Oracle SOA Governance for the Business

© 2013 HCL – Proprietary & Confidential

This document contains confidential and propriety information for the purpose of evaluation only.

The contents of this document may not be published, disclosed or used for any other purpose.

Oracle SOA Governance for the Business

Luis Weir Fusion Middleware Solutions Director

[email protected]

http://uk.linkedin.com/in/lweir

@luisw19

http://www.soa4u.co.uk/

mailto:[email protected]

http://uk.linkedin.com/in/lweir

https://twitter.com/Luisw19



2 © 2013 HCL – Proprietary & Confidential

Why is Governance Needed?

Assets vs. Liabilities

What is SOA Governance

SOA Governance Framework

Implementation Roadmap

SOA Assessment

Design Time vs. Runtime Governance

Asset Centric Governance with Oracle

Governance Suite

About Us

Agenda


Without the right level of SOA Governance implementation of technologies suited to support these new trends may end up being an expensive project that fails to deliver any return on investment therefore not bringing

benefits to the business.

Industry Trends – How can SOA Help? Social analytics, cloud computing, big data adoption to bring

competitive advantage

New Technology

Demand for large quantities of data must be provided in a standardized, long-term method Rapid Growth of

Mobile Apps

Opportunities to save costs through automation and optimization of business processes Maturity in BPM

Technology

Complex security needs are driving greater investment in IT security Increased Need

for Security

Oracle SOA Suite supports and enables adoption of new technologies

Oracle service orientation and SOA Suite meets this demands and provides support to service bindings suitable for mobile use

Fusion Middleware provides best of breed security solutions such as Oracle Access Manager , Identity Manager and API Gateway

BPM suite is a fundamental component of SOA Suite, in facts is a service engine within SOA Suite itself.


Assets vs. Liabilities in SOA Terms

Assets are any electronic artifacts

such as API’s, XML documents

(XSD’s, WSDL’s or XSLT’s),

documents (requirements, designs,

etc), systems, and applications that

add measurable value to the

Business.

Liabilities are duplicated, deprecated, redundant or unused “Assets” that no longer deliver benefits but that introduce extra costs to the business.


What SOA Governance Isn’t?

• Standards: such as naming conventions, patterns, reference architectures, standards, amongst other, cannot be considered to be Governance. Although these are important assets, if not enforce through a process they are often forgotten and outdated.

• Configuration Management, Version Control or Continuous Integration: Although these are very important disciplines within software engineering and contribute greatly towards adopting governance, without supporting processes, policy enforcements and the right tools, these disciplines can become an overhead and easily run out of control.

• A Tool: Tools without structured process around it add little value and will likely end up not being used for its original purpose.

• Review Gates: Having a panel (i.e. Design Authorities) responsible for approval or rejection of deliverables is an important aspect of Governance however without some sort of automation, robust traceability, policy enforcement, and control these can be time consuming, inaccurate and ultimately unmanageable.


What is SOA Governance?

Policies

(What)

Reference Architecture

Targets and Objectives

Assets

Standards

Configuration Management, ...

Processes

(How)

Software Development Lifecycle (SDLC)

Design Time and Runtime Governance

Oracle SOA 11g Governance Suite

Subversion

...

Decisions

(Who)

Organization Units

Stake Holders

Roles and Responsibilities

...

Governance is the alignment of policies (what), decision makers (who)

and processes (how) to ensure and maximize the benefits that technology

can bring to the business


Top 5 Governance Challenges

Challenge Consequence

Lack of visibility over existing assets and its

performance

Minimum asset reuse and duplication

introducing extra costs (both in CAPEX and

OPEX). Without a level of analytics it is not

possible to determine ROI.

Tactical Projects over of Strategic Solutions Projects have their own agendas which deliver

short term benefits to the project but that

add no long or mid term Enterprise value.

Poor decision making and Lack of

accountability

No sense of ownership makes decision

making, policy enforcement and accountability

an impossible task.

Low quality of Assets which become difficult

to maintain and change.

Higher complexity and cost of change

introduces Risks to the Business preventing

new and innovative solutions to be introduced.

