brainscale overview · monolith to microservices apixell (proposal) autonote artisan rpa on azure...
TRANSCRIPT
13+ YEAR MICROSOFT PARTNERSHIP
BrainScale Overview
BrainScale Cloud Solutions
BrainScale is the top Azure integrator in
North America
• Established in 2007 by two Microsoftengineers
• Headquartered in Princeton, NJ with a GlobalPresence
• Focused on “Enterprise” Hybrid Cloud Strategy
• Design thinking and Solution Engineering
• Deep expertise of Azure cloud with a team thatis 100% Azure certified
Service Offerings and IP SolutionsEnable Migrate Innovate Manage
Design/Security/Governance Economic Assessments MicroServices Tier-1 CSP for Azure.
End to end hosting and managed services.
SRE and SIEM SAP Migrations Bigdata and Analytics
Dev Ops Data migrations Azure Arc for Hybrid and Multicloud
Cost Optimization R Factorization for Cloud Azure Synapse for Analytics
Multi Cloud / Hybrid Cloud Data Migrations at Scale Yammer Analytics
Cloud Enablement Migrations Innovate
AzCop/GcCop for Governance &Self Service (Azure/GCP)
AzMigrate Chat/ InfoBot / WorkFlow Bots
Cloud cost management/optimization
Monolith to Microservices
APIXELL (Proposal) AutoNote
Artisan RPA on Azure batch
DRaaS
Enterprise Cloud Strategy and BrainScale’s Solution Map
Cloud Strategy
Automation
Business
Continuity
Innovations
Governance Security
Improve cost structure Law of the Land Industry Compliance
Disaster Recovery Site Reliability Process Chain High Availability
Risk Management Support Workflow Management RTO, RPO and SLA’s
Democratize Smart Spread Optimization and Diversification
Hyperscale
Automation
IoT and Edge Systems
Connected ThingsData Analytics
Automation and ScalabilityDeployment AccelerationIT OPS
Just In Time Elasticity
Reusable Infrastructure
TemplatesSelf Service Capabilities Resource Consistency
Organized Cloud Roles and Responsibilities Org. Security Baseline
Life Cycle Management
Co
st M
an
ag
em
en
t
Art
isa
n
Dra
aS
Tuxe
do
AZ M
igra
te
Az
Co
p
Knowledge ManagementMachine Learning
Artificial Intelligence
Cognitive Analytics
Multi Cloud
Enable
Innovate
Our Service Offerings
In your cloud
adoption journey
CAF
Design
SRE
Cost
Management
Our Solutions that Aid
cloud adoption process
10X Faster
• AzCop
• Cost Management
• APIXELL
• Artisan
• DraaS
• AzMigrate
• ChatBots
• AutoNote
• RPA – Batch ProcessSIEM
Automation
Migration
Hybrid
Strategy
IOT
ML
AI
Microservice
s
Analytics
Services – Project Highlights
Big 4 firms- Complete Global Networking, DRaaS, Local Cloud Enablement in Swiss and Germany, AzCop based Self Service implementation, MSP for BAU, DevOps/AKS, Complete cost management for Cloud.
Financial services customer- AzCop, Heavy on automation, COE Helpdesk, DevOps and AKS
Pet care company- Automation/DevOps-Terraform/Chef, Rackspace to Azure Migration/Modernization.
Advtertising Serving Platform- HEAVY ENGINEERING- Very large on-prem to Azure migration with rigorous performance requirements to generate advt. impressions with milli-second response. Worked with Microsoft Product teams and CAT teams to tune the Azure platform.
CAB Aggregator- One of the largest application migration from AWS to Azure for payment gateway and cab booking and entire data platform.
