Important Announcement
PubHTML5 Scheduled Server Maintenance on (GMT) Sunday, June 26th, 2:00 am - 8:00 am.
PubHTML5 site will be inoperative during the times indicated!
EN
Home Explore U&US 8 - Mars 2019

U&US 8 - Mars 2019

Published by Telindus, 2019-03-26 11:18:36

Description: U&US 8 - Mars 2019

Search

Read the Text Version

By Telindus Business À la une Magazine Telindus renforce son o re U&S multi-cloud avec AWS, Microsoft et Google Cloud & Regulation A possible match! CSIOC Sécuriser la transformation numérique More inside #8 M U LT I - C LO U D A NEW STANDARD AND DIGITAL TRANSFORMATION ENGINE



3 U#8&US ÉDITO | www.telindus.lu Chers amis, public, privé et hybride. Aujourd’hui, Ce numéro spécial “clouds” vous de nombreuses organisations de donne les clés d’un nouveau Cette 8ème édition du Magazine toutes tailles s’appuient déjà sur modèle où la combinaison de U&US vous emmène en voyage des architectures multi-cloud et services multi-fournisseurs IaaS, dans LES nuages. même les plus réticentes d’entre PaaS, SaaS, publics, privés ou elles s’apprêtent à sauter le pas, hybrides permet aux organisations C’est un fait incontesté : le à l’instar du secteur financier qui de sélectionner l’offre adéquate cloud a profondément modifié a entrepris de faire cohabiter pour chaque besoin. Je vous laisse le fonctionnement des entre- harmonieusement conformité donc découvrir sans plus attendre prises, leur apportant agilité et réglementaire et technologies cette nouvelle édition qui ouvre flexibilité mais aussi transparence et cloud. notamment ses colonnes à deux maîtrise des coûts dans un marché géants de l’industrie numérique. globalisé et en pleine mutation Pour ces entreprises, il ne s’agit numérique. plus de savoir s’il faut adopter LE En vous souhaitant une excellente cloud, mais d’apprendre à tirer lecture. Qu’il soit privé - propre à une seule parti de l’immense potentiel DES organisation - ou public - partagé clouds, condition nécessaire à une GÉRARD HOFFMANN par de nombreux clients - le cloud transformation numérique réussie. CEO, Proximus Luxembourg se fait hybride pour offrir aux entreprises le meilleur des deux mondes. Et voilà qu’aujourd’hui il devient multiple ! Agnostique par nature, le multi- cloud renvoie à divers choix de combinaison : multiplication des abonnements dans le cloud public, diversification des applications SaaS, panachage entre cloud

4 SMOAMIR- E 5 À la une U&US #8 8 Avril 2019 18 Cloud computing 20 Towards enterprise wide implementation PROXIMUS LUXEMBOURG S.A. 28 Timeline 18, rue du Puits Romain 32 Z.A. Bourmicht 8070 Bertrange 52 Multi-cloud Tél :+352 450 915-1 56 Une approche portée par les priorités métier GESTION ÉDITORIALE 62 Key Figures Michaël Renotte PHOTOGRAPHIES Cloud & Regulation Loris Romano & Olivier Dessy A possible match! CONCEPTION GRAPHIQUE Case study KNEIP Deuux KNEIP entrusts the protection of their data to Telindus IMPRESSION Cyber Security & Intelligence Operations Center 1000 exemplaires Sécuriser la transformation numérique POUR ÉCRIRE À LA RÉDACTION Afterword [email protected] @ telindustelecom /Telindus-luxembourg

5 UÀLNAE La certification au cœur de la stratégie de Telindus Trois ans après l’obtention de sa certification ISO besoin d’un partenaire de confiance pour l’externalisation 27001, Telindus vient d’être recertifié par Bureau de leur IT, supportant leurs activités stratégiques, les aidant Veritas avec un élargissement du périmètre aux à s’adapter aux changements régulatoires et les protégeant services de cybersécurité. des risques de plus en plus élevés de cyberattaques. Nous leur démontrons ici que la sécurité est intégrée et managée Ainsi le système de management de la sécurité de l’in- by-design et by-default par nos équipes selon une approche formation soutenant les activités d’approvisionnement, fondée sur les risques. d’exploitation et de supervision opérationnelle de cloud, À LA UNE | www.telindus.lu des services de cyber-sécurité, des services managés et des services d’externalisation fournis par Telindus S.A. à ses clients est conforme aux attentes de cette norme. Cette certification vient reconnaître officiellement à nouveau nos qualités opérationnelles de managed cloud services provider. Notre demande d’extension du périmètre vers la cybersécurité est une démarche naturelle: nos clients ont

6 Cloud et Réglementation : la rencontre possible grâce à un partenariat étroit avec Google et Cisco Comment le cloud public peut-il apporter de la valeur à l’industrie financière ? La réponse est sans ambiguïté : informatique sans serveur, combinant la valeur du cloud public avec les capacités extension des ressources à la demande, Intelligence de ses propres structures d’hébergement. Pour y Artificielle prête à l’emploi et Apprentissage Machine sont parvenir, la société coopère étroitement avec Cisco, autant de vecteurs de croissance offerts par le cloud au partenaire de longue date et leader dans le domaine secteur financier. de la connectivité et des réseaux, et avec Google qui a construit sa plateforme cloud sur base d’une approche Telindus a pour ambition de faciliter et d’accélérer résolument open source. l’accès des institutions financières au cloud public en Telindus, un Telindus renforce son cloud hybride consultant parte- et déploie la solution Microsoft naire d’Amazon Azure Stack avec Hewlett Packard Web Services Enterprise Avec ses ingénieurs certifiés, Telindus Telindus, hébergée au Luxem- disponible “as-a-service” depuis permet aux entreprises de trouver bourg, propose une plateforme les centres de données de Telindus. la configuration idéale sur ce cloud de cloud agile et flexible basée public de première classe. Telindus sur les technologies Microsoft Telindus permet aux entreprises de est aussi en mesure de fournir des Azure Stack et les équipements bénéficier de l’agilité et de l’évoluti- ressources AWS, de les intégrer et HPE. vité du cloud public avec une vraie de les exploiter. “expérience Azure”, tout en offrant Les fonctionnalités de développe- des niveaux de contrôle et de perfor- ment uniformes et de déploiement mance équivalents à ceux d’un centre universelles d’Azure Stack, associées de données local hautement sécurisé. à l’expérience acquise par Telindus, répondent aux exigences spécifiques des entreprises, quel que soit leur secteur d’activité. Azure Stack est

7 Telindus et Resultance partenaires pour une transformation numérique réussie Telindus et le cabinet de conseil C'est donc tout naturellement que Telindus en performance opérationnelle et Resultance ont choisi d'unir leurs forces Resultance partagent la conviction pour aider les entreprises à réussir leur qu'une transformation numérique transformation digitale, en alliant l'expertise réussie doit s’appuyer sur une réflexion technologique de Telindus au savoir-faire et une analyse de création de valeur. métier de Resultance. Les entreprises doivent tirer profit des technologies de l’information et de Les partenaires œuvrent dans le cadre de la communication afin de gagner plusieurs programmes dont Fit4Innovation en compétitivité , en performance ou encore Industrie 4.0 et comptent déjà et renforcer leur capacité à innover. à leur actif plusieurs projets ambitieux au Luxembourg. il s'agit d'amener la technologie là où elle créera le plus de valeur pour l'entreprise. Telindus et Agile Partner unissent leurs forces au service de la transformation digitale de leurs clients C’est en écoutant les besoins expri- Présent sur le marché luxembourgeois depuis més par les entreprises qu’Agile- 15 ans, Agile Partner est un expert reconnu Partner et Telindus ont décidé de dans la transformation des applicatifs. concrétiser leur ambition de parte- nariat. Les deux sociétés complètent Telindus apporte le conseil en architecture ainsi leurs offres cloud et proposent hybride, les services de migration et de gestion désormais un accompagnement en environnement multi-cloud. de bout-en-bout, couvrant tant la sphère applicative, que l’infrastruc- Ensemble, Agile Partner et Telindus possèdent ture et la consultance. tous les atouts pour devenir les partenaires de référence des entreprises confrontées à Ensemble, ils accompagnent les un défi de transformation stratégique. Ce entreprises luxembourgeoises de partenariat permet aux clients de mieux toute taille dans leur voyage vers le appréhender l’ensemble des défis posés par cloud à tous les niveaux: stratégie, la transformation digitale en accompagnant gestion du changement, conduite au mieux leur migration vers le cloud. de projet, logiciel et infrastructure.