Poor estimation techniques and inaccurate

planning

Projects cost more than estimated mainly

because of “unknowns”... (i.e. Rework, extra

activities and deliverables, dependencies,

complexity, and others)



A Governance Framework materialises the Governance concepts and

provides a taxonomy of deliverables suited to support all aspects of it

(what-who-how).

A Governance Framework Accelerator is a prebuilt framework that can

acquired and customised to specific customer needs.


Policies

(What)

Decisions

(Who) Processes

(How)


SOA Governance Framework Accelerator

Implementing an accelerator dramatically reduces the complexity and

effort required to implement Governance therefore reducing Risk.

Business

Benefits

SOA Governance Framework Accelerator

Business

Objectives &

IT Strategy Design Time

Governance •Reference Architectures

•Service Capability Matrix &

Catalogues

•Development Standards

•Design Standards

•Programming Standards

•Security Standards

•Exception Handling

Standards

Runtime

Governance •Deployment Framework


Framework

•Continuous Integration

•Testing Framework

•Provisioning Framework

Organization •Roles & Responsibilities SOA

Strategy

&

Business

Case


Your Chances of Success...

Elaboration Construction Maintenance Changes

Short term benefits but higher long term costs

Higher cost of change Higher support costs Higher risk

ROI from asset reuse Lower cost of change Relatively high risk of

implementation

Co

sts OPEX

Tactical Implementation

Strategic Implementation No Accelerator

Strategic Implementation With Accelerator

Reduced risk of failure Accelerated delivery Quicker ROI

CAPEX

10


SOA Governance Implementation Roadmap

Enablement Phase Implementation Phase

SO

A M

atu

rity

L1

L3

L2

L4

L5

Time

Projects

As-Is

To-Be

Governan

ce

Objectives

SOA

Assessment

Define and Implement

Design Time Governance

Framework:

Standards, Frameworks,

Tools, etc. SOA Strategy &

Business case

Define and Implement

Runtime Governance

Framework:

Frameworks, Tools, etc.

Governance

Enabled

Projects &

Lifecycle


SOA Assessment

Enablement Phase

Business

Objectives &

Strategy

SOA

Governance

Objectives

Maturity

Assessment

SOA

Strategy &

Business

Case

Evaluate As-Is

•Analyse and Quantify Capabilities on each Domain:

•Business Goals and Strategy

•Reference Architectures, standards and SDLC

•Application implementation views

•Data Architecture, Analalitical Reports, BI

•Support and Administration tasks

•Project Portfolions, Success Rates, Estimation Models

•Team Structures, Organistion Charts

Elaborate To-Be:

•Define and Quantify Desire Maturity Level:

•Analyse Results and Identify from As Is

•Define a realistic target maturity considering a target completion date of 1 to 2 years max (I.T. Moves fast so longer than this is unrealistic)

•Quantify each capability based upon desired maturity on target date

Elaborate Results

•Elaborate Recommendations and actions

•Identify key success factors Based on Business and IT goals identify

•Based on Business value and risk, prioritise actions and recommendations and define milestones

• Elaborate a SOA Strategy

• Elaborate a Business Case

1 2 3

Phases


SOA Governance Objectives

Objectives should be around ensuring and maximising the benefits that SOA brings to the business by:

Aligning the SOA strategy to the business objectives

Delivering a Framework suited for Business Agility and Change

Aligning SOA to Enterprise Architecture

Providing visibility over existing Assets, its use and operational performance

Improving the quality of assets by enforcing policy and standards

Increasing the ROI by asset re-use

Reducing the cost of change and support

Reducing the risk of failure

Improving agility and promoting innovation


Oracle SOA Maturity Model

The Oracle SOA Maturity Model is a five level model where each

level represents a particular state of maturity of a SOA

implementation in an enterprise.

