+40 256 706 057 [email protected]
Cloud Strategy for Your Organization: Peace of Mind (as a Service)

Cloud Strategy for Your Organization: Peace of Mind (as a Service)

Mihai Tataran
General Manager & Partner, Avalego
Microsoft Regional Director & Azure MVP

Before we begin

This article comes as a continuation of the previous ones in the series called
Cloud Strategy for Your Organization

and focuses on the last of the steps we usually take with our customers who migrate to the Cloud.

Click on the image to enlarge

Now we will focus more on getting the peace of mind while the workloads are running on Azure.

We will discuss what Managed Services on Azure and Microsoft 365 technically mean, what are the things a managed services provider or an internal IT operations (DevOps, IT) team should do proactively, focusing on aspects like:

  • Azure governance,
  • cost control,
  • security,
  • efficiency.

Why Peace of Mind?

The real question is:

While your solutions are running in Azure, is there anything you should be doing for your peace of mind?

One could think – “Isn’t the Cloud supposed to (maybe magically) take care of my software solution out of the box?”

The simple answer is while the Cloud offers us a lot of technology which makes IT operations much easier, especially under the Platform as a Service (PaaS) and Serverless offerings, it doesn’t mean that we don’t have to do anything anymore.

During our interactions with large organizations that we’ve helped in the past years to migrate to the Microsoft Cloud (Azure and Microsoft 365), we have discovered the best practices needed for good maintenance.

We have built those best practices in a set of services that we call “Peace of Mind (as a Service)” that include proactive and reactive measures. And in this article, I will discuss the proactive actions we usually take. The reactive actions I am referring to are the usual SLA-based support activities any managed services provider, or IT team already knows about.

Those proactive best practices and actions are grouped into 5 different categories:

  • Access and Users Experience
  • Analytics and Monitoring
  • Governance and Security
  • Performance and Cost Optimizations
  • Feature Usage and Roadmap

Further on, we will explore a few of them.

Access and Users Experience

There isn’t much to say here since the title is quite self-explanatory. What is worth mentioning is that there are specific techniques and tools related to authentication and authorization in Azure and Microsoft 365, which should be used properly to get the maximum benefits in a lot of areas, not only security but also cost control and monitoring for example.

This category of actions deals with:

  • Role Based Access Control
    This is how authorization on Azure resources, Resource Groups and Subscriptions should be done. One should make sure the right people or groups (from Azure Active Directory) have the right access to the right grouping of resources. This can have a tremendous impact not only on security, but also on resources’ organization (avoiding chaos, like a person without the right access being able to delete a resource), and cost control (restricting people which should not be able to create resources in a certain Subscription).
  • Multi-Factor Authentication
  • Policies
    Enforce some conditional access policies, e.g. enforce MFA for some users.
  • etc.

And this list is not an exhaustive one, but more like just a glimpse.

Governance and Cost optimizations

In general, governance can mean a lot of things, but we are thinking mainly of:

  • Resources organization
  • Resources security
  • Auditing
  • Cost control and optimization

For resources organization, we have to start from understanding the relationships between Tenants, Subscriptions and Resources:

A customer with an Office 365 tenant (domain) will have an associated Azure Active Directory, and an associated Azure tenant. The directory in Azure is the same as the directory in Office 365: Azure AD. All the other Office 365 services (Exchange Online, SharePoint Online, etc.) are using Azure AD for authentication and authorization.

An Azure Subscription is usually a cost center or part of a cost center (in a larger grouping of Subscriptions). There is also a way to group more Subscriptions in a Management Group, for even better organization.

Why is this grouping of resources relevant? Because you can apply your governance conditions, for example using Azure Policies, at the scope that you choose: at a Management Group, or Subscription, or Resource Group. An example would be to limit the types of VMs that can be created in a Management Group (a collection of Subscriptions). Or to limit the VMs in a Subscription to a specific Azure region.

Another advantage of sound grouping of resources is managing cost. First, you will be able to know your costs grouped by:

  • Cost centers (e.g. Subscriptions or Management Groups)
  • Usually, a Resource Group contains the resources with together make up a solution (with the exception of course when a solution uses resources that might be shared with other resources).
  • Type of resources, for example, resources used for testing, or by a certain user.

So cost control is crucial, especially in a pay-as-you-go type of Azure consumption. And it starts with proper allocation and grouping of resources.

Another thing is cost optimization. It can be done through a combination of, at least:

  • Policies
  • Alerts
  • Specific features like Azure Automation, DevTest Labs
  • Autoscaling

Policies

Setting up Policies like allowed VM types or resource types in general. They can be applied per Resource Group, Subscription, or Management Group.

Alerts

You can configure Azure alerts (from the Azure portal) like:

  • When a costly (you define what costly means for you) resource is created.
  • Showing orphaned resources – in combination with some custom code done with Azure Functions or Azure Automation. This is a very typical cost drain: expensive resources which are not being used anymore.
  • etc.