8 CCTIOLNOMGUPDU- TOWARDS ENTERPRISE WIDE IMPLEMENTATION

9 10 years ago, cloud computing A fast growing began to spread as a buzzword industry for server virtualization. At that time, sticking a “cloud label” Strong updrafts Cloud Wars onto anything that looked like shared hosting, colocation, or Although findings about the volume A handful of hyperscale players other service-based IT solutions and growth rate of the global cloud controls a large portion of the diffe- allowed vendors to advertise old computing market vary from one rent public cloud segments. These products as fresh innovations. research firm to another, they all giants have dominated the cloud This created a lot of confusion indicate that the cloud continues for several years now and are still around the technology, and it to grow at a faster pace. expanding at impressive rates at the wasn’t until 2010, when Gartner expense of non-cloud IT companies issued the first Magic Quadrant Gartner forecasts that by the end of and other smaller cloud providers. dedicated to IaaS, that the 2019, total worldwide revenues from According to Forrester, Amazon, skies finally started to clear for public cloud computing will grow by Microsoft, and Google will have cloud computing. 17.3% from the previous year’s figure to captured 76% of the cloud platform € 181.83 billion, up from € 155.03 billion market by the end of 2018, a share Today, a decade later, the cloud has in 2018 1. For its part, Forrester predicts that should grow to 80% in 2020 6. evolved into an essential business that the global cloud computing technology. Virtually all organiza- market will exceed €176 billion in 2019, IBM and Alibaba are also firmly tions, regardless of size, industry, or expanding at more than 20% 2. On a engaged in the battle, fighting for location, now rely on the cloud for a longer-term basis, Gartner sees cloud the fourth place in the ranking of the broad range of business needs, from computing’s market size growing world’s biggest public cloud provi- SaaS-based versions of legacy appli- to over €224 billion by 2020 3, while ders. In cloud computing, Alibaba is cations to IaaS-deployed strategic Forrester estimates that the Public primarily known for its rapid growth in enterprise-level systems. Cloud will reach €204 billion in 2020  4. China, where the company has long IDC places this figure at €328 billion been the leading player in e-com- This evolution has largely been driven two years later, in 2022 5. merce. But the Chinese giant is no by the uninterrupted development longer just a regional power. Accor- of use cases for cloud computing ding to Synergy Research Group, beyond cost reductions and produc- Alibaba surpassed IBM in the first tivity gains. Practically all the major quarter of 2018 to become the world’s IT innovations in the recent years - fourth biggest provider of cloud such as the Blockchain, AI, Machine infrastructure and related services 7. Learning, Big Data or Advanced STORY | www.telindus.lu Analytics - owe much of their exis- 1 Gartner, Gartner Forecasts Worldwide Public Cloud Revenue to Grow 17.3 Percent in 2019 tence to the cloud. 2 Forrester, Predictions 2019: Cloud Computing 3 Gartner, op. cit. In this article, we offer you an overview 4 Forrester, Public Cloud Market Will Grow To $236 Billion In 2020 of the current state of cloud compu- 5 IDC, Worldwide Public Cloud Services Spending Forecast to Reach $210 Billion This Year ting, from overall trends to adoption 6 Forbes, Forrester's 10 Cloud Computing Predictions For 2018 rates and developments for specific 7 Synergy Research Group, AWS is Leading the Public Cloud Market in all Major Regions industries, a glance back into the history, as well as a look ahead into the future.

10 Cloud adoption and usage Winds of change The cloud is seeing increased 81% of enterprises have a multi-cloud usage and adoption rates among strategy (RightScale’s definition of businesses considered as a whole. multi-cloud is a combination of public But the numbers vary according and/or private cloud architectures, to business size, cloud architecture see Fig. p 11) (public, private, hybrid) and cloud segment. The 2018 edition of Right Cloud users are running applications Scale’s State of the Cloud Report in an average of 2.7 public clouds and shows some very revealing cloud 3 private clouds adoption and usage trends 8 : Both public and private cloud adoption grows. However, many more enterprises see public cloud as their top priority, up from 29 percent in 2017 to 38 percent in 2018 SMB companies run 80% of workloads in the cloud (48% in public cloud and 32% in private cloud) Large companies run 77% of workloads in the cloud (32% in public cloud and 45% in private cloud) Barriers to cloud adoption (expertise, security, budget, etc.) are lessening Top cloud challenges are security and spend 8 RightScale, State of the Cloud Report 2018

11 Respondents with 1.000+ Employees 81% of companies have a multi-cloud strategy 10 Multiple % Private 21% Multiple Source: Righ Scale 2018 State of the Cloud Report Public 9% Single Public 81% 54% %NoSiPnglalensPrivate Multi-Cloud 51 Hybrid % Cloud ‘‘ As it enters its second decade, cloud computing is increasingly becoming a vehicle for next-generation digital business, as well as for agile, scalable and elastic solutions. ’’ DAVID MITCHELL SMITH Vice President and Gartner Fellow in Gartner Research ‘‘ By 2021, more than half of global enterprises already using cloud today will adopt an all-in cloud strategy. ’’ GARTNER, “Predicts 2017: Cloud Computing Enters its Second Decade”

12 Types of cloud deployments There are different ways to deploy cloud resources. Options for deployment include public, private, and hybrid cloud. All three scenarios provide similar benefits, inclu- ding cost-effectiveness, performance, reliability, and scale, but which deployment method you choose depends on your business needs. Public cloud Private cloud Hybrid cloud Public clouds are owned A private cloud consists of Hybrid clouds combine public and operated by a third- computing resources used and private clouds, bound party cloud service provider exclusively by one business or together by technology that and deliver their computing organization. The private cloud allows data and applications resources like servers and can be physically located at to be shared between them. By storage over the Internet. With your organization’s on-site allowing data and applications a public cloud, all hardware, datacenter, or it can be hosted to move between private and software, and other suppor- by a third-party service provi- public clouds, hybrid cloud ting infrastructure is owned der. But in a private cloud, the gives businesses greater flexi- and managed by the cloud services and infrastructure are bility and more deployment provider. In a public cloud, always maintained on a private options. For instance, you you share the same hardware, network and the hardware and can use the public cloud for storage, and network devices software are dedicated solely high-volume, lower-security with other organizations or to your organization. Private needs such as web-based cloud “tenants”. Public cloud clouds are often used by orga- email, and the private cloud deployments are frequently nizations with business-critical - or other on-premises used to provide web-based operations seeking enhanced infrastructure - for sensitive, email, online office applica- control over their environment. business-critical operations tions, storage, and testing and like financial reporting. development environments.

13 Types of cloud services Most cloud computing services fall into three broad categories: infra- structure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS). These are some- times called the cloud computing stack, be- cause they build on top of one another. SaaS IaaS PaaS is a method for delivering is the most basic category of refers to cloud compu- software applications over cloud computing services. With ting services that supply an the Internet, on demand IaaS, you rent IT infrastructure on-demand environment for and typically on a subscrip- - servers and virtual machines developing, testing, delive- tion basis. With SaaS, cloud (VMs), storage, networks, ring, and managing software providers host and manage operating systems - from a applications. PaaS is designed the software application and cloud provider on a pay-as- to make it easier for develo- underlying infrastructure, and you-go basis. pers to quickly create web or handle any maintenance, like mobile apps, without worrying software upgrades and secu- about setting up or managing rity patching. Users connect to the underlying infrastructure the application over the Inter- of servers, storage, network, net, usually with a web browser and databases needed for on their phone, tablet, or PC. development. Common examples are email, calendaring, and office tools.

14 Sectorial focus While the cloud transforms Increasingly, however, as cloud provi- Healthcare every single sector in the ders tailor their offerings to meet global economy, here we simply the industry’s needs, many financial Similarly, the healthcare sector has focus on the financial services, services firms are moving their appli- been slow to adopt cloud techno- healthcare, and manufacturing cations to the public cloud. In that logy because of serious compliance verticals. The reason being respect, a number of developments concerns and data security issues. that these three sectors are have helped increase cloud adoption For some time after other indus- among the industries which and usage in the financial services tries started effectively moving to will be massively impacted industry 10: the public cloud, healthcare’s cloud by the cloud, according to an adoption rates remained among Economist Intelligence Unit Improved data security and the lowest. study 9. privacy capabilities But the attitude of healthcare orga- Financial Narrowing gaps in skills and nizations toward the public cloud services expertise has evolved significantly, as cloud providers have introduced tools In a heavily-regulated industry like the Lesser apprehensions about and measures like end-to-end financial services sector, compliance vendor lock-in data encryption, access manage- is a huge factor that determines how ment services, and personal data quickly firms in the sector adopt new Willingness to reengineer and health information protection technologies like the cloud. With internal processes and mechanisms. highly sensitive data involved, security workflows and privacy also rank high on the list Globally, the sector is projected to of barriers to implementation. As a result, two key trends now shape see double-digit growth in cloud how the cloud impacts this sector. The spending, which is expected to reach first is the adoption of cloud-based €30 billion by 2022. The European applications for back office and market for healthcare cloud compu- customer-facing internal systems. The ting should reach €7.4 billion by 2022, second is the emergence of FinTech growing at a rate of 12.4% during the solutions that provide cloud-enabled period from 2017 to 2022 11. applications and software for delivery of financial services. 9 The Economist Intelligence Unit, Ascending cloud: The adoption of cloud computing in five industries 10 The Wall Street Journal, Deloitte Insights, Cloud Adoption in Financial Services 11 ReportLinker, Healthcare Cloud Computing: Global Markets to 2022

15 The Economist Intelligence Unit study Manufacturing outlines a few cloud computing use cases in the healthcare industry as Cloud computing has also been follows 12: slow to take off in the manufactu- ring industry. This is largely due to Remote diagnostics the intrinsic complexity of manu- and treatments facturing processes and the diffi- Supporting preventive care culty to embed cloud computing Improving treatment into physical systems. This kept outcomes switching costs and barriers to Point-of-care access to adoption very high for most manu- medical data facturers so that moving away Development of mobile from legacy IT systems was not a and IoT ecosystems viable option 13. Today, however, manufacturers are 12 The Economist Intelligence Unit, op. cit. heavily investing in cloud-based IT 13 The Economist Intelligence Unit, op. cit. platforms like IoT integration, greatly 14 IDC, Cloud Adoption in the Manufacturing expanding the industry’s cloud adop- tion and usage. An IDC survey of  Industry manufacturing firms reveals a clear 15 The Economist Intelligence Unit, op. cit. uptrend in the industry’s reliance on cloud computing 14: 66% of respondents use a public cloud implementation of 2 or more applications, while 68% use a private cloud Respondents also plan to increase the cloud’s share in their annual IT budget Cloud-based services will make up almost 50% of organization-level software usage among manufactu- rers by 2023 The Economist Intelligence Unit also reveals several key areas where the cloud plays a big role in manufac- turing: production processes, supply chain management, design and prototyping, as well as inventory, order and distribution management15.

