Tarry: I've worked with customers, have been an operations manager/director at those Internal IT shops. so my experience is : Yes, they exist but have never evolved to match an enterprise risk management plan. But then again, neither did the great financial institutions that merely relied on tools and didn't match ethics and individual responsibility of such risk containment imperative.
Are enterprises not now more distributed, outsourced, leveraged, and prone to merging and splitting than before? How can anyone say their business runs behind a single firewall, or even the moral equivalent of such a thing?
Tarry: I have seen some great models of security practices within converged businesses, where competitors have an agreed platform to assess risks together, for instance retail banking where a lot of information is available within a pool of systems and I've seen, as above example, very poorly managed "behind a silo-LOB" security practices.
Are the means of access to "enterprise" data not multiplying as computing devices and client platforms proliferate?
Tarry: They are there but trust me you'd save yourself a lot of trouble if you really really looked. As an example: A storage consultant colleague made a "rationalization plan" for a customer and I made a virtualization plan, we worked together and found out that his calculation would have driven down the storage requirements by 50%, while my calculations drove the calculations up by 400%! Obviously it was really a matter of a few TBs so it wasn't a big deal. We eventually chose for virtualization as we saw the ease of management, for the time being, there BUT if I were the customer I'd really do something else. So firms really need to appoint "trusted advisers" who constantly watch such over-subscription dilemma's and ensure that no x-plification of data is occurring.
Are the sources of "enterprise" data not also multiplying to include externally sourced information, sensors, and all the operational data from the outsourced functions?
Tarry: Good point. I am pretty sure that since its still a very human driven practice, it might seem as a first thing to do, without check what the dependencies are and what its consequences could be.
Are the clients connecting to "enterprise" data not also expanding for the same reasons? Is my Chumby expected to understand VPN and NAC before it can be a meaningful mini-dashboard? Is it really cost-effective to prevent employees from working at home, in starbucks, on planes, or while playing xbox?
Tarry: Greatest dilemma of it all is that we have not really understood the true power of teleputing. I explained the hybrid computing model from a device perspective to a customer at a conf where I spoke about GRC, I called it "Dirty-Clean, Clean-Dirty Device", the benefits of all sorts of models need to be filtered down and we'll see that eventual leaders will be the ones who would have tapped the "best practices of smart workers" and packaged it as enterprise-wide solutions. No, they don't need to understand all that, they just long-in. SSO it, pack it up in a Quick-boot Device's kernel and they're connected, samrt-meter them and send them "dry-bill" and let them know how responsible they've been.
Do most enterprise datacenters not resemble cloud datacenters to a great degree? Don't they have their own firewalls, policies and controls separate from the rest of the "enterprise"?
Tarry: No and Yes, a cloud Data Center should be build groud-up with such principles/frameworks as GRC, CSER, UC, SOA. So the foundation is there but the real work might as well call for a rebuild/new-build. You'd be shocked that you could consolidate dramatically there as well. You might end up bringing the DCs count dramatically. See Intel, I spoke to their team last year and they're bringing down some 130 DCs to 8 Hubs.
Yes and No again, policy makers will have to redefine that as we'll see that will change dramatically. We have several large DCs across the world, and I am working with my Chief Archtiect to redefine our Data Centers for the Cloud platform, it will need some major reshuffling for sure, I can foresee.
Is "enterprise IT vs. cloud" a useful distinction to make or not?
Tarry: Yes. There is a distinct difference between the two and it should be maintained. We've been there before and this time around relabeled Enterprise IT as Enterprise 2.0 and Cloud or the revived Enterprise Web 2.0 is the eventual served platform. While Ent. IT focuses on the composition and architecture of the IT ecosystem and associated business models to support Sustainable Cloud Applications or Applications/Services that need to be globally deliverable and sustainable.
HTH,
Tarry
On Wed, Dec 17, 2008 at 8:49 PM, Dan Kearns <dan.kearns@gmail.com> wrote:
I guess it's my day to stir up the cc list, but here's another topic I'm wondering about... I keep hearing phrases like "behind the firewall" and "internal IT" used, primarily to support points around control of QoS (including security), and also often to claim cost advantage.
My question is whether these things really still exist?
Are enterprises not now more distributed, outsourced, leveraged, and prone to merging and splitting than before? How can anyone say their business runs behind a single firewall, or even the moral equivalent of such a thing?
Are the means of access to "enterprise" data not multiplying as computing devices and client platforms proliferate?
Are the sources of "enterprise" data not also multiplying to include externally sourced information, sensors, and all the operational data from the outsourced functions?
Are the clients connecting to "enterprise" data not also expanding for the same reasons? Is my Chumby expected to understand VPN and NAC before it can be a meaningful mini-dashboard? Is it really cost-effective to prevent employees from working at home, in starbucks, on planes, or while playing xbox?
Do most enterprise datacenters not resemble cloud datacenters to a great degree? Don't they have their own firewalls, policies and controls separate from the rest of the "enterprise"?
Is "enterprise IT vs. cloud" a useful distinction to make or not?
-d
--
Kind Regards,
Tarry Singh
______________________________________________________________
Founder, Avastu: Research-Analysis-Ideation
"Do something with your ideas!"
http://www.avastu.com
Business Cell: +31630617633
Private Cell: +31629159400
LinkedIn: http://www.linkedin.com/in/tarrysingh
Blogs: http://www.ideationcloud.com
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google
Groups "Cloud Computing" group.
To post to this group, send email to cloud-computing@googlegroups.com
To unsubscribe from this group, send email to
cloud-computing-unsubscribe@googlegroups.com
To post job listing, send email to jobs@cloudjobs.net (position title, employer and location in subject, description in message body) or visit http://www.cloudjobs.net
To submit your resume for cloud computing job bank, send it to resume@cloudjobs.net.
For more options, visit this group at
http://groups.google.ca/group/cloud-computing?hl=en?hl=en
Posting guidelines:
http://groups.google.ca/group/cloud-computing/web/frequently-asked-qu...
This group posts are licensed under a Creative Commons Attribution-Share Alike 3.0 United States License http://creativecommons.org/licenses/by-sa/3.0/us/
Group Members Meet up Calendar - http://groups.google.ca/group/cloud-computing/web/meet-up-calendar
-~----------~----~----~----~------~----~------~--~---
Posts
No comments:
Post a Comment