Or you can define cost/budget related alerts, such as when you’ve reached a spending limit, per resource group or per resource type.

Autoscaling

You can easily define autoscaling rules, so the infrastructure needed by your solution scales up or down, exactly as needed. Autoscaling can be applied easily (from the Portal or through scripting) for many compute resources (VM Scale Sets, Web Apps, etc.), or with some custom work, you can do it for other resource types like SQL Database or CosmosDB.

Conclusion

Managing workloads in Microsoft Cloud is done differently than on-premises.

There are proven ways and best practices for Managed Services on top of the Microsoft Cloud, and while developing our Peace-of-Mind service offerings we made sure we incorporate pretty much all of them. For more information about our services around these technologies, browse our website.

For more in-person, in-depth information about this particular topic, you can register for free at for the next edition of our annual Cloud Conference.

If you are interested to explore more on this topic, Mihai talks about how should companies approach Cloud and the best way to migrate the workloads to PaaS in a video series available here.

Mihai_Tataran

Mihai TATARAN is the General Manager of Avaelgo and CEO of InterKnowlogy. He is also Microsoft Regional Director, Microsoft MVP on Microsoft Azure, Microsoft Azure Insider, and Microsoft Certified Professional. Mihai has been teaching Microsoft technologies courses to software companies in Romania and abroad, being invited by Microsoft Romania to deliver many such trainings for their customers. Mihai has very good experience with large audiences at international conferences: DevReach in Bulgaria, Codecamp Macedonia; TechEd North America 2011, 2012 and 2013 – speaker and Technical Learning Center (Ask the Experts), Windows AzureConf. He is also the co-organizer for the ITCamp conference in Romania.

Free Workshop: Easily migrate to Microsoft 365

Free Workshop: Easily migrate to Microsoft 365

27 March 2019, 10:00 -12:00

Microsoft Romania, Piața Presei Libere 3-5, City Gate – South Tower, Sala Downtown 1, Bucharest

This workshop is designed for technical decision makers and senior IT professionals.

About the workshop

Whether you’re new to Microsoft 365 and/or Office 365 or just want to learn how to take better advantage of them, this workshop is for you. Microsoft 365, Office 365… If you’re thinking Wait – aren’t those the same thing?, you’re not alone. Confusing as it is, Microsoft has created 2 different product lines with extremely similar names. Each software is good for its own scenarios, but figuring out which is best for your business can be a real challenge. During the workshop, we’ll break down the differences between Microsoft 365 and Office 365 and explain what does each offer specifically. You’ll learn about the different plans so you can discover which plan works best for you.

Agenda

  • 09.45 – 10.00 – Workshop registration
  • 10.00 – 10.30 – Office 365 Overview
  • 10.30 – 11.15 – Microsoft 365: Windows 10 and EMS (Enterprise Mobility + Security)
  • 11.15 – 11.30 – Break
  • 11.30 – 12.00 – Office 365 or Microsoft 365? Which one works best for my organization?

Your Consultant

Daniel POPESCU is the Head of Avaelgo Managed Services department. He is responsible for leading, managing and developing the operations teams in our Managed Services Division including, technology implementations and pre-sales, 1st and 2nd line Services desk and Service Management.
Workshop gratuit: Migrarea eficientă a organizațiilor în Cloud. Prezentare de studii de caz Avaelgo

Workshop gratuit: Migrarea eficientă a organizațiilor în Cloud. Prezentare de studii de caz Avaelgo

23 Noiembrie 2018, 9:30-12:30

City Hub, Bulevardul Expoziției Nr. 2, București

Workshop-ul se adresează persoanelor tehnice de decizie.

Despre workshop

Vă invităm la un workshop gratuit pentru a afla mai multe detalii despre modul în care companii din diverse industrii și de diferite dimensiuni au migrat cu succes în Cloud și cum beneficiază acestea în urma migrării.

Modul în care migrarea în Cloud poate transforma operațiunile de zi cu zi, diferă mult de la o organizație la alta, fiind infulențate de prioritățile și nevoile fiecărei companii.

Scopul acestui eveniment este să vedeți câteva studii de caz, problemele inițiale de la care s-a plecat, suma de beneficii rezultate în urma migrării și cum au reușit alte companii să își atingă obiectivele de business.

Agenda

  • 09.30 – 10.00 – Cafea & Înregistrarea la workshop
  • 10.00 – 10.30 – Migrarea eficientă în Cloud – direcții, abordări
  • 10.30 – 11.00 – Studii de caz – Companii care au migrat în Microsoft Azure
  • 11.00 – 11.15 – Pauză
  • 11.15 – 11.45 – Studii de caz – Companii care au migrat la Microsoft Office 365
  • 11.45 – 12.15 – Migrarea eficientă în Cloud cu serviciile Avaelgo
  • 12.15 – 12.30 – Q&A

Consultantul Dvs.

