderCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Cisco Intercloud Fabric OverviewChoice of Provider Clouds with Consistency, Control & ComplianceCustomer DC or CloudProvider CloudsvSphere Hyper-V

Openstack/KVMCloudStack/Xen

Intercloud Fabric for BusinessEnd User & IT Admin PortalsSecure ExtensionNetwork, Compute & Storage

Azure APIsEC2 APIs

Cloud Providers& Cisco Cloud ServicesIntercloud FabricProvider Platform

BrokeredServicesCisco Confidential# 2014 Cisco and/or its affiliates. All rights reserved.Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Cisco Intercloud Fabric offers the following benefits for customers :Choice : Choice of Provider Clouds Cisco Powered, Cisco Cloud Services as well as Public Clouds like Amazon and Azure; Choice to move workloads from Any Hypervisor environment on-premise to any provider environmentConsistency : Intercloud Fabric offers consistent networking and security policies whether workloads are placed on-premise or off-premise. Customers dont have to change IP addresses or VLANs when moving workloads to a Provider cloud.Control : Business customers have control over which workloads get placed in which cloud (on-prem private cloud or a particular provider cloud)Compliance : Business customers can ensure compliance with policy based workload placement and end to end security capabilities offered by Intercloud Fabric

Customers do NOT need to deploy Private Clouds (on-prem) to leverage hybrid cloud services. You only need to have a virtualized data center on the enterprise/commercial side.

27AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco InterCloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




28

Connecting all clouds: Cisco Intercloud

Enterprise WorkloadsNative CloudApplicationsBig Data &AnalyticsCollaboration & VideoHCSIaaS

PaaS

MerakiAnalyticsWebEx

SecurityIOE AppsHANA aaSIaaSPaaSNFV

vDesktop aaS

vDesktop aaS

MicrosoftSuite aaSVMDC RoadmapOpen Stack, ACI, NFV, CIAC

Cisco Powered PartnerClouds

CiscoCloud Services

Enterprise PrivateCloud

publicclouds

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.A transparent Run Time sharing workloadsApplication freedom

PublicPrivateCo-Lo

SaaS

HybridIntegration Bus

PartnersBig DataSaaS AppsCustomersSocialDevicesInnovation

API SDKAPIJava/TomCat/.NetDockerBig DataMobil WebAPIAPI

APICommunication Bus

TelcoReal Time NetworkSDNWireless/CellularIndustrialHPCSingle Application Run TimeCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.

Cisco Confidential

DC/PrivateClouds3rd Party PublicCloudsPowered Partner CloudsSaaS

76% IT will act as a broker of cloud services across internal and external clouds for LOBs(Cisco-Intel Cloud Study 2013)49% Configured hybrid clouds with private, hosted and public models (451 Research 2014 Survey of 2002 customers)

OpenBlock

OI

Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Before I go into the Intercloud Fabric Software Solution, let me first level-set on the delivery options that are available to our customers todayThe options available to our customers:On Premise Infrastructure or Private Cloud (most of which are just Virtualized Workloads today ) Examples - Vblock, FlexpodPublic Cloud Example AMZN, Azure Soon to be Cisco Powered and CCS as wellHosted Example Sunguard, Rackspace


31

Cisco Confidential

DC/PrivateClouds3rd Party PublicCloudsPowered Partner CloudsSaaS)

OI

76% IT will act as a broker of cloud services across internal and external clouds for LOBs(Cisco-Intel Cloud Study 2013)49% Configured hybrid clouds with private, hosted and public models (451 Research 2014 Survey of 2002 customers)

OpenBlock

Unlock Value for our Customers in the cloudServices to build, Private Cloud, Hybrid Cloud, and Cloud BurstingThe Challenge for Cisco Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Before I go into the Intercloud Fabric Software Solution, let me first level-set on the delivery options that are available to our customers todayThe options available to our customers:On Premise Infrastructure or Private Cloud (most of which are just Virtualized Workloads today ) Examples - Vblock, FlexpodPublic Cloud Example AMZN, Azure Soon to be Cisco Powered and CCS as wellHosted Example Sunguard, Rackspace


32

OpenStack DefinedCisco On OpenStack

Private Cloud on OpenStackPrivate Cloud Services for OpenStackHybrid Cloud on Intercloud for BusinessHybrid Cloud Services for Intercloud for BusinessPublic Cloud on OpenStackPublic Cloud Services for OpenStack and Intercloud Fabric for BusinessCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.AgendaCloud concepts and taxonomyIT from builder to brokerVisibility (through the clouds)Private cloudsPublic cloudsGluing it all together Cisco Intercloud Fabric for BusinessThe Cisco IntercloudNext stepsCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Today, many organizations are flying blind under the radar in relation to their cloud usage and are only aware of the CSPs that have been authorized by their IT organization.




