Next Generation Data Centre Security Paul Mayne

February 5th, 2018

Table of Contents

Drivers and demands

A Data Center Security Transformation Model

Next Generation Data Center Security Architectures

A path to secure data centers

Drivers and Demands

Change drivers impacting Data Center Security Investments?

Which is safer my Data center or the Cloud?

Build vs buy vs lease decisions

Upgrade or Re-implement

Security?

Is this risk acceptable?

Where do I start with security?

Too much money for no

real return

Is my IT vendor the right

Security partner

Is Security liability shared?

How long will this investment

last?

The CXO demands on IT

Monetize Investments (Cloud DC/generate revenue vs cost consumption)

Protect existing customer base and revenue streams (Secure customers, employees and revenue

Drive new Revenue (Support innovation/open systems/Partner vs build)

Reduce or eliminate downtime of services and data loss. (zero downtime)

Keep the technology simple (Clear ROI/No bleeding edge)

Business driven security technology (Optimized investments)

A Data Center Security Transformation Model

A Data Center Transformation Model

Customer Access and Interface Services

Physical and Logical Security Services Security Partners

Compute Services

Communications Services

Storage Management

Services

Monitoring & Event Mediation

Service Catalog Manager

Financial Services

Lifecycle Management

Application Managers

Workflow Managers

Analytics

Operations Services Manager

Orc

he

stra

tio

n a

nd

Inte

grat

ion

Se

rvic

es

Ne

two

rk M

anag

em

en

t Se

rvic

es

Next Generation Security Data Center Architectures

Next Generation Security Architecture Overlay

Courtesy CISCO Cloud Data Center Architecture

Wiring Fire Control Cabinet Cooling Power UPS L1 Facility

Server SAN Network

IT Infrastructure

X86 Server Security SAN

Security

Virtualization Security

Host Security

Network Security

Physical Security

Data Security

Management Security

DC United Management

Service Resource Providing

SLA

Room Monitor

OM Management

United Portal

Muliti-DC Monitoring

X86 Physical Pool

Virtualization Pool(Government)

Resource Pool

Cloud Service

High-Performance Pool

Government VDC

Cloud Disk Cloud Host

Server SAN Network X86 Server Security SAN

Virtualization Pool(Enterprise & Public Service)

Resource Pool

Internal Cloud

General Resource Pool

Application

OA

Enterprise & Public Service Cloud

Cloud Service

VPC

Application

IT Infrastructure

High-Performance Pool

General Resource Pool X86 Physical Pool

Cloud Disk Cloud Host VPC

Government Portal

Education VDC

Digital Library

Education Resource Sharing

Police VDC

Car tracking system

Crime Information

System

Health VDC

Drug Monitoring

Epidemic Reporting .

.

Production VDC

OA

ERP

TEST VDC

WEB

BIG DATA VDC

Finance

BI

.

.

National Distributed Cloud Data Center 1

National Distributed Cloud Data

Center N

National Distributed Cloud Data

Center 2

…

A Distributed Cloud Data Center Architecture

The path to secure Data Centers

The real Business Drivers of Cloud DC

Protect Applications

Data

Customers

Responsiveness

Service Levels

Optimize Cost

People & Process

Investments

Support complexity

Underutilized resources

Grow Technology adoption in

the business

App rollout

Information availability

Service enablement

Enterprise Value

Implementing a Cyber Security Operations Center with the Cloud

Reporting Layer Security Management

Network Management

Device Management

User Management

Data Layer Security Events

Assets Policy

Management

Network Events

User Events

Logs Profiles

Data Acquisition Layer

Internet Routers Web Apps Firewalls Servers Switches Gateways