Enabling NASA Software-as-a-Service (SaaS) Use

Similar documents
Fulfilling CDM Phase II with Identity Governance and Provisioning

Kent State University s Cloud Strategy

Amazon Web Services Marketplace: A Value Proposition for ISVs

David Le Strat Senior Director, Product Management Oracle. Copyright 2015, Oracle and/or its affiliates. All rights reserved.

I D C M A R K E T S P O T L I G H T. S i l o s a n d Promote Business Ag i l i t y

Beyond EDI Unlocking new value with transactions enabled by SAP Ariba and the Ariba Network

Secure information access is critical & more complex than ever

Supporting Cloud Computing with Professional Services

Business Risk Intelligence

BMC - Business Service Management Platform

WHITE PAPER SPLUNK SOFTWARE AS A SIEM

IBM QRadar SIEM. Detect threats with IBM QRadar Security Information and Event Management (SIEM) Highlights

LIST OF TABLES. Table Applicable BSS RMF Documents...3. Table BSS Component Service Requirements... 13

Understanding Your Enterprise API Requirements

Application Performance Management for Cloud

Prepare for GDPR today with Microsoft 365

IBM Sterling B2B Integrator

Accelerate your SaaS journey. App, market, and partner considerations for independent software vendors

SOLUTION BRIEF CA MANAGEMENT CLOUD FOR MOBILITY. Overview of CA Management Cloud for Mobility

ERP Edge Tech Mahindra Oracle Cloud Transforming your business to capture profit in the Cloud

Unlock the Value of Your Enterprise Apps with Smart Process Apps. An InformationWeek Webcast Sponsored by

Harnessing the Power of IBM Business Analytics Through Application Specific Licensing

2017 Microsoft Cloud and Hosting Summit. Investing in Cloud Tooling: Margin expansion in a high growth hyper scale cloud market

Embedded Solution Agreement. IBM Channels

Middleware Modernization: lay the foundation to your digital success

The Leading IT Platform to Secure and Manage Mobile Devices, Desktops, Apps and Content

Company Overview THE LEADER IN CLOUD-BASED GLOBAL TRADE MANAGEMENT

Oracle SCM Cloud. Integration and Extensibility Strategy. Jon Chorley. CSO and Group Vice President Oracle SCM Product Strategy.

Making a cloud and mobile-first world more secure for customers

Trusted by more than 150 CSPs worldwide.

VULNERABILITY MANAGEMENT BUYER S GUIDE

An Overview of the AWS Cloud Adoption Framework

One Size Doesn t Fit All Reinvent Your B2B E-Commerce Strategy

Tech Mahindra s Cloud Platform and PaaS Offering. Copyright 2015 Tech Mahindra. All rights reserved.

What's Shaping the Future of Enterprise Content. Management? JOHN O MELIA

API Gateway Digital access to meaningful banking content

IBM Sterling Order Management drop ship capabilities

Ticketing: How ACME s Cloud-Based Enterprise Platform Benefits Your Business

How data gravity is pulling your analytics to the cloud

TREASURY. INTEGRITY SaaS

Order Management Strategies for Efficiency and Growth

AtoS capabilities in Slovenia

PaaS na prática para soluções B2B Oracle Customer Experience Cloud

Accelerating Business Agility with Boomi

Top. Reasons Enterprises Select kiteworks by Accellion

White Paper. What Every SaaS Company Should Know About Integrating with Its Customers

Steve Bryant-Brown Technology Mayank Nayar Program Manager, Azure Site Recovery. Will Rowley Cloud

Best of Breed Automation September 2014

Xchanging provides technology-enabled business solutions to the global commercial insurance industry.

Analytics in the Cloud

EMC M&R (WATCH4NET) Cross-Domain Performance, Capacity and SLA Management. Ensure high service quality to users ESSENTIALS

Elevate your organization. To reach the Cloud.

Viewpoint Transition to the cloud

Buyers Guide to ERP Business Management Software

Dynamics 365. Microsoft Dynamics 365, Business edition. Licensing Guide. July 2017

5 Key PaaS Benefits and What They Mean for Your Business

Product presentation. Fujitsu HPC Gateway SC 16. November Copyright 2016 FUJITSU

AN EXECUTIVE S GUIDE TO BUDGETING FOR SECURITY INFORMATION & EVENT MANAGEMENT

Streamline your business processes with Sage X3

DFS-Sphere eform Digital Form Process Solution for Business

Enterprise Collaboration Patterns

Negotiating Enterprise Agreements with Microsoft. Presented by: Robert J. Scott

WHITEPAPER WHITEPAPER. Processing Invoices in the Cloud or On Premises Pros and Cons

