Lightning Round 4

​

Thursday Nov 7 1pm

Schedule:

1. Immo Noack-The ‘Open Clouds for Research Environments’(OCRE) project for the European research community
2. Bill Wrobleski-Cloudy in Happy Valley
3. Glenn Blackler/Kari Robertson-IAM in AWS-Jekyll and Hyde
4. Gerard Shockley-Providing a cloud service for students
5. Jeff Whitworth-Reinventing your IT Department for Cloud
6. Bill Allison-The Plug-n-Play University: Cloud Culture vs Service Management Culture

Immo Noack

Up Next: Bill Wrobleski

Open Clouds �for Research �Environments

Immo Noack

immo.noack@switch.ch

Ithaca, 07. November 2019

© 2019 SWITCH | 4

© 2019 SWITCH | 4

Open Clouds for Research Environments (EU project)

Purpose: Simplify the use of commercial cloud services in the European scientific community

​

Consortium consisting of

• GÉANT - Preparation & implementation of the tender
• CERN - High demand/user for clouds
• RHEA Group - Expert knowledge in the field of Earth Observation
• Trust-IT - Communication and publication of the service portfolio

​

© 2019 SWITCH | 5

GÉANT

• NREN Association
• Data-Network
• EU Project

© 2019 SWITCH | 6

GÉANT

• NREN Association
• Data-Network
• EU Project

© 2019 SWITCH | 7

• Infrastructure as a Service (IaaS)
• Pan-European tender
• Results: framework agreements
• Not winner takes all, but provide choice
• 4 year framework agreements
• NRENs act as mediators

© 2019 SWITCH | 8

​

​

294 Institutions

9.8m Euros

18 Countries

© 2019 SWITCH | 9

What will be tendered?

• Infrastructure-as-a-Service
• Platform-as-a-Service (of the IaaS Provider)
• Software-as-a-Service (of the IaaS Provider)

© 2019 SWITCH | 10

Desired result for commercial cloud

• Compatibility with EU data protection regulations incl. GDPR
• Ready-to-use-Contracts
• Direct peering with GÉANT network
• IdM- / SSO- Interfaces
• Certifications
• Reporting to GÉANT

​

© 2019 SWITCH | 11

​

​

Must have

• Price advantages
• Added value
• AAI support
• Network connection GÉANT
• GDPR compliant
• Data storage in EU/EWG

Nice to have

• Waiver of transfer fees
• Licensing
• Necessary licenses included
• Resale/joint use in research
• alliances possible
• BYOL support

​

​

© 2019 SWITCH | 12

• Q1 & Q2 2019
• Gather requirements from the research community
• Input from cloud providers.
• NREN preparation, through GÉANT cloud team.
• Q2 & Q3 2019
• NREN roles (ready in May) and formation and gathering of institution buyer groups (ready in July)
• October 2019
• Launch of OCRE Pan-European tender
• Q1 2020
• Tender completed, framework agreements signed.
• Technical service validation via a multidisciplinary test validation benchmarking suite
• Identity management & network connections
• Services available for usage
• 2020 – 2021
• Entry in European Open Science Cloud service catalogue
• Consumption by individual institutions and buyer groups
• Adoption funds piloting: 9 million euro, for individual researchers, individual institutions and buyer groups

© 2019 SWITCH | 13

© 2019 SWITCH | 14

Working for a better digital world

© 2019 SWITCH | 15

Bill Wrobleski

Up Next: Glenn Blackler/Kari Robertson

Cloudy in Happy Valley

Bill Wrobleski - AVP Infrastructure

Lots of cool cloudy things going on

Plant Village – David Hughes Ph.D.

Developed a service to democratize access to knowledge to improve farming in underserved countries around the world.

(2018 E&I Cloud Leadership Award Winner)

DNA Design Simulations – Howard Salis, Ph.D.

6000 researchers worldwide to share methods, data, and run compute intensive simulations

Wild Nature Institute – Derek E. Lee, Ph.D.

Study to understand births, deaths and the movement of more than 3,000 giraffes in East Africa

​

These serve as a glimpse of over 150+ projects and initiatives across Penn State that we know about.

​

Current State of Services

√ = Complete / Active ! = Incomplete / Issues X = Not Started / Unavailable

”Known” cloud spend

SIMBA

$754k

Grants and credits

COE Landslide Alert System

$750k

Conclusion

Indiana Sucks

Glenn Blackler/Kari Robertson

Up Next: Gerard Shockley

IAM in AWS - Jekyll and Hyde!

Glenn Blackler | blacker@ucsc.edu

Kari Robertson | kari@ucsc.edu

Overview

IAM -> AWS | 2/2017

​

UC Santa Cruz IAM =

• LDAP (OpenDJ)
• Shibboleth
• Grouper
• PHP front-end
• Active Directory

Jekyll!

Resiliency

​

• New nodes whenever needed
• Multi-AZ provides solid BC/DR
• Easy to transition to new hardware
• Easy cloning and backups

Hyde!

LDAP + AWS = Niche

​

• Difficult to use auto-scaling due to replication
• ELB limited capabilities
• Does not detect problems?
• NLB on the way

​

Jekyll!

Cost Savings

​

• ~50% cheaper
• Proactively add/remove capacity
• Quickly create non-production environments

Hyde!

