enterprise architecture target state architecture and
TRANSCRIPT
Canada Mortgage and Housing Corporation (CMHC)
Enterprise ArchitectureTarget State Architecture and Technological Landscape
2
Background
CMHC is currently in the process a major technology transformation. The target state architecture and business capability models are presented for context only. The list of technologies presented includes key solutions being implemented in the target state architecture. This list is not exhaustive and may be modified over the course of the transformation. This list is provided for informational purposes and to provide background on CMHC’s technology environment.
3
Table of Contents
Business Capability Models
Integration Guiding Principles
Enterprise Architecture Guiding Principles
Target Solutions Descriptions
Target Conceptual and Logical Architectures
4
EA Guiding Principles
Eleven EA guiding principles drive the definition of the target state architecture.
Adopt a platform-based approach to simplify integrations, promote re-usability, and enable interoperability
Platform-Based Approach
Cloud-First,SaaS-First
Simplify application portfolio across business sectors to reduce footprint, reduce complexity, and increase flexibility
Landscape Simplification
Enable agility and flexibility through the use of multi-tenant, Cloud-based platforms; prioritize SaaS Cloud model, followed by PaaS, then IaaS
Ensure infrastructure and data solutions are compliant with CMHC’s data regulations, as well as for auditing and privacy inquiries
Compliance
Align end-to-end target architecture to CMHC’s security requirements
Security
Minimize risk to critical CMHC business operations in conjunction with the 3 lines of defense
Risk
Apply industry-leading practices in developing an enterprise-wide target architecture that is scalable, extensible, reusable, and enables business and technology evolution
Industry-Leading Practices
Buy technology platforms / solutions wherever possible instead of building them in-house; customize only for strategic differentiation
Buy vs. BuildEnable information to be trusted, accessible, shareable, and usable in a standard manner Data
Ensure target architecture and technology solutions align to and enable the Enterprise-Wide Digital Strategy
BusinessAlignment
Provide a seamless user experience through a user-centric approach, enabling simple and easy access to capabilities
UserExperience
Cloud-First,SaaS-First
5
Table of Contents
Business Capability Models
Integration Guiding Principles
Enterprise Architecture Guiding Principles
Target Solutions Descriptions
Target Conceptual and Logical Architectures
6
Outside of Scope of 8.1 Workstream
Domain Architecture – Integration
The Integration domain defines the interaction and communication capabilities to join enterprise business processes.
Target State Architecture Components
Thumbnail of a Domain Diagram
Domain Context
Target Domain Features
• Decoupling systems of engagement from systems of records• Increased reliability and reduced operational effort with standardization and
active monitoring.• Parameterization & orchestration of business logic and processes• Re-use of components across processes, products, and sectors• Ability to efficiently develop new capabilities by combining existing objects• Simplification of logical components / coding requirements• Exposure of services through standard protocols• Multi-channel notification available through Publication-Subscription services• Common repository of all reusable enterprise services
• The Integration layer decouples systems of engagement from each other and from systems of records, while enabling efficient integration between data and systems
7
Integration Guiding Principles
Seven EA guiding principles drive the definition of the target state integration architecture.
Streamline processes to send data frequently through message-based integrations
Real-Time or Near Real-Time
Integration
Publish and promote enterprise APIs to facilitate a scalable, extensible, reusable and secure integration architecture
API Management
Align end-to-end target integration architecture to CMHC’s security requirements
End-to-EndSecurity
Integrate with the CMHC Operations Architecture for audit, logging, error handling, monitoring and scheduling
OperationsManagement
Achieve technological application independence through middleware and asynchronous message-oriented integrations
Application Decoupling
Event-DrivenArchitecture
Design systems to transmit and/or consume events to facilitate responsiveness
Consider all aspects of the integration lifecycle during data integration processes
Transient DataLifespan
8
Table of Contents
Business Capability Models
Integration Guiding Principles
Enterprise Architecture Guiding Principles
Target Solutions Descriptions
Target Conceptual and Logical Architectures
9
Target Conceptual Architecture
Each conceptual layer groups together a set of architectural components to enable the target state.
This layer represents all individuals and parties who interact with CMHC.
1
This layer represents all the mechanisms through which products and services are marketed, sold and serviced to users.
2
This layer represents the components that render and display content to the channels; it decouples presentment from business process, rules and logic.
3
This layer represents the common shared components used to support the enterprise integration needs, leveraging a service-based architecture.
4
This layer represents the enterprise-wide components that are shared across all sectors.