Oracle PaaS and IaaS Universal Credits Service Descriptions

THE FIELD GUIDE TO CPG MOBILE APPS 1 THE FIELD GUIDE TO CPG MOBILE APPS

Modernize Your Device Management Practices Using The Cloud

The Death of Print Markups

Riverbed SteelCentral

Disclosure Management

Service enablement. Operator opportunities through service enablement

Microsoft Dynamics Gold Partner. Microsoft Dynamics 365 and Dynamics NAV Upgrade Accounting Software to ERP

UNDERSTANDING THE NEED FOR A HELP DESK SOLUTION. How to select the right help desk solution for your organization

Boomi Basics: Going Beyond Integration with APIs, Data Management and Workflow Automation

Business Process Management 2010

Building a Winning Business Case for HCM SaaS

How to Drive Business Value with Capacity Management

Microsoft FastTrack For Azure Service Level Description

TELSTRA HOSTED SAP SOLUTIONS WITH ACCENTURE A SMARTER SAP SOLUTION

Cloud Sales: How to Adapt your Company Sales for the Cloud? Based on the session at the 2014 Cloud Symposium. An Alexander Group ebook

Secure File Sharing and Collaboration

Social Networking Advisory Services

UForge AppCenter 3.8. Introduction March Copyright 2018 FUJITSU LIMITED

TVA Smart Communities

Oracle Product Hub Cloud

BT Personalised Compute Management System. July 2017

BLOCKCHAIN CLOUD SERVICE. Integrate Your Business Network with the Blockchain Platform

State of Enterprise Resource Planning Security in the Cloud. Presented by the ERP Security Working Group

Capgemini Government Cloud Broker: A Point of View

Cloud Capacity Management

Operations Management Suite

Intel IT Cloud 2012 and Beyond. Cathy Spence, Enterprise Architect Intel Information Technology April 2012

Accenture CAS: integrated sales platform Power at your fingertips

icharge PMS Middleware, Integration and Call Accounting

TOP 6 SECURITY USE CASES

Workspace ONE. Insert Presenter Name. Empowering a Digital Workspace. Insert Presenter Title

JD Edwards EnterpriseOne Mobile Solution Strategy

Communications in the Cloud:

Infrastructure services delivery planning for M&A: An ounce of prevention Part of the heart of M&A series on M&A technology topics

Changing the way businesses buy technology

Transcription:

Enabling NASA Software-as-a-Service (SaaS) Use Computing Services Program Office Enterprise Managed Cloud Computing (EMCC) Service Office Version 1.0, September 29, 2016

NASA Enterprise Managed Cloud Computing (EMCC) Services The NASA Enterprise Managed Cloud Computing (EMCC) Service Office facilitates secure and policy compliant Agency access to commercial cloud services (IaaS, PaaS, and SaaS). Addresses services, standards, guidance, governance approach, and technical integration to greatly reduce the burden associated with gaining approved NASA access to the rich and rapidly growing marketplace of cloud-based applications and services. An enterprise approach results in faster adoption, greater consistency, managed risks, and lower Agency costs. Significant Pre-Use Requirements Agency Service Integration Facilitated NASA Cloud Use 1

Case for an Enterprise SaaS Approach If each NASA community or project addresses the wide array of Requirements for Cloud Computing: Projects may interpret and fulfill requirements differently Unknown security posture and risks Inconsistencies in policies, processes, and implementations Highly inefficient approach that results in large Agency spend Chaos Strategy Do the heavy lifting once for the Agency and enable projects to leverage the capabilities we ve created. Goal: All cloud use at NASA shall be MANAGED cloud use 2

NASA OCIO Computing Program Goals For SaaS Long-Term End Results Goals are aligned with Federal, Agency, and OCIO guidance, mandates, goals, and objectives. 1. NASA experiences widespread adoption of cloud computing by programs and projects. 2. NASA uses Commercial SaaS to address program and project requirements when it is the best available approach 3. NASA-used SaaS is governed, managed, and operated using an enterprisemanaged approach. 4. NASA SaaS management processes are open and malleable to enable service innovation. 3

EMCC Application Portfolio Focus ALL Applications In use at NASA NASA developed or commercial, cloud or non-cloud All APPROVED Apps In use at NASA All Commercial Cloud Apps In use at NASA (SaaS) EMCC Focus

Computing Services Strategy Reduces use of unsanctioned services Improves Agency risk posture Brings IT services under enterprise management Provides a unified services delivery approach Enables innovation to address mission requirements 5

Services Delivery Platform Rationale Why a Platform is Needed Services delivery platform solutions (e.g., cloud brokering platforms) are emerging to address cloud computing and hybrid IT. Explosive growth in SaaS usage cannot be managed using manual approaches Provides a unified approach to delivering IT services (Cloud and Data Center), thereby improving the user experience Increases efficiency and productivity via workflow automation (e.g., autoprovisioning, license management) Consolidates pockets of service usage, enabling Agency buys with discounts Leverages reseller service bundles, accelerating development of services portfolio Provides existing Agency data centers with a platform to reach new customers 6

