enterprise architecture target state architecture and

Canada Mortgage and Housing Corporation (CMHC)

Enterprise ArchitectureTarget State Architecture and Technological Landscape

2

Background

CMHC is currently in the process a major technology transformation. The target state architecture and business capability models are presented for context only. The list of technologies presented includes key solutions being implemented in the target state architecture. This list is not exhaustive and may be modified over the course of the transformation. This list is provided for informational purposes and to provide background on CMHC’s technology environment.

3

Table of Contents

Business Capability Models

Integration Guiding Principles

Enterprise Architecture Guiding Principles

Target Solutions Descriptions

Target Conceptual and Logical Architectures

4

EA Guiding Principles

Eleven EA guiding principles drive the definition of the target state architecture.

Adopt a platform-based approach to simplify integrations, promote re-usability, and enable interoperability

Platform-Based Approach

Cloud-First,SaaS-First

Simplify application portfolio across business sectors to reduce footprint, reduce complexity, and increase flexibility

Landscape Simplification

Enable agility and flexibility through the use of multi-tenant, Cloud-based platforms; prioritize SaaS Cloud model, followed by PaaS, then IaaS

Ensure infrastructure and data solutions are compliant with CMHC’s data regulations, as well as for auditing and privacy inquiries

Compliance

Align end-to-end target architecture to CMHC’s security requirements

Security

Minimize risk to critical CMHC business operations in conjunction with the 3 lines of defense

Risk

Apply industry-leading practices in developing an enterprise-wide target architecture that is scalable, extensible, reusable, and enables business and technology evolution

Industry-Leading Practices

Buy technology platforms / solutions wherever possible instead of building them in-house; customize only for strategic differentiation

Buy vs. BuildEnable information to be trusted, accessible, shareable, and usable in a standard manner Data

Ensure target architecture and technology solutions align to and enable the Enterprise-Wide Digital Strategy

BusinessAlignment

Provide a seamless user experience through a user-centric approach, enabling simple and easy access to capabilities

UserExperience

Cloud-First,SaaS-First

5

Table of Contents






6

Outside of Scope of 8.1 Workstream

Domain Architecture – Integration

The Integration domain defines the interaction and communication capabilities to join enterprise business processes.

Target State Architecture Components

Thumbnail of a Domain Diagram

Domain Context

Target Domain Features

• Decoupling systems of engagement from systems of records• Increased reliability and reduced operational effort with standardization and

active monitoring.• Parameterization & orchestration of business logic and processes• Re-use of components across processes, products, and sectors• Ability to efficiently develop new capabilities by combining existing objects• Simplification of logical components / coding requirements• Exposure of services through standard protocols• Multi-channel notification available through Publication-Subscription services• Common repository of all reusable enterprise services

• The Integration layer decouples systems of engagement from each other and from systems of records, while enabling efficient integration between data and systems

7


Seven EA guiding principles drive the definition of the target state integration architecture.

Streamline processes to send data frequently through message-based integrations

Real-Time or Near Real-Time

Integration

Publish and promote enterprise APIs to facilitate a scalable, extensible, reusable and secure integration architecture

API Management

Align end-to-end target integration architecture to CMHC’s security requirements

End-to-EndSecurity

Integrate with the CMHC Operations Architecture for audit, logging, error handling, monitoring and scheduling

OperationsManagement

Achieve technological application independence through middleware and asynchronous message-oriented integrations

Application Decoupling

Event-DrivenArchitecture

Design systems to transmit and/or consume events to facilitate responsiveness

Consider all aspects of the integration lifecycle during data integration processes

Transient DataLifespan

8

Table of Contents






9

Target Conceptual Architecture

Each conceptual layer groups together a set of architectural components to enable the target state.

This layer represents all individuals and parties who interact with CMHC.

1

This layer represents all the mechanisms through which products and services are marketed, sold and serviced to users.

2

This layer represents the components that render and display content to the channels; it decouples presentment from business process, rules and logic.

3

This layer represents the common shared components used to support the enterprise integration needs, leveraging a service-based architecture.

4

This layer represents the enterprise-wide components that are shared across all sectors.

5

This layer represents the components that are shared across corporate functions.

6

This layer represents the components that are specific to the Capital Markets sector.