Bu

sin

ess V

alu

e

Time

1 Opportunistic

• SOA Focused on Quick Wins Projects

• Get Experience Building, Deploying and Consuming Services

2 Systematic

• SOA Applied to Existing Portfolio

• Focus on Standards and Management

3 Enterprise

• Strong Focused in SOA Governance and Enterprise Architecture

• SOA to Enable Business Processess, Process Automation and Improvement

• Extend SOA to the rest of the Enterprise

4 Measured

• Strong Focused on Qualitative Management and Monitoring

• Process owners drive Processess and Process Optimization

• Use of BAM, BTM, OEM and OER to Measure Operational performance and ROI

5 Industrialized

• Agile SOA able to Support Business Rapidely and Cost Effectively

• Event-Drivent technolgies such as CEP and EDN's Enabled Self-Optimised Processess and Applications


Maturity Assessment

A Maturity Assessment evaluates the current state of a SOA

Implementation within an organization. the Oracle SOA Maturity Model

along with the Oracle Capabilities domain can be used to conduct the

assessment.


Strategy & Business Case

An SOA Strategy should define a Vision and a Roadmap describing the projects, activities and iterations needed to realise such a vision. The Vision is a long term view of the future whereas the Roadmap should be based on achievable timeframes.

A Business Case should be created on the back of the strategy to secure the funding needed to implement SOA Governance. A good Business Case should express in business words:

How SOA Governance will help the Business achieve its goals.

What benefits will be delivered to the business (i.e. lower TCO, Cost Savings in both OPEX and CAPEX by xx%, Agility, etc).

How SOA benefits will be measured

ROI

Estimated time

required to build an

asset for single use

Estimated time

required to use an

existing asset

Predicted net hours

saved by the

consumer


Design Time Governance

Design Time Governance can be defined as the combination of processes, tools and

people needed to support the analysis, design and build phases of a SOA implementation.

Analysis

Requirements

Design

Build & Unit Test

Deploy

Test(i.e. SIT, UAT, NFR, etc)

Support

Service Discovery

Service Cataloguing

Service Design

Service

Implementation

Service

Testing

Service Retirement

Service

Improvement

Service

Deployment Service

Monitoring

Project Phases SOA Asset Lifecycle

Design Time

Governance•Reference Architectures

•Service Capability Matrix

& Catalogues


•Design Standards




Standards

Runtime

Governance•Deployment Framework


Framework




•SLA Management

•BAM


Supports


Runtime Governance

Runtime Governance can be defined as the combination of processes, tools and people

needed to support the deployment, testing and production support phases of a SOA

implementation project.

Analysis

Requirements

Design

Build & Unit Test

Deploy

Test(i.e. SIT, UAT, NFR,

etc)

Support

Service Discovery

Service Cataloguing

Service Design

Service

Implementation

Service

Testing

Service Retirement

Service

Improvement

Service

Deployment Service

Monitoring

Project Phases SOA Asset Lifecycle

Design Time



& Catalogues


•Design Standards




Standards

Runtime



Framework




•SLA Management

•BAM


Supports


Roles in SOA

Clear understanding of the Roles and Responsibilities is fundamental in any SOA

Adoption. Governance is as much about people as it is about tools and

processes.