16 3 innovations that will reshape the cloud AI-enabled Serverless Edge and fog Enterprise IoT architectures computing As the number of enterprise IoT (Inter- Serverless computing became a Edge and fog computing are ways net of Things) projects double and focus of attention for the developer to efficiently manage the massive IoT standardization and interope- community in 2014 when Amazon amounts of data generated by IoT rability initiatives start taking root, it launched AWS Lambda as a cloud devices. These two related architec- seems that the technology has finally service to help developers concen- tures minimize latency in the cloud by come of age. According to the IoT trate on the application at the carrying out much of the critical data expert community RT Insights, enter- task level, without worrying about processing close to where the data prises now leverage IoT capabilities managing server-level resources or comes from - sensors, relays, and to generate measurable business processes. other connected devices - rather value rather than simply using IoT as than doing all the computing at tradi- a means for connecting devices 16. Serverless is now one of the most tional cloud data centers. AI (Artificial Intelligence) enables interesting trends in cloud computing. much of this transformation. When Going serverless means that deve- While the two terms are often used embedded into IoT systems, AI and lopers simply have to run their code interchangeably, there is actually a Machine Learning become the via hosting providers like Amazon, major difference between the two brain while IoT provides ways to Microsoft, Google, etc. These vendors, architectures. In edge computing, both gather data and to act on AI in turn, manage application runtimes data processing takes place direc- system’s decisions. This synergy is - load balancing, server provisioning, tly inside connected devices, like already being used in manufacturing OS infrastructure, etc. - and deliver programmable automation control- for predictive analytics, in healthcare the resources needed by the appli- lers. Fog architectures, on the other for remote patient monitoring, and in cation on a pay-as-you-go basis. hand, move computing to the local other industries. area network level, such as fog node or IoT gateway. 16 RTInsights.com 17 IDC, IDC FutureScape: Worldwide Internet IDC predicts that by 2019, 45% of of Things 2016 Predictions IoT-created data will be stored, 18 IDC, IDC FutureScape: Worldwide IoT 2018 processed, analyzed, and acted Predictions upon close to, or at the edge of the network  17. The research firm also forecasts that infrastructure mana- gers will be asked to deliver solu- tions that reduce time-to-value from data collected from connec- ted devices, beyond the four walls

17 of the datacenter. Therefore, by 2020, IT spend on Edge Infrastruc- ture will reach up to 18% of the total spend on IoT infrastructure, driven by deployments of open and converged software-defined IT/OT systems 18. Industries like manufacturing, financial services, healthcare, and telecom are already seeing the benefits of faster, near-real-time, and continuous data processing from connected devices. ‘‘ By 2025, 80% of enterprises will have shut down their traditional datacenter. ’’ Gartner Blog Network, The data Center is Dead, David Cappuccio

18 TIMLEINE After a long history, public cloud computing comes to Luxembourg Cloud Computing is not a twenty-first century technology. Cloud computing developed gradually through a number of milestones which include Grid Computing, Utility Computing, Application Service Provision, and Software as a Service. But the overall concept of delivering computing resources through a global network has started in the sixties. 1969 ARPAnet Early 1980s TCIP/IP 1986 NSFNET project The Advanced Research Project The National Science Foundation (NSF) The NSF creates network Administration (ARPA) is established launches an initiative to build a national access to the supercomputer by the US government. Its initial backbone network based on TCIP/IP sites in the US. purpose was to communicate and protocol and link supercomputer centers share computer resources among and regional academic networks. scientific users. Late 1980s 1990 The rise of the 1998 Virtualization Internet Commercial Internet Service VMware Inc. introduces the Providers (ISPs) begin to emerge. The Internet becomes visible to all when concept of virtualization on computer scientist Tim Berners-Lee invents the x86 platform. the World Wide Web. In doing so, Berners- Lee links hypertext documents to an information system, making it accessible from any node on the network.

19 1999 Salesforce.com 2002 Amazon 2006 Amazon Elastic Web Services Compute cloud A pioneer in delivering enterprise applications via the cloud, now Shortly after the launch of Salesforce, Amazon launches its Elastic known as Software-as-a-Service Amazon launches its Amazon Web Services Compute cloud (EC2), a (SaaS). Salesforce multi-tenant (AWS) platform with the aim of delivering a commercial web service applications are designed to run suite of cloud-based computing services allowing small companies in the cloud, be accessible over to customers that would only pay for what and individuals to rent the internet and be used by large they use. computers to run their own numbers of customers at low cost. applications on. 2008 Google App 2008 Gartner begins 2010 Microsoft Azure Engine to talk of cloud Software giant Microsoft Google launches its Google App Research firm Gartner begins to discuss enters the cloud market Engine Platform-as-a-Service, the rise of cloud computing, describing with the launch of its cloud allowing developers to host web cloud computing as “a style of computing computing platform Azure in applications in its managed in which massively scalable IT-related 2010, after it was announced datacenters. capabilities are provided as a service in 2008. using internet technologies to multiple external customers.” 2010 Rackspace 2011 IBM SmartCloud 2013 Google OpenStack Compute Engine IBM launches SmartCloud, a line of Rackspace and NASA pioneered a enterprise-class cloud computing Google Compute Engine free open source software platform technologies for building private, public is officially launched in for cloud computing - OpenStack and hybrid clouds. 2013 as an addition to the - to help organizations run cloud Google Cloud Platform. The computing on standard hardware. offering stands as the IaaS Since 2016, OpenStack has been component of the platform. managed by the OpenStack Foundation, a non-profit entity 2017 CSSF established in 2012. Over 500 Cloud Circular companies have joined the project since. On May 17 2017, the CSSF publishes the circular 17/654, with the purpose to clarify TIMELINE | www.telindus.lu the regulatory framework governing IT outsourcing in Luxembourg relying on a cloud computing infrastructure provided by an external provider.

20 MCULOLTUI D UNE APPROCHE PORTÉE PAR LES PRIORITÉS MÉTIER

21 VISION | www.telindus.lu L’opportunité d’exploiter les avan- Les apports 70% tages propres à chaque fournis- seur de services cloud apparaît du multi-cloud of enterprises will be aujourd’hui comme un élément implementing a moteur du développement des La clé du succès d’une stratégie entreprises. L’approche multi-cloud multi-cloud réside dans une bonne multi-cloud strategy est ainsi en passe de devenir une compréhension de ce que chaque by 2019 stratégie de choix pour les organi- cloud peut apporter à l’entreprise sations qui cherchent à accélérer afin de tirer parti des avantages mais certaines entreprises peuvent leur transformation numérique. respectifs de chaque fournisseur. néanmoins exiger que les données La mise en œuvre d’une telle straté- relatives à des charges de travail Le multi-cloud - le fait de déployer gie apporte un large éventail spécifiques soient stockées à les applications ou de répartir les d’avantages aux organisations. l’intérieur de certaines frontières. Le ressources sur plusieurs plateformes Le multi-cloud offre notamment à multi-cloud permet aux entreprises de cloud public- est sans aucun chaque département la flexibilité de de trouver facilement une réponse doute l’un des sujets de réflexion sélectionner un service parfaitement à ce type de besoin, tout en prioritaires de la plupart des adapté à ses besoins, au lieu d’être bénéficiant des avantages d’une décideurs informatiques. Soucieuses contraint par une structure unique et plateforme cloud mondiale. Les de ne pas se laisser enchaîner à une commune à toute l’entreprise. entreprises peuvent également solution cloud unique, les entreprises escompter une réduction des décident de plus en plus souvent de Plus largement, en multipliant les risques de perte généralisée combiner différentes solutions cloud plateformes cloud, les entreprises de données ou d’indisponibilité plutôt que de faire le choix d’un seul évitent d’être liées à un seul fournis- des applications en raison d’une fournisseur parmi l’ensemble des seur, situation susceptible de les défaillance locale. offres disponibles. exposer à des hausses de prix inopinées et à des changements 1 Gartner, David J. Cappuccio, The Future of L’adoption du multi-cloud par les substantiels dans la nature ou le the Data Center in the Cloud Era entreprises devrait connaître une niveau des services reçus. 2 Forrester Consulting, Multi-cloud Arises forte croissance au cours des pro- from Changing Cloud Priorities chains semestres. Gartner prévoit En diversifiant leurs investisse- 3 IDC, Giorgio Nebuloni, 40% of European ainsi que le multi-cloud constituera ments entre plusieurs fournisseurs Organizations Already Stretch Applications la stratégie commune de 70% des de cloud, les entreprises ont égale- Across Clouds; Multi-cloud Strategy Urgently entreprises d’ici la fin de l’année ment davantage de choix quant Needed 2019 1. Une étude menée par Forres- à l’endroit où elles exécutent leurs ter à l’échelle mondiale révèle pour charges de travail, ce qui leur permet sa part que 86% des entreprises d’en gérer plus efficacement les utilisent plus d’un fournisseur de coûts. cloud dans le cadre de leurs efforts de transformation numérique 2. Et L’adoption d’une stratégie multi- en observant l’année dernière que cloud apporte en outre une plus 40% des organisations européennes grande flexibilité géographique avaient étendu leurs applications dans la gestion des données. au cloud, IDC soulignait déjà l’ur- Les principaux fournisseurs de gence de la nécessité d’une straté- cloud possèdent des centres de gie multi-cloud pour les entreprises 3. données partout dans le monde,