34

Cisco Confidential

Cisco ConfidentialNext StepsCloud Consumption AssessmentDomain 10 Assessment InterCloud DemoUCS infrastructure for Openstack DemoEngage with Cisco, here and locally to create a comprehensive strategyMore Information: [email protected],[email protected], [email protected]: Your Account TeamCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Thank you.Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.INTERESTING USE CASESCisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.Cisco Confidential# 2013-2014 Cisco and/or its affiliates. All rights reserved.VM in public cloud booting off of Private Cloud InstanceCisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.Load Balancing VIP from Private to PublicVIP in PrivateServers in private behind VIPServers in Public (but through the private interlink)

Load Balance all behind VIP as if all in same DC.Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.Puppet server controlling puppet in cloud separated by L3Heat with Cielometer and spinning VMs between clouds requires L2 or L3 connectivity for control. But if no floating IP then need L2 Tunnel and Dual defaults.Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.Data CollectionCisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.

How Cloud Consumption Works

NetFlow v5/v9 Egress Routers

DB (PII)Web Portal to Analyze Cloud UsageCollector SoftwareAssessment Software & AnalyticsMulti-tenant Cloud-basedAssessment ServerCustomer Supplied Hardware/VMHTTPSHTTPSUDP

CUSTOMER

Flow RecordInterface idSource IPDestination IPProtocolSource UDP/TCP PortDestination UDP/TCP PortToSData Amount

Destination IPProtocolPortNumber of unique Source IPsData AmountDBnDB2DB1Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.

Web Proxy Architecture: Cloud Consumption ServicesCloud Consumption ServerHighly Secure & Controlled ServerHTTPSXPersonally Identifiable Information (PII) in log files, eg. source IPsXPII redaction & anonymization utilityWeb ProxyCollector ServerCloud Consumption CollectorOKPII (source IPs) replaced with tokens in log filesFTP

CUSTOMER

Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.Examples of Analyses DeliveredCisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.Total Number of CSPsTotal Number of Corporate CSPsCloud Usage: Total CSPs and Service TypeSplit based on Corporate vs Non-Corporate CSPs. Observed with customers and adheres to the 80:20 ruleIaaS CSPs majorly discovered under Corporate category

Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.45Corporate CSPs Traffic (GB)Cloud Usage: Traffic and Service TypeThe split based on Overall traffic shows IaaS and SaaS being majorly leveraged This is again typical and observed across customer engagements

Overall CSPs Traffic (GB)Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.46 Overall CSP CategoriesCorporate CSP CategoriesCloud Usage: CategoryCDN and Office productivity take the major overall CSP share. (Akamai, Kaltura, Google and Microsoft)Office Productivity, Compute and Cloud storage: CSPs referenced under this category needs further review leveraging Scansafe data

Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.47Assessing Risk of Cloud Consumption

Risk = f(CSP Profile, Relative Usage, Relative Business Criticality, Authorization)M Monitor ; I Investigate ; A - Assess

Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.48Example: Financial ModelDesigned to show what-if dynamic financial model

Annual Spend

$786K$713K

Top 10TotalCisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.AS deliveredPartner deliveredAS involvement grew asXYZ team led the engagement and deliveredFirst phase of the XYZ solution deliveredXYZ opportunityAS Revenue $KAS Revenue $KProduct Revenue $MAS Revenue $KExpected Product Revenue $MCustomer ChallengeImpact on CustomerSolutionsPartner Sat: 4.5/5.0Heavily restricted internet/cloud service usage for employees to avoid riskEmployees pushing for additional cloud services to improve productivityPartnered with Cisco Services for Cloud Consumption Assessment to understand their current cloud usage, cloud costs and risk, and employee needsDelivered collaboratively for OnX

Despite 90% of public internet traffic being blocked:Identified 220+ CSPs were used less than 1% were authorized by ITSpend for segment of government was nearly $200K/yr, projected over $750K across all segments Helped manage risk so they can authorize more cloud services to meet employee needs

Cisco Cloud Consumption Servicesenables us to make informed decisions to better manage our risks, costs and offer better services to taxpayers. This robust, new cloud portfolio allows us to start reaping the benefits of our cloud initiative faster. Cisco is playing a key role in guiding our staff in assessing opportunities as we execute our unique cloud strategy.