5
This layer represents the components that are shared across corporate functions.
6
This layer represents the components that are specific to the Capital Markets sector.
8
This layer represents the components that are specific to the Assisted Housing sector.
9
This layer represents the components that are specific to the Policy, Research, and Public Affairs sector.
10
This layer represents the common components for the consolidation, manipulation, and governance of data as well as generation of insights.
11
This layer represents the components that manage the hardware and software that provide compute, network, and storage in a Cloud-First architecture as well as management of devices.
12
This layer represents the common components that ensure safe and secure data exchanges for system interactions and controlled access and traceability for users.
13
This layer represents the components that are specific to the Insurance sector.7
1
2
3
4
5
6
7 8 9 10
11
12
13
Users
Channels
Presentation
Integration
Cross-Sector
Corporate
Capital Markets
Assisted Housing
Policy, Research & Public Affairs
Data, Information, & Analytics
Infrastructure
Security
Insurance
10
Target Logical Architecture
The logical architecture depicts the enterprise view of all components required to enable the digital target state.
Key Inputs
Previous Due Diligence Materials
Accenture’s Industry Experience and Best Practices
Newly developed business capability models from EWDS
Focused digital opportunities identified by the sectors during EWDS sessions
Latest Knowledge from in-flight workstreams for Applications, Security, Data, and Infrastructure
Key Characteristics
Each architectural component belongs to one conceptual architecture layer
Business capabilities are supported by one or more architecture components
Digital opportunities are enabled by multiple architectural components
Architecture components are mapped to one or more target state solutions
Provides an enterprise-wide context for target technology discussions
A
B
C
D
E
Security
Users CorporateEmployees
FieldAgents Lenders Consumers
ChannelsWebFace-to-
Face Mobile Social Media
Video Chat & IM
Call Center E-Mail APIsSMSMail / Fax
Presentation Content Management
Digital Asset Management Web Portal Digital Forms Web Analytics Mobile PlatformPersonalization
Integration
Core Application
Shared ComponentsCross-Sector
Corporate
Sector-Specific Components
Capital MarketsTreasury
SecuritizationPortfolio Management
Assisted HousingGrants
LendingAH Claims
Policy, Research, & Public Affairs
PolicyMarket Research
Insurance
Insurance Claims
Insurance Policy
Underwriting
Insurance Fraud
Data, Information, & Analytics
Ingestion Authorized Warehouse
Data Lake
Operational Reporting
Data Visualization
Metadata Management
Advanced Analytics
Enterprise Reporting
Data Discovery
Data Quality Management
Operational Data Store Data Science
Master Data Management
Information Governance
BI Semantic Model
Model Management
Infrastructure Cloud Provisioning Cloud Storage
Cloud Network
Networking & Connectivity
Device Management
Systems Management &
Monitoring
Backup & Archiving
Voice & Conferencing
Remote Access Mainframe
End-User Devices
Cloud Compute
Government Entities
Service Providers Third Parties
Phone
API Management
Document Transfer
Enterprise Service Bus
Orchestration
Business Process
Management
Logging
Service Repository
Business Rules Engine
Intelligent Process
Automation
Data Integration
Secured Sharing
SurveysAH Oversight
Knowledge Management
Digital Marketing
Products & Pricing Productivity Communication
& CollaborationEnterprise
SearchCustomer
Management
Enterprise Social
Distributed Ledger
RecordsManagement Agile & DevOps
SalesManagement
MarketingManagement
ServiceManagement
Contract Management
Case Management
Document Management
Document Generation
Finance LegalProcurementHR ITLinguisticsRisk Audit Facilities
Identity & Access
Management
Infrastructure Security
Data Security
Software & Application
Security
Cyber Security
Quality Management
11
Table of Contents
Business Capability Models
Integration Guiding Principles
Enterprise Architecture Guiding Principles
Target Solutions Descriptions
Target Conceptual and Logical Architectures
12
Corporate Functions Business Capability Model
There are twelve key Corporate Functions areas.