22 Multi-cloud et sécurité Avec l’entrée en vigueur, il y a L’informatique sans serveur, par quelques mois, du nouveau exemple, permet aux instances règlement européen sur la cloud des mises à l’échelle instan- protection des données (GDPR) tanées et des applications de et les failles de sécurité à grande correctifs immédiates, réduisant échelle qui font régulièrement la ainsi les cyber-risques. L’appren- une des médias, la sécurité des tissage machine, quant à lui, peut données demeure au centre des aider les serveurs à identifier les préoccupations des décisionnaires modèles de comportements informatiques. malveillants et à y réagir plus rapi- dement que ne le peut un interve- Alors que l’approche multi-cloud nant humain. rencontre un succès croissant, de nouvelles technologies, comme l’in- Si elle est conçue à cette fin, une formatique sans serveur (serverless stratégie multi-cloud peut gran- computing), la conteneurisation et dement contribuer à prévenir les l’apprentissage machine (machine pertes de données massives en learning), gagnent elles aussi en cas de brèche, les informations popularité grâce aux avantages de étant réparties sur plusieurs plate- sécurité qu’elles apportent au cloud. formes différentes.

23 Les principales caractéristiques Cloud Security d’un déploiement multi-cloud cou- Concerns on the Rise ronné de succès résident dans une étroite intégration et des While adoption for public cloud computing continues modes opératoires cohérents. to surge, security concerns are showing no signs of Les entreprises doivent prendre abating. An overwhelming majority of cybersecurity en compte le fait qu’une solution professionals (91 percent) say they are extremely to de sécurité unique ne peut pas moderatly concerned about public cloud security, up couvrir tous les cas de figure, ce qui 11 percentage points from last year. nécessite un effort supplémentaire en matière de sécurité et de 91% Organizations are concerned gouvernance. L’adoption du multi- about cloud security cloud continuant à gagner en popularité, il deviendra de plus Source : Cybersecurity Insiders, 2018 Cloud Security Report en plus crucial d’être à même de surveiller et de contrôler toutes les couches de données. 31% 38% 22% 7% 2% Moderetly concerned Very concerned Not at all concerned Extremely concerned Slightly concerned

24 Faire d’une stratégie multi-cloud une réalité pour les entreprises Même si les avantages du multi- C’est là que les entreprises peuvent cloud sont évidents, les entreprises envisager l’option du “multi-cloud risquent de connaître des incidents as a Service”. En faisant appel à un de sécurité si elles ne parviennent fournisseur de cloud managé, les pas à gérer efficacement les entreprises peuvent adopter - et données lorsqu’elles se déplacent adapter - les offres cloud dispo- entre les différents clouds, ou à nibles de manière à répondre à tenir compte du fait que chaque leurs besoins spécifiques et à cloud peut répondre à ses propres assurer une gestion efficace de normes de sécurité. la sécurité de leurs données. C’est également une garantie que Au vu du développement rapide toutes les réglementations à venir – du secteur du cloud et de la pénu- mêmes complexes – pourront être rie de main d’œuvre disposant des assimilées et appliquées rapide- compétences en la matière, il est ment et de manière cohérente sur impératif que les entreprises se toutes les plateformes cloud utili- tournent vers des partenaires pour sées par l’entreprise. garantir un fonctionnement optimal de leurs systèmes d’information.

25 À mesure que le cloud s’affirme Cloud Benefits comme la nouvelle norme et que vs. Expectations l’adoption du multi-cloud continue de progresser, les décideurs How does the reality of cloud computing hold up informatiques doivent définir une against the promise of reduced cost, increased stratégie claire quant à la manière agility, accelerated time-to-market or improved d’intégrer ces solutions dans leurs uptime? Sixty-six percent of the IT professionals activités. surveyed said their cloud investments are meeting or exceeding expectations. Notably, about one out of five Il est essentiel que cette straté- respondents (21 percent) were unsure if the cloud had gie soit pensée dès le départ de delivered on the promised benefits to the organization. manière à pouvoir évoluer au fil du temps et mise en œuvre de 66% façon à provoquer le moins de perturbations possible. En agis- Think their cloud investments are sant de la sorte, les entreprises meeting or exceeding expectations disposeront des outils nécessaires pour construire des infrastructures 13 % 12 % qui leur permettront de rester en phase avec les innovations techno- 21 % Source : Cybersecurity Insiders, 2018 Cloud Security Report logiques et de développer leurs avantages concurrentiels. 54 % Worse than expected Better than expected Not sure As expected

26 Multi-cloud et Cependant, le multi-cloud ne cloud hybride s’oppose pas au cloud hybride et un cloud hybride peut faire partie Si le multi-cloud et le cloud hybride d’un déploiement multi-cloud. Les présentent certaines similarités, il deux modèles ne s’excluent pas s’agit toutefois de modèles diffé- mutuellement. Le choix dépend rents. simplement des objectifs que l’entreprise veut atteindre. Le cloud hybride correspond à une architecture de cloud computing Il n’existe pas de fournisseur d’in- qui utilise à la fois un cloud privé frastructure multi-cloud unique. local et un cloud public tiers, ainsi Adopter une stratégie multi-cloud qu’une orchestration entre les implique généralement de combi- deux environnements. Souvent, ner des services proposés par les une entreprise adopte le cloud principaux fournisseurs de cloud hybride pour rencontrer un besoin public, notamment Amazon, Micro- spécifique, telle que la possibilité soft, Google, IBM ou encore Alibaba. d’exécuter des charges de travail en interne et de les porter par la suite dans le cloud public, lorsque les demandes de calcul augmentent. Le modèle multi-cloud fait commu- nément référence au recours à plusieurs fournisseurs de cloud public et constitue une approche plus générale des modes de gestion, de consommation et de paiement des services cloud d’une manière qui semble la mieux adap- tée à une organisation donnée.

27

28 KEY FIGURES EMEA The rate of cloud adoption in EMEA (Europe Source: Raiders of EMEA cloud adoption Middle East & Africa) slightly outpaced US and Cloud Adoption, bitglass global adoption, topping 84% this year. 2016 2018 Worldwide Worldwide 59% 81% EMEA EMEA 66% 84% Cloud adoption SaaS remains the most deployed cloud adoption by organizations. To a lesser extent, model (52 percent) as software stacks are newer deployment models such as BPaaS (11 maturing, followed by IaaS (36 percent) percent) and FaaS (10 percent) have lower and PaaS (28 percent), both showing strong rates of production deployments. SaaS (Software as a Service, e.g., CRM, ERP, HR apps, collaboration, productivity tools) 52% 16% 9% 10% 13% IaaS 17% 15% 14% (Infrastructure as a Service, e.g., servers, networking) 36% 18% PaaS 18% 21% Source: Cloud Security Report 2018 : Cybersecurity Insiders (Platform as a Service, e.g., database, middleware, appliction servers) 28% 19% 14% BPaaS 18% 53% (Business Process as a Service) 11% 9% 9% FaaS (Function as a Service, e.g., develop, run, and manage application functionalities) 10% 8% 10% 16% 56% Deployed/in production Currently implementing Trial/pilot in progress Planning to deploy No plans to deploy