8

This layer represents the components that are specific to the Assisted Housing sector.

9

This layer represents the components that are specific to the Policy, Research, and Public Affairs sector.

10

This layer represents the common components for the consolidation, manipulation, and governance of data as well as generation of insights.

11

This layer represents the components that manage the hardware and software that provide compute, network, and storage in a Cloud-First architecture as well as management of devices.

12

This layer represents the common components that ensure safe and secure data exchanges for system interactions and controlled access and traceability for users.

13

This layer represents the components that are specific to the Insurance sector.7

1

2

3

4

5

6

7 8 9 10

11

12

13

Users

Channels

Presentation

Integration

Cross-Sector

Corporate

Capital Markets

Assisted Housing

Policy, Research & Public Affairs

Data, Information, & Analytics

Infrastructure

Security

Insurance

10

Target Logical Architecture

The logical architecture depicts the enterprise view of all components required to enable the digital target state.

Key Inputs

Previous Due Diligence Materials

Accenture’s Industry Experience and Best Practices

Newly developed business capability models from EWDS

Focused digital opportunities identified by the sectors during EWDS sessions

Latest Knowledge from in-flight workstreams for Applications, Security, Data, and Infrastructure

Key Characteristics

Each architectural component belongs to one conceptual architecture layer

Business capabilities are supported by one or more architecture components

Digital opportunities are enabled by multiple architectural components

Architecture components are mapped to one or more target state solutions

Provides an enterprise-wide context for target technology discussions

A

B

C

D

E

Security

Users CorporateEmployees

FieldAgents Lenders Consumers

ChannelsWebFace-to-

Face Mobile Social Media

Video Chat & IM

Call Center E-Mail APIsSMSMail / Fax

Presentation Content Management

Digital Asset Management Web Portal Digital Forms Web Analytics Mobile PlatformPersonalization

Integration

Core Application

Shared ComponentsCross-Sector

Corporate

Sector-Specific Components

Capital MarketsTreasury

SecuritizationPortfolio Management

Assisted HousingGrants

LendingAH Claims

Policy, Research, & Public Affairs

PolicyMarket Research

Insurance

Insurance Claims

Insurance Policy

Underwriting

Insurance Fraud

Data, Information, & Analytics

Ingestion Authorized Warehouse

Data Lake

Operational Reporting

Data Visualization

Metadata Management

Advanced Analytics

Enterprise Reporting

Data Discovery

Data Quality Management

Operational Data Store Data Science

Master Data Management

Information Governance

BI Semantic Model

Model Management

Infrastructure Cloud Provisioning Cloud Storage

Cloud Network

Networking & Connectivity

Device Management

Systems Management &

Monitoring

Backup & Archiving

Voice & Conferencing

Remote Access Mainframe

End-User Devices

Cloud Compute

Government Entities

Service Providers Third Parties

Phone

API Management

Document Transfer

Enterprise Service Bus

Orchestration

Business Process

Management

Logging

Service Repository

Business Rules Engine

Intelligent Process

Automation

Data Integration

Secured Sharing

SurveysAH Oversight

Knowledge Management

Digital Marketing

Products & Pricing Productivity Communication

& CollaborationEnterprise

SearchCustomer

Management

Enterprise Social

Distributed Ledger

RecordsManagement Agile & DevOps

SalesManagement

MarketingManagement

ServiceManagement

Contract Management

Case Management

Document Management

Document Generation

Finance LegalProcurementHR ITLinguisticsRisk Audit Facilities

Identity & Access

Management

Infrastructure Security

Data Security

Software & Application

Security

Cyber Security

Quality Management

11

Table of Contents






12

Corporate Functions Business Capability Model

There are twelve key Corporate Functions areas.