Corporate Functions
5.0 Capital Markets 6.0 Assisted Housing
1.0 Organizational Strategy & Governance
2.0 Brand Marketing
4.0 Insurance 7.0 Policy, Research & Public Affairs (PRPA)
8.0 Finance 10.0 Audit
17.0 Procurement
11.0 Risk
13.0 Legal and Compliance 14.0 Business Services15.0 Property & Facilities
Management12.0 Human Resources
16.0 Linguistics
3.0 Channels
9.0 Evaluation
18.0 Security & BusinessContinuity
19.0 Information Technology
13
3.1 Business Services Capability ModelProvide business services needed to run the overall business
9.1 General Accounting
9.1.1 Maintain Accounting Master Data
9.1.2 Record Transactions
9.2 Treasury & Cash Management 9.3 Finance & Accounting Operations 9.4 Financial Planning & Analysis
9.2.1 Treasury Strategy & Governance
9.2.2 Liquidity & Cash Management
9.2.3 Financial Risk Management
9.2.4 Operational Risk Management
9.1.5 Close Books & Consolidate Result
9.1.6 Perform Financial Reporting
9.1.4 Analyze & Reconcile Accounts
9.1.3 Manage Interfaces
9.2.5 Treasury Operations
9.2.6 Accounting to Close and Reporting
9.3.1 Fixed Asset Accounting
9.3.2 Record-to-Report
9.3.3 Purchase to Pay
9.3.4 Travel & Expense Reimbursement
9.3.5 Order to Cash
9.4.1 Planning
9.4.2 Budgeting
9.4.3 Forecasting
9.4.5 Manage Inbound Documents
9.4.4 Cost Allocation
9.4.6 Record Good Receipt, Approve and Schedule Payment
14.0 Business Services14.5 Insurance Records Support
14.6 Contract Management 14.7 Green Strategy 14.8 Business Management, Planning and Reporting
14.9 Travel Program Management
14.1 Design and Production Services
14.1.1 Customer Service Desk
14.1.2 Project Management
14.1.3 Creation and Design of CMHC Collateral
14.1.4 Digital Products/Library
14.1.5 Digital Signage
14.1.6 Business Cards
14.1.7 Archiving/Digital Support
14.2 Material Management and Distribution
14.2.1 OPIMS Products14.2.2 Mail/Courier/Freight
Services14.2.3 Consumables for the
Printer Fleet
14.3 Print Shop Printing and Finishing, Digitization, Network
Fleet Printers
14.3.1 Print Shop Services
14.3.2 Finishing Services
14.3.3 Digitization Services
14.3.4 Network Printer Fleet
14.4 Contact Centre and Reception
14.4.1 Reception Services
14.4.2 Contact Centre Calls
14.4.3 Sales Orders
14.4.4 General Inquiries
14.4.5 Web Inquiries
14.4.6 Correspondence
14.4.7 Mail Lists
14.5.1 Records Support
14.6.1 Contract Management 14.7.1 Strategize
14.7.2 Monitoring & Reporting
14.7.3 Green Team Meetings
14.8.1 Manage Business Related Activities
14.8.1 Business Reporting
14.9.2 Travel Policy Management
14.9.1 CMHC Travel Support
14.9.3 Travel Reporting
14
Components to Business Capabilities Mapping
Business capabilities are enabled through key architecture components.
14.0 Business Services
Enabling Architecture Components
• Leverage automated templates, documents operations (approve, modify, submit), and document conversions to become paperless and standardize back office information exchange• Leverage document lifecycle workflow to effectively manage documents when documents can be disposed and removed from inventory
Business Implications / Considerations
Enterprise Reporting
Records Management
Knowledge Management
Communication & Collaboration
Web Portal
Productivity
Enterprise Search
Intelligent Process Automation
Document Generation
Quality Management
Document Management Enterprise Service Bus
API Management Business Process Management
Corporate Functions
HighMediumLow
Target Component Coverage:
Legend
15
Print/Distribution Service Request Business Capabilities
15
Capabilities for Requesting Print/Distribution Services:
• Request print/distribution services• Track status and costs of service requests• Receive alerts for late work• Receive monthly invoice to send to Finance• Receive monthly volume report from vendor• Design & view daily and monthly reports (job status,
costs, overdue work, type of work by client, volumes)
Business Implications of the Target Architecture:
• Consolidate all information in one place to provide Business Services with all the resources they need to process applications while providing visibility to key stakeholders
• Enable a sharing workplace of analytics by leveraging the data lake and the native tools to gain insight into customer interactions and business trends
• Leverage CRM common platform to exchange documents with External Service Providers, automate document content validations and simplify workflow approval
Business capabilities are enabled through key architecture components.