29 Top cloud Over the past few years, public cloud Amazon Web Services (72 percent) and Microsoft providers providers have continued to mature and Azure (71 percent). Interestingly, Rackspace Cloud expand their service offerings. The two (67 percent) displaced Google Cloud Platform biggest cloud providers continue to compete (54 percent) among our survey participants to for the lead in our survey: claim third place this year. 72% 28% 54% 46% 71% 29% 50% 50% Source: Cloud Security Report 2018 : Cybersecurity Insiders 67% 33% 47% 53% Current use Future use Data It’s no surprise that for a third year in a row, in trend this year, an increasing number of in the cloud email is the most common information stored organizations indicate they are storing more in the cloud (57 percent), a 13 point increase of their intellectual property information in Email over last year’s survey. Notably, a reversal the cloud. 57% 96% of Respondents Are Using Cloud Sales & marketing data 21% 71% 4% Source: RightScale 2018 State of the Cloud Report 37% Public Hybrid Private DevOps/development data Cloud Only Cloud Only 35% KEY FIGURES | www.telindus.lu Source: Cloud Security Report 2018 : Cybersecurity Insiders Public = 92% Private = 75% Customer data Both public and private adopting private cloud is 35% cloud adoption have 75 percent, up from 72 increased in the last year. percent in 2017. Employee data The number of respondents now adopting public cloud As a result, the overall 31% is 92 percent, up from 89 portion of respondents percent in 2017, while the using at least one public Contracts, invoices, orders number of respondents now or private cloud is now 96 percent. 27% Financial corporate data 22% Intellectual property 20% Health information 16%

30 Public cloud In 2018, AWS continues to lead in public cloud Azure especially is now nipping at the heels of adoption adoption, but other public clouds are growing AWS, especially in larger companies. more quickly. 8% % of Respondents Running Applications AWS 64% 16% Azure 45% 22% 9% Google Cloud Source: RightScale 2018 State of the Cloud Report 18% 23% 15% IBM Cloud 9% Oracle Cloud 9% 10% 11% 6% 10% VMware Cloud on AWS Alibaba Cloud 8% 14% 14% 2% 3% 4% Running apps Experimenting Plan to use % of Respondents Running Applications And 64 percent of respondents currently run applications in AWS, up from 57 percent in AWS 2017 (12 percent growth rate). 64% 57% Azure 45% 2018 Source: RightScale 2018 State of the Cloud Report 34% 2017 Google Cloud Oracle Cloud 18% 15% 6% 3% IBM Cloud Alibaba Cloud 10% 8% 2% VMware Cloud on AWS Not asked in 2017 8% Not asked in 2017

31 Multi-cloud 81 percent of enterprises Enterprises with a hybrid is the preferred strategy have a multi-cloud strategy strategy (combining public among enterprises and private clouds) fell from 58 percent in 2017 to Respondents with 1.000+ Employees 51 percent in 2018, while organizations with a strategy of multiple public clouds or multiple private clouds grew slightly. 10 Multiple % Private 21% Multiple Source: RightScale 2018 State of the Cloud Report Public 9% Single Public 81% 54% %NoSiPnglalensPrivate Multi-Cloud 51 Hybrid % Cloud Biggest cloud Misconfiguration of the cloud platform This is followed by unauthorized access security threats jumped to the number one spot in this year’s through misuse of employee credentials and survey as the single biggest threat to cloud improper access controls (55 percent), and security (62 percent). insecure interfaces/APIs (50 percent). 62% 55% 50% 47% Misconfiguration of Unauthorized Insecure inter- Hijacking of the cloud plateform/ access faces/APIs accounts, services wrong set-up or tra c 39% 33% 30% 26% 22% Source: Cloud Security Report 2018 : Cybersecurity Insiders External Foreign state Malicious Malware/ Denial of sharing of data sponsored insiders ransomware service attacks cyberattacks 12 7 7% Theft of service | % Lost mobile devices | % Not sure/other

32 CRLLEOAGTUUIDO- N& A POSSIBLE MATCH!

33 Comment le cloud public P 40 peut-il apporter de la valeur à l’industrie financière ? Telle Telindus, Google & Cisco : est la question soulevée lors a new era of hybrid cloud du Cloud & Regulation Event organisé par Telindus dans les Bob Krentler, Head of Global locaux de la LHoFT le jeudi 8 Technology Alliances at Google novembre 2018. La réponse est Cloud, and Jeremy Oakey, Senior sans ambiguïté : informatique Director, Enterprise Product sans serveur, extension des Management, Cloud Platforms & ressources à la demande, Intel- Solutions Group at Cisco ligence Artificielle prête à l’em- ploi et Apprentissage Machine P 46 sont autant de vecteurs de croissance offerts par le cloud Cloud & Régulation: au secteur financier. un levier pour le secteur financier Jacques Ruckert, Directeur Solutions et Innovation de Telindus P 50 Telindus All-Clouds Offering Thomas Scherer, Chief Architect and Cédric Marianacci, Head of Department Outsourcing & Cloud Services Provider – Design and Plan at Telindus CLOUD & RÉGLEMENTATION | www.telindus.lu

34 TCGEILOSICNOODGU&LSE, A NEW ERA OF HYBRID CLOUD

35 Like any industry, financial institutions face challenges like managing risk, striving for new sources of growth and profitability, and providing richer user experiences. But they also struggle with evolving market forces and ever-increasing regulations. On top of that, many have accumulated decades of data and must contend with hard-to-replace legacy systems. As a result, a growing number are looking to the Cloud to transform into more nimble, responsive, and creative organizations and the conversations have shifted from if they are going to, to how to move to the cloud. Bob Krentler, Head of Global Technology Alliances at Google Cloud, and Jeremy Oakey, Senior Director, Enterprise Product Management, Cloud Platforms & Solutions Group at Cisco, took part as experts in the Cloud & Regulation event organized by Telindus on November 8th. We seized this opportunity for a thorough discussion on all the above issues, with a particular focus on the new open hybrid cloud platform stemming from a partnership between the two companies, the Cisco Hybrid Cloud Platform for Google Cloud. Jeremy Oakey, Senior Director, Enterprise Product Management, Bob Krentler, Head of Global Technology Alliances Cloud Platforms & Solutions Group at Cisco at Google Cloud

36 HOW CAN FINANCIAL SERVICES PROVIDERS J.O. Financial services companies are usually slower to LEVERAGE CLOUD TECHNOLOGIES - AND adopt new technologies, but they also experiment very PARTICULARLY MULTI-CLOUD AND HYBRID quickly. Many financial institutions have an innovation SOLUTIONS - TO DRIVE GROWTH AND department in charge of trying the latest technologies and DIFFERENTIATION, UNLOCK CREATIVITY, evaluating how they can be used. It may take some time AND TRANSFORM INTO MORE AGILE, for that innovation to make it into their applications or their INNOVATIVE COMPANIES? production but, obviously, financial services companies are generally leaders in actually testing and trying B.K. Firms across financial services are changing their technologies. Even for our traditional non-cloud products, approach to technology platforms. They are beginning like our routers, switches or servers, the financial services to create, notably with Google Cloud, open hybrid industry actually drives some of our newest features. architectures that can scale as needed and provide modern application development frameworks. Financial GIVEN THE AMOUNT OF SENSITIVE INFORMATION companies are also using Google’s API management THEY HANDLE AND THEIR SPECIFIC platform to manage ecosystems of partners that enable RESPONSIBILITIES IN THIS REGARD, FINANCIAL new product offerings and customer experiences. In this INSTITUTIONS CONSIDER AS AN ABSOLUTE last area, tailoring to the needs of individual customers PRIORITY TO HAVE COMPLETE CONTROL OVER include customizing offers based on customer history and THEIR DATA. HOW DO YOU REASSURE THEM OVER needs, enabling digital self-care through chatbots, and SECURITY, PRIVACY, AND COMPLIANCE ISSUES? optimizing call center interactions to ensure fast resolution and cost effective customer service. B.K. Google Cloud infrastructure is custom-designed for improved performance and security. We design and With Google’s cloud capabilities, financial companies can include hardware specifically for security, like Titan, our identify trends through market and other external data custom security chip that we use to establish a hardware to optimize their investment portfolios. Google’s analytics root of trust in our servers and peripherals. This all rolls up solutions provide the tools and capabilities they need to to our custom datacenter designs, which include multiple ingest, transform, and analyze data - both streaming in layers of physical and logical protection. real-time and in more traditional batch processes as well. We champion initiatives that prioritize and improve the ‘‘ We have spent 30 billion security and privacy of user data. Google employs expert security and privacy professionals that are tasked with dollars improving our maintaining the company’s defense systems, developing infrastructure over three security review processes, building stronger security infrastructure, and precisely implementing Google’s years. ’’ security policies. We’ve made multiple updates to ensure that Google Cloud customers can confidently use our Google’s customers can add intelligence to risk mana- services now that the GDPR is effective. gement and compliance processes that have material impacts on their ability to proactively identify issues, from Last year, we released the Google Cloud Key anti-money laundering to credit card and claims fraud. Management Service. With KMS, customers can manage Google’s machine learning APIs and tools provide the the encryption keys used to protect sensitive data capability to quickly create effective risk management residing across the Google Cloud Platform with customer machine learning models. managed encryption keys.