SaaS High-Level Business Strategy Key Elements of SaaS Strategy The CSPO extends its Cloud Services Delivery Network to Centers to leverage resources to address the significant demand for SaaS. 1. Deploy an Agency-wide SaaS storefront (marketplace) where customers can easily and quickly purchase and use SaaS apps 2. Develop and empower network of internal service providers at Centers to evaluate, onboard, and curate SaaS apps for Agency-wide use 3. Where possible, acquire bundles of SaaS services from cloud brokers to reduce cost of managing individual services 4. Give precedence in the early stages to SaaS apps that can be onboarded to the Minimal Risk Portfolio (MRP) 7

Tiered Services Architecture 8

SaaS Enterprise Implementation Strategy Driving Objectives: Gain visibility into the SaaS products already in use, assess risk due to the low level of governance that has been applied to those SaaS products in the past, and make the transition to Agency-level managed SaaS Deploy Security Framework A&A processes and guidance Cloud Access Security Broker tool (CASB) Establish technical integrations including authentication, networking, security operations Audit and Cleanup Existing SaaS Triage the list to prioritize biggest risks Audit usage Establish any special rules or constraints Establish center ownership and who will perform assessment Develop SaaS Business Environment Identify SaaS vendor business models Define ownership and curation requirements Determine best procurement approach Define ordering and payment and renewal mechanism Enables centers to onboard new SaaS in a safe and compliant way Brings existing SaaS into compliance and reduces Agency risk Enables enterprise management of SaaS business aspects 9

SaaS CONOPS Framework 10

Key Enabling Tool: Cloud Access Security Broker Cloud Access Security Brokers (CASB) are on-premise or cloud-hosted software that act as a control point to secure cloud services. Range of capabilities may include: Visibility: Dashboards, identification of approved vs unapproved applications, analytics, incident reporting, policy control, automated alerting and reporting, license counts and usage, identification of shadow IT Compliance: Role based auditing, file content monitoring for compliance to PII, HIPAA, etc., policy enforcement Data Security: DLP, Encryption, Tokenization Threat Protection: inbound/outbound content monitoring, user behavior analytics, prevent prohibited devices and locations from accessing network, anomaly detection Enterprise Integration: ICAM, centralized log management, secure web gateway/proxies By 2016, 25% of enterprises will secure access to cloud-based services using a CASB platform, up from less than 1% in 2012, reducing the cost of securing access by 30%. Gartner, The Growing Importance of Cloud Access Security Brokers 11

Key Enabling Tool: Enterprise SaaS Aggregation Platform Per Gartner, most of today's SaaS aggregation platforms support commercial service providers looking to broker SaaS services via a marketplace or app store to external customers. A few providers are expanding their offer to also support internal IT departments. EMCC is monitoring developments and new offerings in this space closely, as this such a capability is a key component of the SaaS business strategy 12

Key Enabling Construct: Agency Cloud Service Portfolios

Key Enabling Security Approach: SaaS Accreditation and Authorization Agency (OCIO) Agency SaaS MCE Host Center LOW SaaS CSPs (MRP) C, I, A = Low, Low, Low Minimal CSP Vetting Highly Tailored A&A Agency SaaS MCEs MODERATE SaaS CSPs C, I, A = Low, Mod, Mod NIST Moderate Baseline Non-FedRAMP SARP Standard A&A Processes MODERATE SaaS CSPs C, I, A = Mod, Mod, Mod NIST Moderate Baseline FedRAMP SARP Standard A&A Processes FedRAMP SaaS CSPs SaaS CSPs Security Vetting/Control Parsing Output Security Vetting/Control Parsing ConMon Primary Primary Primary Centers Centers Centers Common Control Source ConMon (via RISCS) ConMon (via RISCS) Consumin Consumin Consuming g Centers g Centers Centers Account Management Authorization Boundaries User Community

Changes in EMCC Operating Concept Distinguishing Characteristics Name Value Proposition Generation 1.0 Generation 2.0 Computing Services Service Office (CSSO) Value-added Service Provider for IaaS (AWS), governance, management oversight Enterprise Managed Cloud Computing Platform Operator and Broker that facilitates buying and selling of cloud services, governance, management oversight NASA Service Providers, Projects, Communities, Individuals Customers NASA Managed Cloud Service Providers Platform Levels Wholesale Wholesale, Retail (multiple levels) Service Models IaaS (AWS today; others planned) IaaS, SaaS, PaaS Minimal Reliance: Extensive Reliance (planned): Alliance Business/Technical Integration and Scalability via the Cloud Services Solution Development by EMCC Delivery Network (Centers) team Role of MC SPs Buyer, B2C Seller Buyer, B2B or B2C Seller Suppliers CSPs CSPs, NASA MC SPs, NASA Data Centers 15

Questions? 16

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback