Vblock Acceleration Solution ServiceMesh Background • ServiceMesh’s Agility Platform is an application-centric, enterprise-ready, cloud management platform that delivers policy-driven governance, security, and lifecycle management. • Global presence with headquarters in Los Angeles and offices in Austin, London, New York City, Sydney, and Washington D.C. • Customers include some of the world’s largest and most sophisticated companies in financial services, health care, consumer goods, and other IT-intensive industries: Sample Customers Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential Sample Industry Recognition 2 Journey to Cloud IT Transformation Optimize variable-tofixed costs by project Redundant service options with low switching costs Fully transparent and auditable service usage Compressed SDLC and tool chain automation Self-service access and on-demand provisioning Transparent linkage of demand, capacity, and costs Launch initial private cloud Broadly adopt utility cost model with chargeback Improve asset utilization and ROI IaaS and PaaS standardization Policy-driven cloud governance Defer data center build outs Virtualize Private Cloud Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential Hybrid Clouds Everything-as-a-Service IT 3 Journey to Cloud IT Transformation Optimize variable-tofixed costs by project Vblock Acceleration Redundant service options with low switching costs Fully transparent and auditable service usage Compressed SDLC and tool chain automation Self-service access and on-demand provisioning Transparent linkage of demand, capacity, and costs Launch initial private cloud Broadly adopt utility cost model with chargeback Improve asset utilization and ROI IaaS and PaaS standardization Policy-driven cloud governance Defer data center build outs Virtualize Private Cloud Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential Hybrid Clouds Everything-as-a-Service IT 4 ServiceMesh Agility Platform™ A single, consolidated platform to enable on-demand, self-service IT operating models for Global 2000 enterprises Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 5 Take your Vblock investment beyond infrastructure to higher value platforms and applications Applications Platforms Easily on-board complex platform and application topologies for rapid time-tovalue Enable self-service, on demand access to cloud service portfolios to improve business agility Enforce security zones and workload isolation with high-level policies that reduce operational complexity Ensure governance and security compliance to mitigate risk Manage application SLAs including auto-scaling Provide resource tracking, chargeback, and cost transparency Maximize Vblock utilization and ROI Enable enterprise hybrid-cloud strategies and cloud-based IT operating models Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 6 6 Maximize Vblock utilization Develop Test Release Operate Role-based access controls including federated identity management Customize environments to address needs of each SDLC stage Dev Test Staging/Production Enforce security zones and workload isolation with highlevel policies Manage application SLAs including auto-scaling Enforce of Standard Operating Environments (SOEs) Enable diverse workloads to co-exist with multiple trust levels, security models, operational requirements, and governance constraints on the same Vblock host using high level policies to maximize Vblock utilization and return on investment. Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 7 7 Rapidly on-board complex platforms and applications 1. Create stacks/templates Make complex business applications cloud portable Import existing VMs Enable vendor contestability Agents/Utilities OS & Platforms Governance Code Embedded agents, utilities, and packages Workload Configuration Golden Image Stateful content for a specific target environment Stateless foundation deployable anywhere Firewall Load Balancer Web Servers App Servers 2. Assemble multi-tier topologies Assemble multi-tier application topologies and govern their orchestration and delivery. Database Servers Master Slave 3. Portable across different clouds Provide portability across heterogeneous private and public clouds Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 8 Policy-driven governance is an enterprise requirement With Policy-Driven Governance and Orchestration Without Policies: Governance and Lifecycle Management Approval Delays Wrong Permissions Unsecured Data No Audit Trail Policies control access to selfservice resources Wrong Environment Policies optimize placement of workloads Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 9 Single consolidated control point for enterprise cloud governance Regulatory compliance policies Rights & Permissions SLA policies including autoscaling Security zones policies for each SDLC stage Enforcement of Standard Operating Environments (SOEs) Workload placement policies Backup and failover policies VM quotas and scheduling Metering/charge back policies Orgs Policy Applications & Platforms Code Data App Config. Agents/Utilities Middleware OS Policy Policy Governance/Security Fine-grain access control policies Projects Dev Policies Ops Policies Monitoring/auditing policies for each SDLC stage Roles Infrastructure Automation Much more… Other Clouds Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential Policy 10 Enterprise governance made simple with a powerful, extensible policy engine • Custom policy creation based on an extensible meta-model • Visual policy editor to create complex, business level policies Fine-grain policy enforcement across a broad range of objects Edit via a drag-and-drop palette or XML code Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 11 Create self-service portals for standardized portfolios of “as-a-service” offerings