37 At Google, we believe in an open cloud. We believe that consumer file sharing services for example, customers openness in the cloud matters more than ever. Openness may not have access to all their data. With large providers not only enables faster innovation, but it also provides like Google, the customers are actually in possession of all tighter security and offers freedom from vendor lock-in their data. Major public cloud players, including Google, or barriers to exit. invest more in securing their infrastructures, datacenters, and networks than most individual companies can afford. We have spent 30 billion dollars improving our infrastruc- ture over three years. From datacenters to subsea cables, ‘‘ At Google, we believe we are committed to connecting and serving our cloud customers. We opened our Netherlands and Montreal in an open cloud. We regions in the first quarter of 2018, followed by Los Angeles, believe that openness in Finland, and Hong Kong. In 2019 we will commission three the cloud matters more subsea cables. than ever. ’’ By deploying our own private subsea cable, we help improve global connectivity while providing value to our The first thing we must do is to get the customers customers. Owning the cable ourselves has some distinct comfortable with the legal frameworks in which they benefits. Since we control the design and construction operate. I think this is really where a partner like Telindus process, we can fully define the cable’s technical comes in because they have expertise in matching specifications, streamline deployment and deliver service what the customers are traditionally comfortable with to users and customers faster. Also, once the cable is - their contracts, their processes, their operational deployed, we can make routing decisions that optimize understanding - and what is new to them. A partner like latency and availability. Telindus can help customers get a better understanding of how they can use the technology, how they can These investments further improve our network - the effectively use the Cloud, modernize their infrastructure world’s largest with over 100 points of presence and over and their applications. 7,500 edge caching nodes - which by some accounts delivers 25% of worldwide internet traffic. J.O. In the security space, when it comes to having control over data, the situations are different depending on the type of service that is provided. In the case of SaaS, when using services like Salesforce.com, Office 365, or

38 The providers actually expose quite a bit of visibility. For Our joint hybrid solution, the Cisco Hybrid Cloud Platform example, as Google owns the entire network, the traffic for Google Cloud, combines Cisco, Google and open brought in by the customer doesn’t leave the Google source technologies to consistently and securely extend network to a third party until it does so by choice, by the on-premise environments to Google Cloud, enabling customer’s choice. Google exposes a lot of visibility into customers to build hybrid applications. traffic flows. With the Cisco Hybrid Cloud Platform for Google Google and Cisco are working together to help customers Cloud, applications can span across public cloud and change their security processes and retool. At Cisco for on-premise environments to deliver speed and scale instance, we have launched Stealthwatch Cloud, which when and where needed. Applications in the Public Cloud is part of our partnership and uses a new technology can take advantage of on-premise capabilities including from Google called Virtual Private Cloud Flow Logs. existing IT systems, and in-house applications can benefit VPC Flow Logs provides real-time visibility into network from new cloud-native capabilities without the need for performance and enables network usage analysis, traffic a total move to the public cloud. expenses optimization, real-time security analysis, and network forensics. In this way, the customer can see This fully-integrated solution lets developers leverage exactly how services – including public cloud services - enterprise-grade capabilities from Google Cloud, like are reacting. Lots of organizations may not realize that managed Kubernetes, GCP Service Catalog, Cisco such a level of visibility and transparency is there, it may networking and security, and Istio authentication and often times require new tools to be able to extract the service mesh monitoring. transparency provided by Google Cloud. The Cisco Hybrid Cloud Platform for Google Cloud IN OCTOBER LAST YEAR, CISCO AND GOOGLE enables businesses to accelerate on-prem application ANNOUNCED A PARTNERSHIP ON A NEW OPEN modernization using a Kubernetes-based container HYBRID CLOUD PLATFORM THAT WOULD BRIDGE strategy that is consistent with cloud-native technology, ON-PREMISE AND CLOUD ENVIRONMENTS. including Google Kubernetes Engine. Cisco will provide THE RELEASE OF THE CISCO HYBRID CLOUD a turnkey solution that is cloud-ready for Kubernetes PLATFORM FOR GOOGLE CLOUD APPEARS TO and containers, as well as management tools to enforce BE THE FIRST STEP IN REALIZING THE POTENTIAL security and consumption policies. OF THIS COLLABORATION. WHAT ARE THE KEY CAPABILITIES OF THE JOINT CISCO-GOOGLE CLOUD SOLUTION AND WHAT ARE THE ROLE AND CONTRIBUTION OF EACH OF THE PARTNERS IN ITS CONCEPTION? B.K. Whether they are cloud-ready or modernizing their infrastructure on-premises, many organizations can benefit from a well-supported path that lets them move to the cloud on their own terms. To address this need, we announced our partnership with Cisco last year on a new open hybrid cloud platform. The Cisco Hybrid Cloud Platform for Google Cloud is now generally available, giving our customers more options when considering hybrid solutions.

39 Istio’s open-source technology, optimized for container J.O. I must admit that it took us some time to deliver and microservice, offers developers a uniform way to what we announced a year ago. First, because we connect, secure, manage and monitor microservices created a new product – the Cisco Container Platform, across clouds through service-to-service level mutual our on-premise Kubernetes equivalent to the Google TLS access control. As a result, they can easily implement Kubernetes Engine. new, portable services and configure and manage those services centrally. We also launched new versions of products that we already had in our portfolio, but didn’t support Google API management through Apigee enables legacy Cloud. We added support for Google Cloud to our workloads running on-prem to connect to the cloud Virtual Router CSR 1000V, and to the Stealthwatch through APIs. With Apigee, enterprises can expose Cloud product that allows to achieve visibility and threat legacy, on-prem services as secure APIs, to developers detection in public clouds environments and between who can then easily incorporate these services into their clouds. VPC Flow Logs was new for Google and launching modern application. that product was only in the works. We, Cisco, had a product that could leverage a service that Google did With our joint hybrid solution, Customers can extend not offer yet. Our product, Stealthwatch Cloud, took their existing Cisco network and security policies and advantage of Google developing something new. So, configurations to the cloud, and monitor application while Google brought new things to market, we also behavior across hybrid cloud environments. Besides, brought new things to market. ‘‘ We also work together We also work together with Google on Istio, Google’s open platform to connect, monitor, and secure microservices. with Google on Istio, They still develop a lot for Kubernetes, but their next layer Google’s open platform on top of it is this independent service mesh that provides to connect, monitor, and the fundamentals needed to architect for portability using microservices and manage large distributed deployments secure microservices. ’’ that span hybrid and multi-cloud deployments. From our perspective, multi-cloud was an interesting part Cisco’s Technical Assistance Center provides customers of our collaboration with Google. Our contribution to with a single source of support. Istio was really to help make sure that multi-cloud was something that Istio would support. We wanted to ensure Cisco is an ideal partner for us in this area because of that container platform would align with our multi-cloud its long-standing enterprise focus and expertise in portfolio. networking, security, analytics, and hyperconverged infrastructure. The Cisco Hybrid Cloud Platform for Google It is just the beginning: we have plans to iterate and do Cloud offers another way to run seamlessly on-premises more. We can always deepen the amount of services and in the cloud, delivering speed and scale where that we expose on-premise. For example, Google has customers need it most. Applications in the cloud can six services today that advertise via Open Service take advantage of on-premises capabilities including Broker. They will continue to create more services that existing IT systems, and applications on-premises can are available to an on-premise application. We will take advantage of new cloud capabilities—without the continue to deepen integrations like identity and security, need for a complete shift to the public cloud. the next area that will keep us focused. For customers to really adopt hybrid cloud, they need to have consistent We truly hope that the Cisco Hybrid Cloud Platform for role-based access control, consistent identity capability Google Cloud makes it possible for more organizations to between on-premise and Google Cloud, that might mean move to the cloud at their own pace, all while maximizing Microsoft Active Directory on-premise synchronizing with their on-prem investments and avoiding lock-in. Google Cloud identity, for example.

40

41

42 Our next areas of collaboration will include Edge deployment option. However, containers should be Computing, IOT, and deepened AI/ML capabilities. viewed as a convenient packaging and delivering The Cisco Hybrid Cloud Platform for Google Cloud mechanism for applications, rather than as mini virtual also needed to be launched because of all those machines. new capabilities, either build on top of Kubernetes or extending the framework beyond networking, security In the same way that traditional applications are not of Kubernetes itself. There will be more iteration, not only perfectly isolated from one another within a VM, an from us, but also the open source community. Projects attacker or rogue program could break out of a running like Istio are also being contributed to by Lyft, IBM and container and gain control of other containers running on other technology companies working to solve the hard the same VM. However, with a properly secured cluster, problems of these new cloud-native applications. a container breakout would require an unpatched vulnerability in the kernel, in the common container WHAT ARE THE ADVANTAGES OF CONTAINER infrastructure, such as docker, or in other services exposed TECHNOLOGY COMPARED WITH MORE to the workload from the VM. To help reduce the risk of CONVENTIONAL VIRTUAL MACHINES? AND WHAT these attacks, Google Container Engine provides fully ARE THE DRAWBACKS - SOME SAY, FOR INSTANCE, managed nodes and actively monitors for vulnerabilities THAT CONTAINERS ARE LESS SECURE THAN and outdated packages in the VM - including third party VIRTUAL MACHINES? add-ons - and performs auto update and auto repair when necessary. This helps minimize the attack window B.K. For those coming from virtualized environments, for a container breakout when a new vulnerability is containers are often compared with virtual machines. discovered. Like virtual machines, containers allow you to package your application together with libraries and other One of the downsides of running traditional applications dependencies, providing isolated environments for on VMs is that it’s nearly impossible to understand running your software services. However, containers exactly what software is running in your production offer a far more lightweight unit for developers and IT environment, let alone control exactly which software is operations teams to work with, carrying a myriad of being deployed. And because it’s hard to determine the benefits including portability across environments and accurate states of traditional applications at scale, the agility in application development. typical security controls will approximate by focusing on anomaly detection in application and OS behaviours Google’s infrastructure runs on containers and we created and settings. Kubernetes, the industry standard for orchestrating containers . The Cisco Hybrid Cloud Platform for Google In contrast, containers provide a more transparent, Cloud is built on top of Google Kubernetes Engine and easy-to-inspect and immutable format for packaging Cisco Container Platform. applications, making it easy to establish a workflow to inspect and catalogue container content prior to Containers silo applications from each other unless you deployment. explicitly connect them. That means you don’t have to worry about conflicting dependencies or resource J.O. A container is a running application that has mobility contention: you set explicit resource limits for each service. to it. What I mean by mobility is that a container works It’s an additional layer of security since your applications equally on-premise - on the Cisco Container Platform - are not running directly on the host operating system. and on Google Cloud. Virtual Machines usually had a very specific technology – VMware used a different format The most common misconception about container than Amazon, than Google, than Azure. Containers have security is that containers should act as security more portability because there is a consistent framework. boundaries just like VMs, and as they are not able to provide such guarantee, they are a less secure