-Christian Couturier, CIO, Government of New Brunswick, CanadaCustomer Success: GNB Cloud Consumption AssessmentCisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.50PLEASE ADD SPEAKER NOTES

Content Guidelines: Utilize to highlight key/significant customer win or success.Consider how this could be a best practice for re-use across other theatres/architectures.AS deliveredPartner deliveredAS involvement grew asXYZ team led the engagement and deliveredFirst phase of the XYZ solution deliveredXYZ opportunityAS Revenue $KAS Revenue $KProduct Revenue $MAS Revenue $KExpected Product Revenue $MEstablish a cloud governance model to:

Retain control over cloud adoption and make more informed decisionsReduce risks and costs Implement stronger cloud management practices Develop an over-arching security vision to support Cloud and network expansion Improve business agility Customer ChallengeImpact: Business OutcomeSolutionsCustomer Sat: TBD in Q1FY15Repeatable Best Practice : Blended on-shore / off-shore delivery framework for greater customer engagement and impactThis engagement s [a] significant building block in our quest to becoming Lubrizols strategic partner & trusted advisor. Projects associated with and/or spring-boarding from the Assessment:Domain 10 Workshop Network Capacity Assessment iWAN Workshop Security Vision to Support the Cloud and Network ExpansionsSAP HANA Pilot- Carl DAbato: Enterprise Account Manager

A comprehensive report and read out showing cloud usage by analyzing current consumption patterns of services from public cloud providersIdentification and recommendations around Data Security, Compliance RisksExposure of confidential information that can lead to negative business impactFocus on overall cloud spending and potential cost savings strategies through detailed Financial analysis Gain better agility with improved processes to govern Cloud Service ProvidersImplement quicker ways to select and launch cloud services to meet business needsDevelop a high-level, phased roadmap to address the required cloud transformationIdentification and recommendations around compliance and risk mitigation strategiesInsight into overall cloud spending and potential cost savings & avoidance strategiesSelect and launch cloud services to effectively meet lines of business expectations

Customer Success: Lubrizol Cloud Consumption AssessmentCisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.51Customer Success: UNSW Cloud Consumption AssessmentAS deliveredPartner deliveredAS involvement grew asXYZ team led the engagement and deliveredFirst phase of the XYZ solution deliveredXYZ opportunityAS Revenue $KAS Revenue $KProduct Revenue $MAS Revenue $KExpected Product Revenue $MCustomer ChallengeImpact: Business OutcomeSolutionsCustomer Sat: 4.6/5.0

Repeatable Best-Practice : Mapping of Department/Faculty User IDs and Source IPs to track CSP usage

We can use the Risk Analysis to have follow-up discussions with stakeholders in various UNSW departments. Also, the What-If analysis based on Cloud Consumption data has potential value for our cloud strategy decision-making. - Stuart Freer: IT Operations Director

Gain comprehensive visibility and a holistic view into cloud usage for Cloud Service Providers (CSPs) by analyzing the current consumption usage patternsReduce risks and costs A comprehensive report showing cloud usage by analyzing current consumption patterns of services from public cloud service providersIdentification and recommendations around compliance and risk mitigation strategiesInsight into overall cloud spending and potential cost savings & avoidance strategies

Outlined the opportunities for hybrid cloud solution with services such as Compute and Storage serviced in-houseDetailed recommendations and best practices around risk mitigation strategiesIdentified vendor consolidation opportunities for Compute and Storage services

Cisco Confidential#2014 Cisco and/or its affiliates. All rights reserved.52

Cisco Cloud Strategy

Documents

Transcript of Cisco Cloud Strategy