BrainScale & Microsoft Co-Sell offers
• Microsoft CAF Workshop and Enablement
• Cost Optimization Assessment
• Cloud Readiness Assessment
• BrainScale is a part of Microsoft (AMP) program with the ability to migrate up to 500VMs or 100SQL instances at "no cost" to our customers; roughly a ~300k value
Microsoft Cloud Adoption Framework
Cloud Adoption Drives Business Value Creation
Resilience Compliance
Growth
Efficiency
✓ Lowering Capex✓ Improving IT utilization✓ Lower people cost✓ Increased automation
✓ Business Continuity✓ Disaster Recovery✓ Load Balancers
✓ New business lines✓ Growth spurts✓ Time to market
✓ Security✓ Audit✓ Governance tools
AZCop
Business Value Accelerates Cloud Adoption, time-to-market.
Automated Governance and compliance
Empower application teams to leverage cloud securely
Reduces time and manual effort using automation and thereby saving costs.
Compliance/Usage/Billing Dashboards
Internal Marketplace for blueprint based deployment
Resilience Compliance
Growth
Efficiency
Solution Overview
• Integration Capabilities with multiple Self-Service Portals .
• Utilizes native azure tools like blueprints and polices to expand them at enterprise scale
• Provision Guard-Rails for Cloud Resources for teams to focus on productivity than security and compliance
• In Built Self-Service capabilities with ability to customize the dashboard
• OS hardening workflow automation (works with any 3rd part CM tool like puppet, chef or custom script Extension)
• Builds on top of Azure ARM Policies, Blueprints and Azure Management Groups
Contrasting (With or Without AzCOP)
• On-Premises practices adopted in the cloud.
• Little to no support for modern DevOps processes or Infrastructure as Code practices.
• Enterprise teams try to go around Central IT to get the job done leading to unknown security risks.
• Overwhelmed Central IT Team, result: provisioning time that runs into several hours and days.
• Value proposition of cloud unrealized.
Enterprise Development Teams
• Obtain an Azure subscription / Resource Group for their project using AzCopportal.
• Teams can now get direct access to Azure Portal
• Current compliance status to enterprise controls.
• Internal chargeback costs.
• Access Internal cloud marketplace.
• Generate SOC / HIPAA etc. compliance reports.
On-Premises
AzCop Portal
Enterprise DevelopmentTeams
AzCop Bot
Project Workspace Provisioning
Microsoft
Azure
Enterprise DevelopmentTeams
Project Workspace Provisioning
Enterprise DevelopmentTeams
Central IT
Microsoft
Azure
Ticketing Systems
ITSM
Phone
CrAzCop Bot
• Create Subscription / Resource Groups on request.
• Setup Virtual Networking components.
• Apply Blueprints to setup policies, RBAC.
• Setup logging, monitoring and alerting defaults.
• Listen on Azure control plane events.
After initial setup via AzCop portal, teams
can hit Azure control plane directly. . .
BrainScales IP Hero Solution - AzCopAz = Azure, Cop = “Protect & Serve”
AzCop Customer Case Study• AzCOP will ensure the security of those services working
in the background. The groundwork is being laid ensure that all SOC compliance, internal chargeback, advanced monitoring, etc. are also brought into the fold in an integrated fashion.
Customer is looking to use Microsoft Azure, not only to move existing on-premise applications to Azure, but also develop new kinds of applications based on latest technologies that are offered on the Azure platform. Before they embark on this effort, they would like to setup systems and processes in place that result in creation of secure and well-governed Azure subscriptions and Resource Groups that applications teams can leverage. The creation and management of these subscriptions and resource groups should be carried out in a self-service fashion.
With the implementation of AzCop solution, internal customers and engineering teams were able to use the AzCOP’s portal to request Azure Subscriptions and Resource Groups for their specific projects. These requests are then being automatically put through an approval process, and the actual creation, modification and hardening is executed through AzCOP and the automation framework built in the tools framework.
Over the next several months, customer will continue to build on top of the AzCOP solution to build the governance and security policies that meet their organization’s InfoSec standards. This will then enable whitelisting several Azure services so that internal teams can directly consume those services without Central IT teams involvement.
