© 2015, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

Hugo Lerias Head of Public Sector AWS DACH

5th July 2016 Home to the Cloud, e-Shelter

Expanding Your Data Center with Hybrid Cloud Infrastructure

Will the Cloud eliminate Data Centers?

NO! They complement each other!

AWS Global Infrastructure

Example AWS Region

AZ

AZ

AZ AZ AZ

Transit

Transit

Example AWS Availability Zone

AZ

AZ

AZ AZ AZ

Transit

Transit

Example AWS Data Center

Why is this demand and growth so high?

What do we expect from modern applications?

• What do we expect from modern applications? • High Availability • Scalability • Fault Tolerance • Cost-Effectiveness • Security

• How can we achieve this? • Multiple Global Datacenters • Scalable Server Infrastructure • Scalable Databases • Operational Controls

Current Trends and Challenges in IT

• New applications and innovations often driven by business and not IT

• Infrastructure planning and budgeting often not aligned with business-led activities

• Effectively creating Shadow IT

• Reason: Agility and Ease of Use

”

“ Johnson & Johnson Leverages AWS for Hybrid IT Cloud Strategy

Johnson & Johnson is a multinational medical devices, pharmaceutical, and consumer

packaged goods manufacturer.

AWS is a key to our long-term strategy of leveraging a hybrid IT

environment.

• Wanted to create hybrid IT environment to increase speed, cut costs

• Uses AWS for VPC, public cloud that work in tandem with J&J’s on-premises private cloud

• Migrated more than 300 applications to AWS beginning in 2014

• Uses AWS for big-data modeling and analytics

• Uses Amazon WorkSpaces to replace thousands of contractor laptops

Dan Zelem Chief Technology Officer

”

“

Web Services

Core Services Compute Storage Database Networking

Infrastructure Regions Availability Zones Edge Locations

Platform Services

Analytics App Deployment Mobile

Virtual Desktops

Collaboration & Sharing App Delivery E-Mail

Access Control

Auditing Monitoring Encryption Security

Applications API

&

SDKs

But why is Scalability so important?

Why is Scalability so important?

• Primary driver is often to accommodate growth

however…

• Scalability also allows waste reduction and in effect cost savings

Servers

Demand

Excess Capacity Wasted $$

Unmet Demand

Capacity

Demand

Auto-Scalable Infrastructure

• Cloud allows Auto-Scaling

• Virtual Servers dynamically provisioned based on demand

Load

Capacity

Allows growth and reduces excess capacity, however only to the granularity of an individual virtual server

Let’s move up the stack!

AWS Managed Services

• Managed Services of AWS are designed to be highly-available, resilient, elastic and cost-effective

• Maintenance becomes AWS responsibility • But more importantly: Charged per consumption!

Amazon Route 53

Amazon S3

Amazon DynamoDB

Amazon Cognito Amazon Mobile Analytics

Amazon SNS Amazon Lambda

Amazon CloudFront

DNS Storage CDN Database Auth Analytics Notifications Compute

Build Cost-Aware Architectures

• Decouple Compute and Storage and grow them independently

Storage

• Build workflows that are aligned with your business model by creating cost-aware architectures that only scale to serve your customer to the accepted SLA

Compute

OK, but you said Hybrid Infrastructure?!

Many Worry There are Only Two Choices

Build a “Private”

Cloud

Rip everything out and move to

AWS

#1 #2

The Good News is it isn’t an ‘All or Nothing’ Choice

Corporate Data Centers

On-Premises Resources

Cloud Resources Integration

Integrated networking

Integrated access control

Integrated storage and

backups

Single pane of glass

# 10.0.100.0

# 10.0.200.0

Microsoft Active Directory

Custom LDAP

App 1

AWS Storage Gateway

Integrating AWS with existing On-Prem Infrastructure

Private Connectivity, Private Storage

Your Data Center

Private Connectivity, Private Storage

Your Data Center

Trend: Virtual Private Cloud

Your Data Center

Project A Deployed

Virtual Private Cloud (VPC)

Direct Connect

Extending Your DC to your Cloud Provider

Your Data Center

Your LAN Segments

AWS VPC

Tools to Support Hybrid IT Architectures

VM Import/Export

VPC Network

IAM Policies

Virtual Images

On-Premise Apps

Private Network

Your Data Centers VPC

Corporate Directory

Your Cloud Apps

Your Data Our Storage

Integration into existing Tools

Management Portal for vCenter

Management Pack for SCOM

Systems Manager for SCVMM

Common Hybrid Workloads

Application Server

Virtual Server

File Server

Database Server

Backup System

Backup to Cloud Storage • Eliminate tape, hardware, off-site storage

• Reduce capital expense for backup

infrastructure

• Never worry about backup durability

• Never run out of backup capacity

• Data stored off-site, with high durability, in

multiple locations

Backup and Archive

Amazon S3

Application Server

Virtual Server

File Server

Database Server

Amazon S3

Solutions supporting backup to S3

Veeam Backup & Replication

Symantec Net Backup

Oracle RMAN and Secure Backup Module

CommVault Simpana

AltaVault (SteelStore)

Backup System

Backup and Archive

Application Server

Virtual Server

File Server

Database Server

Backup Server

Cloud on standby DR setup • Eliminate need for DR data center

• Reduce capital expense for duplicate

infrastructure

• Pay for only what you use when you use it

• Real-time, secure, database replication from

on-premise to down-sized database servers

• Application backups and virtual server images

stored on cloud storage

Amazon S3

Database Server

Disaster Recovery

Corporate Network

App A

App B App C

Container

DevOps

Template VDI

Innovation & Agility Automated builds and deployment of

code

Idempotence Numerous disposable environments that

can be (re)built within a click allowing regression tests in identical setups

Cost Effective Environments can be disposed or

stopped when unused

Scalability Perform performance and stress tests

with potentially thousands of simulation nodes

Development and Test

But how about Security & Compliance?

AWS Foundation Services

Compute Storage Database Networking

AWS Global Infrastructure Regions

Availability Zones Edge Locations

Client-side Data Encryption

Server-side Data Encryption

Network Traffic Protection

Platform, Applications, Identity & Access Management

Operating System, Network & Firewall Configuration

Customer content

Cust

omer

s Let your cloud provider do the heavy lifting for you

Customers are responsible for

their security and compliance IN

the Cloud

AWS is responsible for the security OF

the Cloud

Example: Data Sanitization at AWS

Final Thoughts

Final thoughts • Cloud should remove Shadow IT not encourage it • Cloud native is rare - Hybrid Infrastructure will be

essential for the upcoming years • Cloud Providers should remain agnostic to

software stacks and operating systems • Security is a shared responsibility, but cloud

providers can do the heavy lifting • Current Infrastructure jobs are not affected, but

new skills are required • Remain agile - Treat infrastructure as mutable,

servers should not be “hugged” anymore

Thank you!

Hugo Lerias Head of Public Sector, AWS DACH

23rd July 2015 Home to the Cloud, E-Shelter, Frankfurt