Corporate Functions

5.0 Capital Markets 6.0 Assisted Housing

1.0 Organizational Strategy & Governance

2.0 Brand Marketing

4.0 Insurance 7.0 Policy, Research & Public Affairs (PRPA)

8.0 Finance 10.0 Audit

17.0 Procurement

11.0 Risk

13.0 Legal and Compliance 14.0 Business Services15.0 Property & Facilities

Management12.0 Human Resources

16.0 Linguistics

3.0 Channels

9.0 Evaluation

18.0 Security & BusinessContinuity

19.0 Information Technology

13

3.1 Business Services Capability ModelProvide business services needed to run the overall business

9.1 General Accounting

9.1.1 Maintain Accounting Master Data

9.1.2 Record Transactions

9.2 Treasury & Cash Management 9.3 Finance & Accounting Operations 9.4 Financial Planning & Analysis

9.2.1 Treasury Strategy & Governance

9.2.2 Liquidity & Cash Management

9.2.3 Financial Risk Management

9.2.4 Operational Risk Management

9.1.5 Close Books & Consolidate Result

9.1.6 Perform Financial Reporting

9.1.4 Analyze & Reconcile Accounts

9.1.3 Manage Interfaces

9.2.5 Treasury Operations

9.2.6 Accounting to Close and Reporting

9.3.1 Fixed Asset Accounting

9.3.2 Record-to-Report

9.3.3 Purchase to Pay

9.3.4 Travel & Expense Reimbursement

9.3.5 Order to Cash

9.4.1 Planning

9.4.2 Budgeting

9.4.3 Forecasting

9.4.5 Manage Inbound Documents

9.4.4 Cost Allocation

9.4.6 Record Good Receipt, Approve and Schedule Payment

14.0 Business Services14.5 Insurance Records Support

14.6 Contract Management 14.7 Green Strategy 14.8 Business Management, Planning and Reporting

14.9 Travel Program Management

14.1 Design and Production Services

14.1.1 Customer Service Desk

14.1.2 Project Management

14.1.3 Creation and Design of CMHC Collateral

14.1.4 Digital Products/Library

14.1.5 Digital Signage

14.1.6 Business Cards

14.1.7 Archiving/Digital Support

14.2 Material Management and Distribution

14.2.1 OPIMS Products14.2.2 Mail/Courier/Freight

Services14.2.3 Consumables for the

Printer Fleet

14.3 Print Shop Printing and Finishing, Digitization, Network

Fleet Printers

14.3.1 Print Shop Services

14.3.2 Finishing Services

14.3.3 Digitization Services

14.3.4 Network Printer Fleet

14.4 Contact Centre and Reception

14.4.1 Reception Services

14.4.2 Contact Centre Calls

14.4.3 Sales Orders

14.4.4 General Inquiries

14.4.5 Web Inquiries

14.4.6 Correspondence

14.4.7 Mail Lists

14.5.1 Records Support

14.6.1 Contract Management 14.7.1 Strategize

14.7.2 Monitoring & Reporting

14.7.3 Green Team Meetings

14.8.1 Manage Business Related Activities

14.8.1 Business Reporting

14.9.2 Travel Policy Management

14.9.1 CMHC Travel Support

14.9.3 Travel Reporting

14

Components to Business Capabilities Mapping

Business capabilities are enabled through key architecture components.

14.0 Business Services

Enabling Architecture Components

• Leverage automated templates, documents operations (approve, modify, submit), and document conversions to become paperless and standardize back office information exchange• Leverage document lifecycle workflow to effectively manage documents when documents can be disposed and removed from inventory

Business Implications / Considerations

Enterprise Reporting

Records Management

Knowledge Management

Communication & Collaboration

Web Portal

Productivity

Enterprise Search

Intelligent Process Automation

Document Generation

Quality Management

Document Management Enterprise Service Bus

API Management Business Process Management

Corporate Functions

HighMediumLow

Target Component Coverage:

Legend

15

Print/Distribution Service Request Business Capabilities

15

Capabilities for Requesting Print/Distribution Services:

• Request print/distribution services• Track status and costs of service requests• Receive alerts for late work• Receive monthly invoice to send to Finance• Receive monthly volume report from vendor• Design & view daily and monthly reports (job status,

costs, overdue work, type of work by client, volumes)

Business Implications of the Target Architecture:

• Consolidate all information in one place to provide Business Services with all the resources they need to process applications while providing visibility to key stakeholders

• Enable a sharing workplace of analytics by leveraging the data lake and the native tools to gain insight into customer interactions and business trends

• Leverage CRM common platform to exchange documents with External Service Providers, automate document content validations and simplify workflow approval

Business capabilities are enabled through key architecture components.