43 There are some nuances in that. Containers are not of applications being resilient within themselves and automatically movable. We do act like they are, but there having cloud scale capabilities, is really what is unique are still some challenges with them, such as making it about containers. A customer who is not learning what easier to connect services. There is work in the actual it means to have a cloud-native application and not container runtime to make it more consistent between refactoring his applications to microservices is not truly public cloud and on-premise. understanding the power of containers. The drawbacks for containers can be anything. You can With Kubernetes, I can do rolling upgrades of the infrastruc- take a Virtual Machine and put it in a container, but that’s ture and the application is unaware of that. It’s different in not a microservice; it’s a very, very large container! This Virtual Machine. VMs often times needed very advanced is the first reaction of some customers when they start capabilities to have that resiliency because the applica- experimenting with containers. I don’t think that’s right or tion would brake if one server went down. In the Kuber- wrong, but that’s not a microservice, that’s not part of a netes world, one server or one container can go down and cloud-native application. the architecture doesn’t fix the problem. The application design actually makes the application resilient. Virtual Machines were really part of a previous application architecture where the application received its resiliency and recovery capabilities from the infrastructure. There was a much hardwired design relationship between the application and the infrastructure. Containers, in and of themselves, don’t solve that problem. But cloud native applications, microservices and this new design pattern

44 TELINDUS TOOK PART IN GOOGLE’S EARLY for security-sensitive workloads. Also, the out-of-the-box ACCESS PROGRAM. WHAT ROLE DID THEY PLAY portability to and from the public cloud enables disaster AND WHAT DID THEY BRING MORE SPECIFICALLY? recovery, vendor-lock-in mitigation, and scalability. This WHAT ARE THE NEXT PLANS WITH REGARD TO THE is especially important for Telindus’ regulated customers, CISCO, GOOGLE AND TELINDUS PARTNERSHIP? who might not be able to work directly with public cloud providers, to transition to cloud. B.K. Telindus is an integrator and cloud service provider working in security-sensitive and regulated industries The Hybrid Cloud Platform’s use of open source with a well-established reputation for being an early technologies like Istio, Kubernetes, and Open Service adopter of new technologies. The role played by Telindus Broker which can be used in any hosting environment, are as a participant in the Early Access Program enabled the key. The integration of Cisco CloudCenter provides policy- deployment of a Cisco Hybrid Cloud Platform for Google based automation governance of multi-tier microservice Cloud environment, leveraging on-premise infrastructure architectures from within the private infrastructure that to access Google Cloud. The new technologies that the are deployable into the public cloud. The Hybrid Cloud Early Access Program used included Cisco Container Platform solution made it possible for Telindus to build Platform, Open Service Broker, and Istio. a cloud-native, on-premises experience, which can be easily scaled out into the public cloud, with XaaSification The Telindus deployment is a great example of how features for legacy and container-based services. service providers can use a hybrid cloud environment to help customers transparently extend their datacenters The Cisco Hybrid Cloud Platform for Google Cloud has to harness rich, cloud-based services and tools, enabling been tested and field trialed with the help of partners like them to develop and deploy applications on premises, Telindus. The platform is now certified to be consistent while leveraging best-of-breed public cloud tools at the with Google Kubernetes Engine, enabling GCP out of same time. the box, and it’s fully ready for customers’ production workloads. ‘‘ An attacker or rogue Today, Telindus is able to use this deployment to help program could break out customers seamlessly extend their datacenters and of a running container accelerate their application innovation. We are really and gain control of other excited about Telindus’ ability to bring an open hybrid containers running on the cloud to financial services customers through their digital transformation journeys. same VM. ’’ J.O. Telindus has been a strong Cisco partner for many Telindus has been offering container-based platforms years, before containers, virtual machines and even the for several years and we have worked with them to Internet were born. With partners like Telindus, we help define a solution that addresses a need in the market each other innovate to take on the new challenges and for on-premises, service provider-based deployments. transform ourselves as the industry changes. A partner like The Hybrid Cloud Platform is the right vehicle for Telindus Telindus brings us scale because we don’t have the reach because it lets them enable modern container-based to touch every single customer. We have Cisco products solutions in environments where security and robustness is in over 80% of the Internet – connected customers are an integral part of technical deployments. This is because using Cisco routers, switches, or firewalls. We, Cisco alone, of the Hybrid Cloud Platform’s private-hosting capabilities cannot touch all those customers, understand their business, react to their requirements, deliver the services they need and educate them on what we are doing. A partner like Telindus helps us bring scale to everything we do.

45 As we start a new venture, like we did with Google, and Cisco & launch new software products, having a partner like Google Partnership Telindus participate in an Early Access Program helps us Milestones because they bring a vertical perspective to industry. As experts, they can give us feedback on our assumptions October 2017 and validate our use cases. In return, participating in the program is valuable for Telindus as well because they Cisco & Google can touch and learn the technology before everyone Technology partnership else. And when we actually launch it on the market, they announced at Cisco have already been able to imagine how they could build Partner Summit services around that product and integrate it with other products. Having access to the product early helps them January 2018 in their business as well. Cisco Container Cisco Container Platform is releasing every month. We Platform announced are only up to 2.0 and 2.1 will be out in a couple of weeks. Telindus has seen nine or ten releases of the product April 2018 April 2018 whereas most others have only seen one or two. Telindus has helped shape how the product is going. They are also Customer and partner Inegration of Cisco still seeing the new releases quickly and they already have early access program Streathwatch with the knowledge of the past to help them pick up the new Google’s VPC Flow features immediately. launched Logs We are also starting to see enterprise software companies May 2018 May 2018 rewriting their applications to be containerized. Telindus is positioned to pick up these new enterprise applications, Cisco’s CloudCenter Cisco & Google joined integrate them in their own portfolio and develop their support for Kubernetes forces on open industry own solutions. For example, we have recently completed initiative, Istio the acquisition of Duo Security, which allows us to add announced unified access security and multi-factor authentication to July 2018 our stack and to multi-cloud. You can expect to see other July 2018 multi-cloud-focused software acquisitions and Telindus Cisco & Google launch will be well positioned to help us scale and deliver those Cisco & Google developer challenge products to the customers. Collaboration partnership at Google Cloud Next announced September 2018 Cisco Hybrid Cloud Platform for Google Cloud launched