AzMigrate
Bird’s Eye view on the Migration Journey
R Factorization and Analysis of On-Premsis Assets
Workloads preparation for cloud migration
Live Migration Report and Projected Timelines
Post Migration – Optimization based on ARC
Artisan
Business Value of Artisan
Reduce manual efforts to create/update Golden Image process for Windows & Linux
Reduced time to create VM with pre-installed software and configuration with Golden image
Always deploy compliant VM with required agents and services.
Updating Images with additional configuration changes is faster
Compatible with all Major cloud platforms to have golden image.
IT and business can collaborate on Golden Images.
Resilience Compliance
Growth
Efficiency
Solution Overview
Packer filePacker
provisionersCI/CD Pipeline
Publish Image to shared image
galleryNew VM spin up
Auto Register with Azure Update Management
Push periodic updates
VMs receive updates on a
schedule
Post VM creation task
Before Artisan
After Artisan
Cost Analytics
Business ValueAzure billing data for entire Organization and not limited to single tenant
Highly customized reporting requirements for management/business teams
Chargeback possible both at Subscription and Resource Group level
Billing/Chargeback to Application Teams/Business
AHUB/Power Scheduler/RI based cost saving report
internal Mark-up and integration with internal charges (like WAF)
Resilience Compliance
Growth
Efficiency
Solution Overview
Azure Billing data pulled in from EA Portal daily and this billing data processed via Hadoop dynamic cluster for Markup processing
System access controlled via Azure AD accounts and also via Azure AD Groups (like for Admin)
Owners view the Azure and internal charges side by side, as if coming from single source, and they can delegate rights to anyone to view their dashboard
Owners can manage the charge codes and other meta data like application name, escalation contacts etc.
Credits can be loaded in the solution
Regional view available to help during Azure outages
Service Line view of subscriptions available for subscriptions/resource groups
Contrast (with/without the solution)
Azure billing and chargeback at an enterprise level
Azure and internal charges in one place
Easy view of subscription/resource
group causing cost spike for owners
Detailed view provides resource
level data to slice and dice data according to
needs
Demo
Disaster recovery as a Service
Business ValueBusiness continuity for Mission Critical Applications for Enterprise
Prevents enterprise from losing revenue (and firm reputation) during disaster scenarios
Help with Compliance and Auditing requirements
Cloud Scalability/Flexibility/Pay as you Go model for DRaaS
Significant reduction in Cost for (staging) DR hardware due to Cloud native services and features (reduced ROI)
Use of Native PaaS functionalities which has DR/HA built in the service
Tests are simplified through ready-to-use cloud services that allow systems to be tested in parallel with production systems (minimize downtime during DR Drill)
Resilience Compliance
Growth
Efficiency
Service Overview
• Establishing appropriate DR tiers and identifying service framework including BIA (Business Impact Analysis)
• Design of new Applications with DR/HA built-in using Cloud Native services
• Comprehensive assessment of existing Applications and its Backup & Recovery status
• Creating a comprehensive Cost Estimate for Business for DR Solution
• Creating Architecture diagram and Implementation of DR solution
• Mock DR drill to validate RTO/RPO
• Real DR Drill for readiness (Failover/Failback)
• DR Postmortem Report
• 60+ Applications DR’d in last 2 years
Contrasting - With or Without Cloud
Replication channels
VMware SRM SQL AlwaysOn,
SAN
Primary Site
Hyper-V VMWarePhysical
Hyper-V VMWare
l
Recovery Site
Traditional Disaster Recovery
Microsoft Azure
Orchestration and Replication channel:
InMage Scout
On-Prem to Public Cloud
Primary Site
Replication Channels
Hyper-V Replica, SQL AlwaysOn , ASR
Hyper-V VMWarePhysical
Production
Disaster Recovery /
High Availability
Public to Public Cloud
• Hardware at DR site Staged (Cold/Warm/Hot)
• Low ROI , cost increases (Cold->Warm->Hot)
• Not Scalable/Complex Solutioning
• Warm or Hot Recovery , ROI minimal , Only storage cost
• Orchestrated Recovery
• Use of Cloud Native functionality
• Minimal migration curve when Application migrates to cloud
• Warm or Hot Recovery , Near Zero RTO/RPO
• DR/H/A by Design
• Use of Cloud Native functionality (most PaaS Services has DR built in)
• DevOps practices leveraged
Case Study
• Large EY Sharepoint based Platform (EY Absolute)
• Combination of PaaS and IaaS Services
• Gold Tier Application RTO 24 Hrs , RPO 4 Hrs
• Complexities addressed around IAM/Networking/Security/PaaS solutions
• Like to Like DR environment cost $106K (Running Cost during real DR scenario)
• Cost with ASR $23K (Protection Cost during normal business scenario)
• Total Savings $83K (82% )
Example Architecture Diagram
AzAssistBOT Framework
Business Value
Resilience Compliance
Growth
Efficiency
Receive proactive notifications over a communication channel – Subscription based
Activity reporting to specified teams and appropriate workflow channels
Helps in taking preemptive measures on azure resources (write or update) through BOT Conversation.