16

Table of Contents






17


Target Solution Description

Sitecore Experience Platform (XP)

The Sitecore Experience Platform provides for:• Web Content Management and Experience - Manage digital content at scale, in multiple languages and across multiple sites. The focus is on compelling web

experiences versus how content will display by decoupling presentation from content.

Microsoft Dynamics 365 xRM

Dynamics 365 provides a platform for implementing line-of-business applications. These applications are often referred to as Extended CRM (xRM) applications because they leverage the relationship tracking capabilities beyond the typical customer relationship management (CRM) scenarios.

• Web services are used to communicate with the underlying xRM platform layer. Microsoft Dynamics 365 uses a metadata driven architecture to provide the flexibility to create custom entities and additional system entity attributes and also to make upgrades and enable transportation of solutions easier. This allows for changes in the data structure without requiring any change to code.

Microsoft Dynamics 365 Portal

The Dynamics 365 Portal is a platform for exposing and consuming knowledge, accessing tools, and engaging with communities. The basic portal allows one to create a configurable and meta-data driven space that can be used as a springboard for customized applications and to host relevant content.

Microsoft Dynamics 365 for Operations

Microsoft Dynamics 365 for Operations provides the robust functionality and scalability based on Microsoft’s ERP solution, Dynamics AX. Includes Financial Management, Procurement and sourcing, Supply chain management, Project Accounting, and integrated reporting and intelligence.

Microsoft Power BIData Visualization

Microsoft Azure Compute

Microsoft Azure Compute provides an array of services, such as Azure VM’s, Azure Batch, Azure Cloud Services.

18



Microsoft Azure App Services

Microsoft Azure AppServices provides the important services, such as Azure Logic Apps, Azure API Apps, Azure API Management

Microsoft Azure Databases

Microsoft Azure Databases includes Database services:

Microsoft Azure Storage

Microsoft Azure storage provides high scalable cloud storage.

Microsoft Azure Networking

Microsoft Azure network services, provide the features to allow Azure VMs to connect to each other or to on-premises servers with dedicated subnets, and provide Domain Name System (DNS) and load balancing capabilities

Microsoft Azure Enterprise Integration

Microsoft Azure Enterprise Integration provides web and messaging services to enable disconnected application components to exchange messages across organizational boundaries.

Microsoft Azure Security & Identity

Microsoft Azure Security and Identity provides the services such as Azure Active Directory, B2C, Multifactor Authentication, Key Vault and SSE.

Microsoft Azure Developer Tools

Microsoft Azure Developer Tools provides tools and services for developers.

19



Microsoft Azure Monitoring & Management

Microsoft Azure Monitoring & Management includes services to build, manage and monitor all Azure products in a unified console.

Microsoft Office 365 -Office Suite

The Microsoft Office productivity tools include Word, Excel, PowerPoint, Outlook, OneNote, Publisher, Project, Access and Visio (Online and can also be fully installed on PC/Macs and mobile devices)

Microsoft Office 365 -SharePoint Online

Microsoft SharePoint Online enables the organization to easily create and manage customizable team-focused and project-focused sites for collaboration. In addition, it’s possible to deploy an organization-wide intranet portal used to disseminate information and news across the organization.

Microsoft Office 365 -Exchange Online

Microsoft Exchange Online provides email and calendaring features.

Microsoft Office 365 -Advanced Security

Microsoft Office 365 Advanced Security includes Rights Management, Data Loss Prevention, Compliance Centre and other Security features.

Microsoft Office 365 -Skype for Business

Microsoft Office 365 - Skype for Business provides the functionality to: • Connect with other Skype for Business users via instant message, voice calls, and video calls, and let people know your availability with your online status. Share presence, IM, and

audio calling with Skype users.

20



ServiceNow

ServiceNow includes the following major features:-Asset Tracking Systems-Incident Ticketing and Tracking-Change Management

CyberARK sMFT

CyberARK sMFT provides the following major features:-Managed File Transfer (MFT) for Secure FTP.-Secure transfer of data from one computer to another through a network (e.g., the Internet). An alternative to using ad-hoc file transfer solutions, such as FTP, HTTP and others. Offers a higher level of security and control than FTP. Features include reporting (e.g., notification of successful file transfers), non-repudiation, auditability, global visibility, automation of file transfer-related activities and processes, end-to-end security, and performance metrics/monitoring.