Plan Develop Test Release Existing Tools Operate Self-service portal REST API Sample “as-a-service” portfolio: Unified governance Federated identity management Common Application Platforms • • • • • Standardized Packages MS SQL Server DBaaS MS IIS.NET Red Hat Enterprise Linux webLogic others… • • • • • • VPN clients Monitoring agents HIDS Anti-virus Virtual Firewalls others… 3rd-Party PaaS/SaaS Custom PaaS • • • • • • Preferred platforms and infrastructure customized to specific enterprise needs • Elastic, portable, and secure Cloud Foundry Salesforce.com Intuit Google Apps others… Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 12 Enterprise-grade reporting, auditing and chargeback Roll-up or drill-down into groups, projects, environments, instances, etc. Comprehensive audit trail Cost reporting and chargeback Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 13 Comprehensive security for business critical applications in the cloud Secure encryption keys Secure access • Internal Agility Platform key store • External key stores • Federated Identity Management Secure logs for auditing Secure data in transit Secure instances from breaches Governance Infrastructure (Vblock) Zoned Security • Pluggable Host Intrusion Detection Systems (HIDS): • Pluggable Antivirus • Hypervisor kernel firewalls • Host Firewalls • Secure VPN tunneling with multi-cast and static IP assignment support • Proxy integration • VLAN management • Virtual DHCP Encrypt Driver Secure data at rest • Runs on cloud native block storage infrastructure • File system encryption Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 14 Leverage your existing IT ecosystem Terremark HP Cloud Amazon Fujitsu QualysGuard (scanning/detection) CSC Savvis VLAN mgmt (Juniper) Azure Rackspace ClamAV Dell McAfee AV External VMFS VPN Cloud Security NFS (OpenVPN, Swift Amazon Storage VPC) Amazon S3 File system encryption vSphere/vCenter (Win/Linux/Solaris) vCloud Director Eucalyptus IaaS Internal OpenStack Cloud Microsoft System Center Hadoop SAP Cloudstack Apprenda External Key Store (SafeNet, Cryptsoft) Host Intrusion detection (OSSec, Commercial, Juniper) RSA ClearTrust Active Directory LDAP Kerberos SAML Host Firewalls (IPtables/Windows firewalls) Netegrity Oracle OAM Proxy integration (Socks/HTTPS) Identity Mgmt Microsoft System Center Ops Mgr HP NIMC Ganglia Collectd Performance Monitoring PaaS Splunk Chef BMC Hypervisor-based firewalls (Vmsafe, Juniper) IBM WebSphere Configuration Management Oracle WebLogic .NET Puppet DNS Microsoft System Center Config Mgr NTP Cloud Foundry Network Services Load Balancer (F5) Subversion DHCP (InfoBlox) Git Development Tool Chain vFabric Orchestration Reporting/ Chargeback SaaS Eclipse Team Foundation Server Jira Visual Studio Ariba SAP Jaspe Jenkins CI r Pureshare Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential HP Operations Orchestration Microsoft System Center Orchestrator Cisco Process Orchestrator Blade Logic Salesforce.com Google Apps 15 15 Rapid Time to Value Case Study: Global Financial Services Company Challenge • Run “IT like a business” to enable greater business agility, full IT cost transparency, and an IT service portfolio that is globally competitive. ServiceMesh Solution • Rapidly enable an on-demand, self-service IT operating model that includes the provisioning of multi-tier platform and application topologies to a Vblock-based private cloud. “My vision for this organization is to enable us to compete for any business we want against any competitor, and give them all the tools necessary for them to win that business. And that’s what we’re doing.” Results • Custom dev platform provisioning time reduced by 99% (from 76 days to less than 24 hours). • Rapid time-to-value, taking just 68 days from green field installation to roll-out of a self-service catalog of fully governed, on-demand development platforms used by business unit dev teams. –Vice President, Global Financial Services Company New self-service provisioning of dev platforms < 1 day Old platform provisioning process = 76 days Time to create and roll-out new selfservice dev platform portfolio = 68 days 0 Time in days Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 16 Our Technology • A Single, Purpose-built Platform – Modular and natively developed for consistent delivery and management of enterprise cloud applications and service portfolios. • Enterprise Grade Policy & Governance Engine – Enables the creation and enforcement of an unlimited range of custom governance, compliance and security policies. – Visual policy editor – drag and drop • Cloud Application Migration Scoring & Planning – Migrate existing business applications and virtual machines to fully governed hybrid cloud environments in an automated, systematic manner. • Integrated Application Release Automation – Increase the speed and frequency of software releases and accelerate DevOps initiatives. • Fastest Implementations – Rapid deployment and time-to-value. Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential. 17 Thank You For more information, find us at: servicemesh.com @servicemesh servicemesh.com/blog 18 Backup Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 19 Dev Test Rapidly on-board complex platform and application topologies Staging Auto-scale Platforms and Apps Take your Vblock investment beyond infrastructure to higher value platforms and applications Enable self-service, on demand access including federated identity management Ensure governance and security compliance Enforce security zones and workload isolation based on high-level policies Manage application SLAs including auto-scaling Provide resource tracking and chargeback Maximize Vblock utilization and ROI Enable enterprise hybrid-cloud strategies Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential 20 20