Post on 27-May-2020
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
McAfee Confidentiality Language
Mike Tate
Cloud Solution Architect
McAfee. The device-to-cloud cybersecurity company.VMworld 2018 Content: Not for publication or distribution
8McAfee Confidential
Current Cloud Challenges
• Public cloud & private cloud operating in silos
• Infosec policies not aligned across clouds
• Public cloud use accelerating
• Speed of business vs. Speed of IT
• Politics
• What are standards?
VMworld 2018 Content: Not for publication or distribution
9McAfee Confidential
Private Cloud Service
• Service launched in 2014
• 6 global data centers
• 150+ unique blueprints
• 300+ image templates – Linux/Windows/macOS
• 1400+ active users
• ~7000 managed VMs
• 25,000+ VMs provisioned since June 2016
• 5 engineers
VMworld 2018 Content: Not for publication or distribution
10McAfee Confidential
“Paved Road” Solutions
• Build to functional parity between private and public clouds for the 80% case
• Common automated and secure landing zones
• Deep integration with on-prem enterprise dev tools
• Open door approach to private cloud service
VMworld 2018 Content: Not for publication or distribution
© SAIC. All rights reserved.
Steven HaasSolution Director for Cloud Integration
11
VMworld 2018 Content: Not for publication or distribution
SA IC .com
© SAIC. All rights reserved. | SAIC Communications | SAIC Proprietary - Not for External Disclosure
SAICScience Application International Corporation
• SAIC is a $4.5 billion technology integrator providing services and solutions in the technical, engineering, intelligence, and
enterprise information technology markets. SAIC’s deep domain knowledge solves problems of vital importance for our
nation.
• Cloud and Digital Infrastructure Market Segment is comprised of 5 directorates:
– Cloud Integration
– IT as-a-Service
– Infrastructure Engineering
– Digital Transformation
– Enterprise Service Delivery
• SAIC’s primary customers are within the Department of Defense, the Intelligence Community, and Federal/Civil Agencies.
Customer needs vary depending on the organization maturity in their cloud adoption, management, and automation and
organization.
12
VMworld 2018 Content: Not for publication or distribution
SA IC .com
© SAIC. All rights reserved. | SAIC Communications | SAIC Proprietary - Not for External Disclosure
SAIC’s Technical Services Brokerage solution
13
• Platform based on Gartner cloud
management platform model
• Base platform uses SAIC’s SDI certified
by the VMWare Validated Design Team +
ServiceNow + Apptio
• Actively being deployed for VITA, go-live
11/2018, GEO, in pilot; proposed
solution for multiple customers based
on their current requirements
• Can support addition of Red Hat or
native AWS ‘push-button’ dev/test
stacks (or Azure, GCP, VMCoAWS, IBM…)
• Base delivery solution going forward for
managed IT services
• Modular elements can be deployed
independently
Graphic Source: Gartner, https://blogs.gartner.com/marco-
meinardi/2018/01/22/upcoming-research-cloud-management-platforms/
VMworld 2018 Content: Not for publication or distribution
SA IC .com
© SAIC. All rights reserved. | SAIC Communications | SAIC Proprietary - Not for External Disclosure
Cloud Management Information & Next Steps
SAIC has and continues participates in early access programs, betas and councils around VMware’s cloud management
platforms. Today, we have many deployments in various stages of maturity for several customers e.g. NASA, GSA, DoD, DoS,
and the Commonwealth of Virginia this October. SAIC has also deployed vRealize Automation internally in production and
looking forward to leveraging VMware Cloud Automation Services.
While many of SAIC’s current deployments are focused on designing, deploying, and integrating cloud management solutions
for customers, we are also currently evaluating VMware Cloud Automation Services for use within our overall Technical
Services Brokerage capability. This will provide for a flexible and agile environment without significant upfront and long-term
investments for customers.
Cloud Automation Services have opened the following aligned strategic initiatives for SAIC:
– Increase in opportunities for Google Cloud and Microsoft Azure/MAG
– Aligned SAIC to work with organizations with an effective software development background to assist with transition to CI/CD pipeline and
Infrastructure as Code
– Cloud Automation Services have enabled new use cases for our organizations internal research and development
14
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
$8 Billion+
Revenue
~800
Engineers
Feature based
Delivery
100%
Virtualized
400+ OnPrem
100+ SaaS apps
10-15 Large
Projects
120 Features
Per week
12+ Instances
9 Datacenters
~11 million lines
of code
50-60 Projects
at any time
200+ Artifacts
per week
VMware runs
on VMware
DevOps in VMware Business IT
16
VMworld 2018 Content: Not for publication or distribution
Move to DevOps – Journey Enabled by Private Cloud
On-Demand Instance
Create & Destroy
Data Stores have “Right” Data
Non-Prod 99.95%Uptime SLA’s
Correct Wiring of 100+ SaaS
Systems
Real-time Monitoring (Predict & Alert Performance Issues)
Production ready code any time
Secured Access(Secured Access to Resources)
Monitoring & Audit
Multi Tenant Support(Support Different Development Teams)
Deploy when Ready
Eliminate Last Mile
No Touch Deployment
1 2 3Year
Instance Stabilization
Today
Provisioning Automation
Blueprint – Closest Copy of
PROD
High Quality – Automated
provisioning 95%+
Business Agility
Predictable Feature Velocity
for business Outcome
VMworld 2018 Content: Not for publication or distribution
Move to Microservices and Hybrid Architecture
Architect Security from grounds up
Enable Developer-ready Infrastructure
Journey Beyond DevOps
VMworld 2018 Content: Not for publication or distribution
Eric Lee Senior Technology Architect
VMworld 2018 Content: Not for publication or distribution
20
Background
• Cerner: • Electronic Medical Records & peripheral medical application systems.
• ~ 80 different applications
• Hosting (EMR, Managed services)• IT Services/Reseller
• Cerner Technology Services – Infrastructure & Operations Team• Architecture, provisioning, automation, security, operations (on-premises & cloud)
• Cloud Operations • Supports all BU’s consuming on-premises or cloud-based infrastructure• Numerous dev teams (>70 cloud tenants)• Multiple on-premises OpenStack deployments• On-premises container platform• vCD Lab environment
VMworld 2018 Content: Not for publication or distribution
21
Developer Challenges / Current State
• Both uniform & flexible deployment options
• Multi-cloud/location options
• Integration with existing pipeline tools
• Faster feedback loops• Scale testing - some tests require ~1500 VMs
• Automated tests 2 x per day
• On-demand environments 24/7
• ~1000 VMs in 80 min
• Scripted updates of Blueprints dailyVMworld 2018 Content: Not for publication or distribution
22
Current State with Cloud Automation Services
• Deploy to on-premises vSphere and AWS
• Blueprint updates via YAML are faster than current vRA process, even using vRA API
• clone, update VM snapshot, update Software Component, etc.
• YAML with cloud-init is faster than Software Components
• Throughput out-of-the-box is faster
• On-premises vCenter - 200 VMs in 40 min
VMworld 2018 Content: Not for publication or distribution
23
Future Goals with Cloud Automation Services
• Seamless integration with on-premises code pipeline
• Quicker feedback to developers and managers
• Full platform agnostic deployments
• IPAM integration
DEV PRODSTAGE
DEPLOY
TASK …
DEPLOY
TASK …
DEPLOY
TASK …
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
VMworld 2018 Content: Not for publication or distribution
VMworld 2018 Content: Not for publication or distribution