Daniel POPESCU, Delivery Manager și Senior Cloud Architect la Avaelgo, este responsabil de construirea strategiei de IT a clienților, acționând ca un Trusted Advisor în relația cu CIOs, CTOs, IT Manageri și Enteprise Architects.

Cloud Strategy for Your Organization: Things You Need to Consider First

Cloud Strategy for Your Organization: Things You Need to Consider First

Mihai Tataran General Manager & Partner | Microsoft Regional Director, Azure MVP

Before we begin

Last year I wrote a series of articles focused on migrating to the Cloud, with examples on Microsoft Azure: on how to start and lift and shift 101. In this article, we are going to discuss how to start your strategy to migrate to the Cloud, based on the experienced we’ve got in the meantime, with enterprise customers, working on Microsoft Azure but also on Office 365 and Microsoft 365 migration projects. You may consider the road to the Cloud as a pipeline of steps, a minimalistic set of them being the ones presented in this diagram:

Click on the image to enlarge

We are going to focus on the very first step, just before actually moving to the Cloud.

Migrating to the Cloud: Options and scenarios

We usually have two types of customers or two types of migration projects:

  • Custom / Bespoke: complex organizations, complex projects;
  • Standard: most of the small and medium organizations can be approached in a standardized way.

Standard

While nothing is really standard in the IT Services world, we have some common methodologies created for similar projects. One example would be migrating to Office 365. There are differences from customer to the customer: they might currently use Exchange Server on premises (maybe 2010 or maybe 2006), they might use a Zimbra email server, they might have the server on-premises or hosted at a co-location provider, etc. But there are some common steps and a common methodology to migrate that customer to Office 365: email server, documents and much more. The same can be applied to projects involving migration to Microsoft Azure, and in the end, our customers benefit from the “Peace Of Mind” standard services suite that we are offering.

Custom

The rest of this article is focused on complex projects or organizations, where we typically don’t only talk about migrating a solution, but a suite of solutions with interdependencies and sometimes the whole IT of that organization.

Watch a video (in Romanian) where Mihai talks about the cloud strategy and how to start approaching the migration into the Cloud, as a follow-up to this article.

Drivers for Cloud migration

There can be many drivers toward such a move and here is a short list.

Efficiency

There are many scenarios where the customer sees huge cost savings. If you consider one of the key attributes of the Cloud, which is that you pay for what you use, the monthly cost of some complex workloads in IT can be much smaller that on premises. Among such scenarios I would enumerate:

  • DevTest: machines for testing, staging, etc. – which don’t need to run 24/7 but a mere few hours per day.
  • On/Off operations, e.g.: salary calculation, 3D rendering, etc. – operations which require computational power a few days per month or a few hours per day.
  • Disaster Recovery

This is another reason for the Cloud, and here is an article on this very subject.

Access to technology

Technologies like: Big Data, Machine Learning, Artificial Intelligence, etc. – are very expensive or simply cannot be installed and managed on-premises because of the complexity they imply. The Cloud is great also because it gives access to such amazing technologies to everyone, in a pay-per-use cost model.

Startup

If you are a greenfield investment or a startup your entire IT infrastructure can be operational in a matter of days. Your email, documents sharing, collaboration tools, your invoicing application, your CRM, your ERP, etc. – all of them can be provisioned easily and fast in the Cloud, without the need to acquire any IT equipment except for employees’ laptops, tablets, and smartphones.

We should not see the Cloud as just another location for some servers. If we only see it like that, we fail to optimize the Cloud usage.

Initial things to consider

It is an IT project, but before starting any actual IT work we should consider a few aspects.

Complexity

Migrating an organization or a set of solutions to the Cloud is not a simple, risk-free project. It takes time, usually months or years, and it impacts many more departments than IT.

Current IT state

From the migration perspective, there is the need to analyze the initial state of the IT infrastructure. Questions like these need to be asked in the beginning:

  • Is there a consolidated infrastructure?
  • Is there a common identity mechanism for all users? Are there multiple identities, Single-Sign-On, Federation mechanisms in place?
  • Are current workloads virtualized, or are they running directly on physical machines? Which virtualization technology is being used?
  • Is the customer already using the Cloud? From which providers? If using Azure, which kind of contract (pay as you go / Enterprise Agreement / CSP)?

Vision

The current state analysis needs to be augmented with envisioning what IT could do for the business if it had the tools. Another key attribute of the Cloud is that it delivers technology which does not exist or is very expensive to have on premises. Aspects like: Big Data, Machine Learning, Artificial Intelligence are such examples, and in this phase, we should discuss with the customer what could be done for the business. Or even simpler than that: you might need a machine with huge computational power or a new piece of software that the company just bought. In the Cloud, provisioning such machines with tens of cores and hundreds of GB of RAM (or even TB of RAM) takes minutes.