Managing of azure resources by monitoring and triggering pre-configured action on it
Get individual / Group azure resources cost report.
Solution Overview
• AzAssist is based on Microsoft’s bot framework integrated into Microsoft Teams
• Integrated with Azure Monitor to receive existing subscribed alerts
• Proactive Messaging to Individual Users or Configured groups
• Scales at real-time, no explicit infrastructure requirements
• The BOT can perform Read/ Write / Update operations on Azure Assets
• Based on the role-based access to azure resources, All the cost metrics can be requested
• AzAssist can integrate with other collaboration platforms like Slack, skype etc.
Yammer Analytics
Business Value
Resilience Compliance
Growth
Efficiency
Provides insights on employee engagement which drives effective business decisions.
Analyze employee collaboration in the yammer groups.
Provides trends on individual employee’s sentiment by their geographic presence, individual business units and projects
Customer Case Study
• Brainscale implemented Yammer Analytics for an Enterprise customer to study the employee pulse.
• The insights gained by implementing yammer analytics spanned across different areas.
• Trend analysis
• Sentiment Analysis for company publications
• User behavior analysis
• Collaboration time spent
• Identification Positive champions.
• Employee contribution towards knowledge sharing and innovative pilot solutions
• Survey Analysis for internal market research
• Summary of organization strength – Attrition rates etc.
• The solution is completely based on PaaS and serverless components on Azure
• With a comprehensive executive dashboard based on PowerBI the decision makers were able to quantify metrics in near real time.
41
Multi Cloud & Hybrid Cloud Enablement
Performance
Faster Time to Market
Geographic Reach
Compliance
Extended Capex to Opex
Resilience
Utilize IT infrastructure investment until EOL
Customer Technology preference
Business Value
Resilience Compliance
Growth
Efficiency
Service Capabilities
• Cloud Advisory for MultiCloud Foundations and Strategy evolution
• Network Layout for Public- Private – Hybrid Scenarios
• Centralized IAM for access management to multiple clouds
• Resource Tagging
• Multi Cloud Billing
• Unified InfoSec Policy extensions to Multi Cloud/ Hybrid Cloud scenarios
• Continues compliance frameworks for remediation for InfoSec Violations
• Centralized SIEM tools ( Sentinel, Splunk, ELK)
• Centralized Self Service Capabilities
• Unified Automation through open source tools ( Ansible, Terraform)
Multi Cloud Benefits
“Most organizations adopt a multicloud strategy out of a desire to avoid vendor lock-in or to take advantage of best-of-breed solutions,” he says. “We expect that most large organizations will continue to willfully pursue this approach.” – Gartner
Avoid Cloud vendor Lock-In secnarios
Better Pricing negotiations with cloud vendors
Performance Benchmarking to choose from best assets available from cloud vendors
Eliminate Shadow IT - influenced by decision makers
Leverage best solutions from heterogenous clouds
Thank you