Non-Production Stability

​

• Investigating why systems don’t come up cleanly
• Shared code environment

​

​

Jekyll!

Inspiring Staff

​

• Excitement about working on new technology - innovation!
• Motivated to make continuous service improvements
• Encouraging staff to expand knowledge of full stack

​

​

​

Hyde!

Staffing Challenges

​

• IAM + AWS = Steep learning curve
• Desire to revisit architecture design

​

​

Jekyll!

Improved Security

​

• More frequent patching with limited business involvement
• Clearly defined security standards and best practices
• No longer responsible for physical security

​

​

​

Hyde!

Cloud Governance

​

​

• IAM needs to move at the same speed as organization
• Adoption slow for new services due to Cloud Team capacity

​

​

​

Looking Forward

STAFF

SECURITY

EFFICIENCY

EVOLUTION

TECHNOLOGY

GOVERNANCE

Gerard Shockley

Up Next: Jeff Whitworth

Boston University �EA&SD Cloud Services Offerings���Providing a cloud service for students

​

​

Cloud Forum 2019

Agenda

• Cloud Services for Students (Teaching and Learning)
• Illustrate Intake Process and service provider selection
• Free access to cloud services for their coursework
• AWS – Serverless development, Machine Learning
• Azure – Microsoft Windows access
• Google Cloud Platform – Native Cloud AI

​

​

​

Information Services & Technology

39

Information Services & Technology

40

Information Services & Technology

41

Cloud Computing Intake Form

Information Services & Technology

42

April 29, 2016

Information Services & Technology

43

Information Services & Technology

44

Information Services & Technology

45

Jeff Whitworth

Up Next: Bill Allison

Jeff Whitworth

Reinventing Your IT Department for the Cloud

“Cloud opportunistic since 2008!”

Tolerance for Change

UNCG

IT Leadership

Chancellor

CIO�Vice Chancellor

AVC�Enterprise Infrastructure

AVC�Business Applications

AVC�Service & Support

Leadership Changes

​

​

• CIO Retires
• New Chancellor
• New Provost
• New CFO

​

Campus Technology Transformation Strategy�2017 - 2022

Cloud First:

Build cloud ready IT infrastructure

​

Mobility:

Transition to low touch services available on any device, anywhere

Automation:

Automate business processes and platforms to improve operational efficiency and cost effectiveness

​

Student Success:

Innovation:

Cultivate ideas and partnerships that foster collaboration and giant steps

Support innovative learning

Iterative Approach…

Network Architecture

Systems Architecture

Identity

Architecture

Client Computing Architecture

Infrastructure

Security

Enterprise

Networking

Systems Infrastructure

Identity & Access Services

Client Computing

Infrastructure

Security

Cloud Integration

Enterprise

Networking

Systems Infrastructure

Identity & Access Services

Client Computing

Infrastructure

Analytics

Technology Planning and Operations

Enterprise

Systems

Solutions Engineering

Enterprise

Networking

Infrastructure

Platforms

Identity & Access Services

Systems Engineering

Infrastructure

Analytics & Event Management

Communications Infrastructure & Operations

Enterprise

Systems

Lessons Learned (so far)

• Take away the noise
• Cloud positions create jealousy
• Collective people management
• Fund training
• There will be parting of ways, plan for it

​

Bill Allison

THE

PLUG-N-PLAY

UNIVERSITY

Deploying Departmental Solutions on SaaS & PaaS Using Common Platforms

​

Cornell Cloud Forum 2019 Talk

​

Bill Allison CTO

Ram Kapoor CMO

Founded 1868

30,574 Undergraduates

11,336 Postgraduates

1620 full time faculty

130 Academic Departments

80 Research Units

107 Nobel Laureates

UC researchers generate ~500 patents a year

UC Berkeley

62

We have challenges…

63

Access and Excellence

64

Technology is transforming our world

65

Excellence requires technology…

Every function at the University now incorporates technology…

And decisions about how to use technology are distributed widely

66

The Myth of the Common Solution

Other applications

Custom Mobile App

The Myth of Control

Solution: The Plug-n-Play University

Architecture Modular designs, security, accessibility, policy

Platforms Common infrastructures that can be tailored to meet local needs

Integration Systems share and access real-time data where needed

​

​

Platforms: lower costs and focus on what matters most.

The UC Berkeley Mobile App is a mobile platform - powered by Modo Labs – that can help you focus on your audiences and their needs.

​

• Integrates with campus infrastructure
• Provides native apps for iOS and Android, plus web app
• Provides most campus features out of the box
• Can delegate management widely to campus units

Operationalizing the Campus Mobile Platform

Arts+Design

Central IT

Public Affairs

Parking & Transportation

Student Affairs

Alumni Development

Student Government

Executive Sponsors:

• AVC-IT & CIO
• VC Public Affairs

​

Year 1-2 Consortial Partners:

Funding, building functionality and testing

HR

Staffing:

0.33 FTE, Central IT

0.10 FTE, Public Affairs

(Design, Management)

​

The Best Part: Our student team

(Manage, build and operate the platform)

Operational Governance Team:

IT, Public Affairs, Student Affairs, A+D (consortial partners)

24 HRS

Thank You!