Financial

What is the preferred payment strategy? Does the client need a pay-per-use type of contract or a capital multi-year investment? Both are possible, with advantages on each side, and the decision to choose one over the other depends very much on the specifics of every customer.

HR

Some roles within the IT department will need to change. There will be new technologies, new mechanisms to be operated and supported, so a skill upgrade needs to be done. Before that, there is also a paradigm shift: we should not see the Cloud as just another location for some servers. If we only see it like that, we fail to optimize the Cloud usage. In that respect, the IT personnel from the customer needs to go through a mindset transformation before acquiring the specific technical skills needed for the Cloud.

Roles

Roles within the project team must be clearly identified: the customer must understand what their role is, and what is expected from his team before, during and after the migration project.

Buy-in

Especially from top management, but also from all department/business unit leaders who are using the IT systems which will move to the Cloud. A strategy is needed for how the users will be impacted by this change, and what we need to do to help them. The easiest way to get the client’s organization buy-in we found is to start with a pilot or a simple and quick project which delivers immediate benefits, within the first months of the whole program.

Conclusion

This article described just the first step of a Cloud migration program for an organization. There are multiple steps, that will cover in the upcoming weeks. While others are optional, many of them are essential. In the next article, you’ll find out what you need to know about migrating workloads to PaaS.

If you are interested to explore more on this topic, Mihai talks about the cloud strategy and the things you need to consider before actually starting the migration into the Cloud in a video available here.

Mihai_Tataran

Mihai TATARAN, Microsoft Azure MVP, is the General Manager of Avaelgo, and Microsoft Regional Director, Microsoft MVP on Microsoft Azure, Microsoft Azure Insider, and Microsoft Certified Professional. Mihai has been teaching Microsoft technologies courses to software companies in Romania and abroad, being invited by Microsoft Romania to deliver many such trainings for their customers. Mihai has very good experience with large audiences at international conferences: DevReach in Bulgaria, Codecamp Macedonia; TechEd North America 2011, 2012 and 2013 – speaker and Technical Learning Center (Ask the Experts), Windows AzureConf. He is also the co-organizer for the ITCamp conference in Romania.

Free Workshop: Cloud Migration Strategy & Datacenter Assessment

Free Workshop: Cloud Migration Strategy & Datacenter Assessment

 

 27 February 2018, 09:30 – 12:00
   Sediul Evozon System, Calea Moților 62, Cluj Napoca 
   This workshop is designed for CxO level managers, IT managers, team leads, project managers, who feel the Cloud could be a great approach for their company, but don’t know exactly how to proceed further.

 

About the workshop

How do you know which path is best to take?
How do you make sure your migration is a success?

Avaelgo invites you to a free workshop focusing on Cloud migration strategy.

In this workshop we will address one of the easiest ways to migrate existing solutions into the Cloud: using the Lift and Shift approach, or how can existing solutions be replicated in the Cloud without changing their architecture. Lift and Shift in Microsoft Azure brings advantages such as scalability, agility, and cost-effectiveness, while also representing a good start for a recovery plan in case of disaster.

Here are the key benefits of moving into the Cloud with Lift and Shift:

  • Eliminate the unexpected downtime and poor performance of your application
  • Grow efficiently – use the Cloud to optimize your costs, by reducing or eliminating hardware costs and maintenance and paying only for what your application uses
  • Easy recover data in case of data loss scenarios (data accidentally deleted, volume deleted, viruses etc) or disasters (server destroyed/stolen, disk crash)

Agenda

09:30 – 10:00 Registration & Coffee
10:00 – 10:45 Cloud Migration Strategies (how and in what circumstances the Cloud makes sense, which are the first things to consider when addressing the issue of migrating a Cloud solution, or defining an organization-level strategy towards the Cloud)
10:45 – 11:00 Break
11:00 – 11:45 Lift and Shift & Datacenter Assessment
11:45 – 12:00 Q&A

Meet the Trainer

Mihai_Tataran
Mihai TATARAN, Microsoft Azure MVP, is the General Manager of Avaelgo, and a Microsoft MVP on Microsoft Azure, Microsoft Azure Insider, and Microsoft Certified Professional. Mihai has been teaching Microsoft technologies courses to software companies in Romania and abroad, being invited by Microsoft Romania to deliver many such trainings for their customers. Mihai has very good experience with large audiences at international conferences: DevReach in Bulgaria, Codecamp Macedonia; TechEd North America 2011, 2012 and 2013 – speaker and Technical Learning Center (Ask the Experts), Windows AzureConf. He is also the co-organizer for the ITCamp conference in Romania.

Pin It on Pinterest