Design Time



& Catalogues


•Design Standards




Standards

Functional / Business

Analyst

SOA

Designer

SOA Design

Authority

SOA Testers

SOA

Architect

Requirements

Service Discovery

Service Cataloguing

Service Design

Service

Implementation

Service

Testing

Service Retirement

Service

Improvement

Service

Deployment Service

Monitoring

SOA Asset Lifecycle

Runtime



Framework




•SLA Management

•BAM


SOA

Developer

SOA Support

Specialist

Owner Of

Contributes To


Asset Centric Governance with Oracle

Governance Suite

• Service Visibility

& Discovery

• Automated Harvesting

• Dependency

Management

• Human Worklow

• Design Policy

Enforcement

• IDE Integration

• Runtime Operational

Metrics Integration

• Analytics

• Service Catalogue

• Endpoint Virtualisation

• WS-Policy & WS Security

• Policy Enforcement Point and

External Gateway

• DMZ

• Native REST/JSON Support

ideal to expose API’s and

support mobile

• Robust security layer

• Runtime Performance

• SLA Management

• End-to-End Transaction

Monitoring with BTM

• Operational Metrics

• SOA Infrastructure

Management


Asset Centric Governance

SOA Lifecycle

Functional /Business Analyst

SOA

Developer

IDE CodeDeployment Framework

& Continuous Integration

1. Requirement

Elaboration

2. Service Discovery and

Cataloguing

Service

Catalogue

Service

Capabilities

3. Service

Implementation4. Service Deploy

and Test

SOA

Designer

2. Service Design

SOA Architect

SO

A D

esig

n-T

ime G

overn

ance

Process ModelsUse Cases Business Rules

Catalogue

Service Detail Design

SOA High Level

Design

Production

SOA Systems

Harvest / Ops Metrics

SOA Quality Tester

& Support

Specialist

Dev, CI, Test

SOA Systems

Dis

co

ve

r

Su

bm

it

Co

nsu

me

Ha

rve

st



SOA Governance Framework Modelled in OER



Logical Architecture

SOA/BPM Development ServerSOA Governance Server

OBPM 10g Domain

OER Domain

DB Server

SOA Domain

Weblogic (10.3.6) Admin Server 1

Weblogic (10.3.6) Managed Server

Administration Console

Oracle 11g DB(11.2.0.x)

Enterprise Manager

SOA / BPM Suite

(11.1.1.6.x)

SOAINFRA OSB SchemaMDSOER_DATAOER_INDEXUDDINODE


OWSM Policy

Manager

MDS


Weblogic (10.3.6) Admin Server


Weblogic (10.3.3) Admin Server


OBPM 10g(10.3.2)

OER Asset Registration Workflows


OER(11.1.1.6.x)



BAM


OSB (11.1.1.6.x)

SOA/BPM Test Server(s) SOA/BPM Preproduction Servers

SOA/BPM Production Servers

OSRStandalone(11.1.1.6.x)

OAS 10.1.3.4.1

OC4J

OER Publisher Enterprise


About HCL

19%

31 CO UNT RI E S

54%

R E V E N U E B Y G E O G R A P H Y

North America

27% Europe

Asia 90,000

P E O P L E

$6.3B R E V E N U E

3 - Y R C A G R

26%

2

4

Key Middleware Customers

Our Relevance

Leading Global Oracle Partner

Luis is HCL’s Director for Oracle Fusion Middleware solutions in the EMEA, ASIA

Pacific regions. With more than 11 years of experience implementing IT solutions

across the globe, Luis has successfully delivered several large and complex

Service Oriented Architecture (SOA) solutions for Fortune 500 companies. Luis

is focused on assisting customers leverage the full range of Fusion Middleware

offerings to resolve integration problems, improve their businesses and establish

effective technology roadmaps.

Luis is an expert in SOA and also is a thought leader in this field and in an effort

to share his real-life experiences when implementing complex SOA solutions,

Luis has written his first book, “Oracle SOA Governance 11g Implementation”,

published by PACKTPUB.

Luis Weir Global Director – Fusion Middleware Solutions


Oracle SOA Governance 11g

Implementation Main features available:

Understanding SOA Governance, its key concepts, goals and objectives and how to implement these using the Oracle SOA Governance Suite.

Execute a SOA Maturity Assessment in order to capture the SOA Governance challenges specific to your organization.

Implement Oracle Enterprise Repository (OER) and Oracle Service Registry (OSR) to address your organisation’s SOA Governance Design-time and Runtime requirements.

Implement Runtime Governance using Oracle Web Service Manager (WSM) security policies and by leveraging Oracle Enterprise Manager’s (OEM) key management features.

Achieve close-loop governance by feeding OER with runtime operational metrics and enforcing service reuse in OER.

Accelerate governance and also MDM adoption by implementing AIA 11g Foundation Pack.

Resources:

Store: http://www.packtpub.com/oracle-soa-governance-11g-implementation/book

Book Description: http://www.soa4u.co.uk/2013/09/oracle-soa-governance-11g.html

Video Interviews: http://www.youtube.com/watch?v=Ohn06smVKVw

2

5

http://www.packtpub.com/oracle-soa-governance-11g-implementation/book









http://www.soa4u.co.uk/2013/09/oracle-soa-governance-11g.html







http://www.youtube.com/watch?v=Ohn06smVKVw

http://www.youtube.com/watch?v=Ohn06smVKVw

Oracle SOA Governance for the Business

Technology

Transcript of Oracle SOA Governance for the Business