46 CRTLMEIOOEGUNNLDTEA-&- UN LEVIER POUR LE SECTEUR FINANCIER

47 La réglementation est souvent perçue comme un obsta- Cet accroissement de l’extensibilité des ressources a cle à l’adoption du cloud. Telindus y voit au contraire un autorisé le déploiement de technologies capables moyen de fournir des solutions cloud de manière efficace d’analyser les données dans des délais très courts. et sécurisée. Pour Jacques Ruckert, Directeur Solutions Google a mis cela en pratique dans son cloud en créant et Innovation de Telindus, quand le cloud s’accorde avec notamment des modèles d’apprentissage machine la réglementation, en particulier dans le cadre de l’in- destinés aux organisations qui ne disposent pas de dustrie de la finance, la somme des deux constitue un spécialistes en science des données. catalyseur d’innovation et un levier de développement Il existe en outre de nombreux modèles prêts à l’emploi, pour les entreprises. comme ceux qui sont utilisés aujourd’hui quotidiennement pour la reconnaissance vocale et textuelle, la traduction COMMENT LE CLOUD PUBLIC PEUT-IL AIDER ou la reconnaissance faciale. Ces API (Applications LES ENTREPRISES DU SECTEUR FINANCIER Program Interface) sont faciles à intégrer dans les À RÉDUIRE LEURS COÛTS OU À GÉNÉRER DE applications métier, autorisant les entreprises à créer NOUVEAUX REVENUS ? QUELS AVANTAGES leur propre solution d’intelligence artificielle sur mesure SUBSTANTIELS APPORTE-T-IL ? pour leur cœur d’activité. J.R. Le cloud public permet d’automatiser entièrement Jacques Ruckert, Directeur Solutions et Innovation de Telindus l’exécution de nombreuses opérations et d’alléger les charges d’exploitation au quotidien. Les entreprises peuvent ainsi concentrer leurs ressources sur les outils informatiques qui animent le cœur de leur métier. Une stricte séparation entre données et calcul permet de créer des services afin de ne traiter les données que lorsque c’est réellement nécessaire. Les entreprises ont également la possibilité de créer un “pipeline” de traitement de données, un cluster Hadoop par exemple, de l’utiliser pendant qu’elles travaillent réellement sur ces données et de le supprimer par la suite, et cela sans coût permanent et sans infrastructure à gérer. D’autre part, les énormes réserves de capacité que possèdent les grands acteurs du cloud permettent de bénéficier de modèles de facturation à l’usage qui s’avèrent financièrement très intéressants. Les entreprises peuvent par exemple faire travailler des centaines de serveurs pendant une heure plutôt qu’un seul serveur pendant des centaines d’heures pour le même prix et réaliser ainsi d’énormes gains d’efficacité. Les dernières innovations visant à paralléliser les tâches - et il ne s’agit plus ici de théorie - permettent de traiter de grandes quantités de données en temps réel. On peut de la sorte obtenir de précieuses informations commerciales en analysant des données financières en quasi-temps réel, ce qui aurait pris des jours, voire des semaines, il y a quelques années.

48 MAIS QU’EN EST-IL ALORS DE LA CONFORMITÉ Le dernier aménagement apporté à ce dispositif régle- RÉGLEMENTAIRE ET DE VALEURS COMME LA mentaire est la circulaire CSSF 17/654, dite “Circulaire CONFIANCE ET LA FIABILITÉ SUR LESQUELLES Cloud”, qui s’applique à toute institution financière souhai- SE FONDE LA RELATION PRIVILÉGIÉE QUE LES tant externaliser des services informatiques vers une BANQUES ENTRETIENNENT AVEC LEURS CLIENTS ? infrastructure de cloud. Cette circulaire permet à une entité réglementée, c’est-à-dire une institution financière ou un J.R. Les banques opèrent effectivement dans un PFS, de recourir à des services de cloud public moyennant environnement fortement réglementé. Leur principale l’observation de règles de gouvernance strictes. responsabilité est de gérer les actifs de leurs clients. En conséquence, les institutions financières sont également En résumé, il existe donc aujourd’hui au Luxembourg une responsables des infrastructures informatiques qui législation cohérente à laquelle doivent se conformer constituent le pilier sur lequel reposent leurs activités. les institutions financières et les PSF qui souhaitent Elles doivent donc veiller à apporter des réponses à externaliser des services informatiques vers le cloud une série de questions-clés relatives, entre autre, à la public. Cette réglementation garantit le respect d’un localisation des données et à leur contrôle, au respect de certain nombre d’obligations et de valeurs. Chez Telindus, la confidentialité des données privées, à la traçabilité des nous avons mis en place un cadre opérationnel et opérations, à la chaîne de sous-traitance, à la résilience contractuel pour répondre à ces éléments-clés. De plus, des systèmes, ou encore à la prise en compte d’une nous sommes convaincus que ces valeurs sont tout aussi stratégie de sortie vis-à-vis d’un fournisseur. Cette liste pertinentes pour d’autres secteurs d’activité, eux aussi est loin d’être exhaustive. hautement sensibles sur le plan de la sécurité et de la confidentialité. Nous le constatons à travers le dialogue ‘‘ Telindus se positionne permanent que nous entretenons avec nos clients non réglementés. comme un accélérateur de la transformation QUEL EST L’ÉTAT DE LA QUESTION AU NIVEAU DE cloud pour les L’UNION EUROPÉENNE ? institutions financières ’’ J.R. L’Autorité Bancaire Européenne, dont la mission est de renforcer le système européen de supervision financière, Il y a plus de 15 ans, le Luxembourg s’est doté d’un a récemment publié un ensemble de recommandations cadre juridique autorisant l’externalisation de systèmes à l’intention des banques qui désirent externaliser leurs informatiques par les institutions bancaires. Cette services auprès de fournisseurs de services cloud. Nous législation spécifique est applicable aux prestataires de avons constaté avec satisfaction que la correspondance services qui concluent des accords d’externalisation avec était quasiment parfaite entre les recommandations de l’industrie financière. Ces prestataires sont réglementés l’ABE et les directives de la CSSF. Cela confirme que le afin de réduire les risques opérationnels et les violations Luxembourg se situe à l’avant-garde de l’externalisation de confidentialité. Le mot-clé de ce cadre réglementaire réglementée vers le cloud dans le secteur financier. qui a favorisé l’éclosion d’un véritable écosystème autour C’est un atout pour Telindus car, même si toute banque du secteur financier est “PSF”, Professionnel du Secteur européenne est bel et bien sous la supervision de son Financier. Concrètement, cela signifie qu’un fournisseur régulateur national, nous pouvons faciliter le passage de services - de services informatiques dans le cas qui au cloud d’une institution financière en Europe, puisque nous concerne - est obligé d’obtenir un agrément de la nous sommes de facto conformes aux recommandations part du régulateur financier pour être autorisé à fournir de l’ABE. ses services à une banque.

49 QUELLE EST LA PERCEPTION DE TELINDUS DE CE ‘‘ Nous voyons la MARCHÉ RÉGLEMENTÉ ? QUEL RÔLE ENTENDEZ- VOUS Y JOUER ET DE QUELS MOYENS DISPOSEZ- réglementation VOUS ? comme un levier ’’ Nous voyons la réglementation comme un levier et le rôle de Telindus comme celui d’un catalyseur, d’un Nous avons en outre mis en place le cadre contractuel accélérateur de la transformation cloud pour les nécessaire avec notre partenaire et fournisseur de institutions financières. Telindus se positionne comme un services cloud Google. Nous pensons que le cloud Google intermédiaire entre la banque et le fournisseur de services constitue un cloud adéquat pour le secteur financier, de cloud public. non seulement en raison de la position privilégiée de celui-ci en matière de traitement de données, mais Nous combinons les atouts du cloud public avec les aussi et surtout de par son approche fondée sur l’open capacités de nos propres infrastructures d’hébergement source, ce qui facilite l’implémentation d’une stratégie pour permettre le traitement de données provenant de sortie. Nous sommes convaincus que la liberté de d’infrastructures privées par exemple, ou pour aider choix des clients et la flexibilité sont ce qui importe le plus à mettre en place des stratégies de sortie réellement pour Google, sans oublier les niveaux de sécurité élevés efficaces. Nous y travaillons notamment avec notre qu’offrent ses infrastructures. Google est par exemple le partenaire Cisco en nous appuyant sur ses solutions seul grand fournisseur de services cloud à disposer de son réseau et serveur. Les nouveaux produits de Cisco centrés propre réseau backbone pour interconnecter toutes les sur le cloud permettent en effet d’établir une cohérence régions où il opère. entre les clouds publics et privés et de piloter l’ensemble à travers un tableau de bord unique.

50 TAOELFLLFI-ENCRDLIOUNSUGDS By leveraging U-flex, its own Luxembourg-based private WHAT ARE THE SCALE AND SCOPE OF TELINDUS’ cloud, and partnerships with leading public cloud provi- HYBRID CLOUD OFFERING? ders, Telindus offers its customers hybrid and multicloud solutions that enable them to achieve sustainable cost T.S. Under Telindus’ hybrid cloud we offer our consulting, reductions and exploit new business opportunities. integration and operation services using a single or a Thomas Scherer, Chief Architect, and Cédric Marianacci, combination of cloud hosting infrastructures. In terms Head of Department Outsourcing & Cloud Services Provi- of private cloud, we are able to build dedicated private der – Design and Plan, shed light for us on the all-clouds cloud hosting infrastructures at our customer’s premises or strategy devised and pursued by the company. in our datacenters, or leverage on our U-flex infrastructure, which is our private managed cloud platform offering. Thomas Scherer, Chief Architect at Telindus In terms of public cloud, we have developed partnerships with three of the leading global providers. This opens the door to massive amounts of IaaS, PaaS and SaaS products, which we can bring to our customers. All these products have their specific strength. Therefore, we seek to work together with our customers already at an early stage of their cloud journey, to identify the best options for them. Complexity is significantly reduced, notably when using public cloud services. However maintaining a consistent IT and security architecture across multiple clouds is not necessarily a given. Therefore, we have built up solutions to allow unified cloud services management independently of the private or public clouds in use. This includes, among others, cloud-agnostic service deployment and lifecycle management, data replication and backup, monitoring, security configuration as well as running VPN or private connectivities across those hosting infrastructures.


Telindus

U&US 8 - Mars 2019
Share
Like this book? You can publish your book online for free in a few minutes!
Create your own flipbook

TOP SEARCH

business design fashion music health life sports home marketing children

RELATED PUBLICATIONS