16
Table of Contents
Business Capability Models
Integration Guiding Principles
Enterprise Architecture Guiding Principles
Target Solutions Descriptions
Target Conceptual and Logical Architectures
17
Target Solutions Descriptions
Target Solution Description
Sitecore Experience Platform (XP)
The Sitecore Experience Platform provides for:• Web Content Management and Experience - Manage digital content at scale, in multiple languages and across multiple sites. The focus is on compelling web
experiences versus how content will display by decoupling presentation from content.
Microsoft Dynamics 365 xRM
Dynamics 365 provides a platform for implementing line-of-business applications. These applications are often referred to as Extended CRM (xRM) applications because they leverage the relationship tracking capabilities beyond the typical customer relationship management (CRM) scenarios.
• Web services are used to communicate with the underlying xRM platform layer. Microsoft Dynamics 365 uses a metadata driven architecture to provide the flexibility to create custom entities and additional system entity attributes and also to make upgrades and enable transportation of solutions easier. This allows for changes in the data structure without requiring any change to code.
Microsoft Dynamics 365 Portal
The Dynamics 365 Portal is a platform for exposing and consuming knowledge, accessing tools, and engaging with communities. The basic portal allows one to create a configurable and meta-data driven space that can be used as a springboard for customized applications and to host relevant content.
Microsoft Dynamics 365 for Operations
Microsoft Dynamics 365 for Operations provides the robust functionality and scalability based on Microsoft’s ERP solution, Dynamics AX. Includes Financial Management, Procurement and sourcing, Supply chain management, Project Accounting, and integrated reporting and intelligence.
Microsoft Power BIData Visualization
Microsoft Azure Compute
Microsoft Azure Compute provides an array of services, such as Azure VM’s, Azure Batch, Azure Cloud Services.
18
Target Solutions Descriptions
Target Solution Description
Microsoft Azure App Services
Microsoft Azure AppServices provides the important services, such as Azure Logic Apps, Azure API Apps, Azure API Management
Microsoft Azure Databases
Microsoft Azure Databases includes Database services:
Microsoft Azure Storage
Microsoft Azure storage provides high scalable cloud storage.
Microsoft Azure Networking
Microsoft Azure network services, provide the features to allow Azure VMs to connect to each other or to on-premises servers with dedicated subnets, and provide Domain Name System (DNS) and load balancing capabilities
Microsoft Azure Enterprise Integration
Microsoft Azure Enterprise Integration provides web and messaging services to enable disconnected application components to exchange messages across organizational boundaries.
Microsoft Azure Security & Identity
Microsoft Azure Security and Identity provides the services such as Azure Active Directory, B2C, Multifactor Authentication, Key Vault and SSE.
Microsoft Azure Developer Tools
Microsoft Azure Developer Tools provides tools and services for developers.
19
Target Solutions Descriptions
Target Solution Description
Microsoft Azure Monitoring & Management
Microsoft Azure Monitoring & Management includes services to build, manage and monitor all Azure products in a unified console.
Microsoft Office 365 -Office Suite
The Microsoft Office productivity tools include Word, Excel, PowerPoint, Outlook, OneNote, Publisher, Project, Access and Visio (Online and can also be fully installed on PC/Macs and mobile devices)
Microsoft Office 365 -SharePoint Online
Microsoft SharePoint Online enables the organization to easily create and manage customizable team-focused and project-focused sites for collaboration. In addition, it’s possible to deploy an organization-wide intranet portal used to disseminate information and news across the organization.
Microsoft Office 365 -Exchange Online
Microsoft Exchange Online provides email and calendaring features.
Microsoft Office 365 -Advanced Security
Microsoft Office 365 Advanced Security includes Rights Management, Data Loss Prevention, Compliance Centre and other Security features.
Microsoft Office 365 -Skype for Business
Microsoft Office 365 - Skype for Business provides the functionality to: • Connect with other Skype for Business users via instant message, voice calls, and video calls, and let people know your availability with your online status. Share presence, IM, and
audio calling with Skype users.
20
Target Solutions Descriptions
Target Solution Description
ServiceNow
ServiceNow includes the following major features:-Asset Tracking Systems-Incident Ticketing and Tracking-Change Management
CyberARK sMFT
CyberARK sMFT provides the following major features:-Managed File Transfer (MFT) for Secure FTP.-Secure transfer of data from one computer to another through a network (e.g., the Internet). An alternative to using ad-hoc file transfer solutions, such as FTP, HTTP and others. Offers a higher level of security and control than FTP. Features include reporting (e.g., notification of successful file transfers), non-repudiation, auditability, global visibility, automation of file transfer-related activities and processes, end-to-end security, and performance metrics/monitoring.