Sections

Help IT Sleep Better At Night: 7 Steps To A Safer Cloud

Lindsey LaManna

Help IT Sleep Better At Night: 7 Steps To A Safer Cloud, Cloud SecurityCloud Security

While the benefits of cloud such as, improving data access, freeing up internal IT resources for more strategic tasks, cutting costs, and increasing flexibility, versatility, efficiency and economies of scale, are compelling – the risks make many businesses stray away from cloud computing.  Perhaps the biggest concern with the cloud is the security of cloud infrastructure.

Well naysayers, no need to fear, a reliable cloud security plan is here!

NaviSite developed a tested and manageable process and checklist on how to develop a successful cloud computing security plan.  This plan is outlined in the whitepaper 7 Steps to Developing a Cloud Security Plan (registration required).

According to Navisite, “In many cases the cloud provider can achieve better security results in a virtualized environment than enterprises can achieve internally.”  However, even if you choose a cloud service provider with strong security capabilities, it’s important to take an active role in securing your data.  Working together with the cloud provider is the best way to ensure the enterprise resources are protected and the cloud is being securely leveraged.

So without further ado, here are 7 steps to a safer cloud:

1.      Understand there is no one-size fits all security plan

The first step is gaining a basic understanding of your business goals and the technologies, processes and people available within your organization that can be used to enable the security plan.  The best cloud security plans are based on the company’s business objectives and long-term strategies and are built in collaboration with all departments and stakeholders, not just at the executive level.

2.      Don’t be naïve – you’re not invincible

Every organization is at risk for data breaches, regardless of where their data is hosted. Therefore, it is essential to develop and carefully maintain a superior risk management program. This program should be “developed centrally and viewed holistically.”  In effect, it will help reduce overall risks, as well as provide “an aggregated view of the risk the company is willing to accept.”

3.      Define the results you want to achieve

After you’ve gained an in-depth understanding of your business goals and have a risk management program in place to support those goals, you should next determine measurable results that you would like to achieve. Include the goals with measurable results (i.e. five less reported security incidents) in your cloud security plan and make sure your cloud provider is aware of and understands them.

4.      Gain support and acceptance from the masses

I say masses because it not only important to gain the support of executives, but the entire company workforce must be involved.  The security strategy must be reasonable to implement and not conflict with existing policies or consume too much time.  It also helps to establish “levels of security that are centrally managed and conveniently implemented across the company.”

5.       Set guidelines to ensure compliance

To ensure that the entire organization fully understands the security program and is driving toward a common goal, establish reasonable and realistic policies, procedures and standards for cloud security.  The best way to do this, Navisite claims, is to use best practices to get started.  You can always edit afterwards.

6.      Check your work

Review your security plan often for areas that can be improved and monitor and report results of the program.  You should also audit compliance to the policies and procedures you defined in the previous step. It helps to have a third-party audit compliance to prevent bias.

7.      Improve, Improve, Improve

Once you’ve developed a cloud security plan that works best for your organization, you’re work is not over.  You’re company will change and so should your security program.  You should, at least, annually revisit your security plan with senior executives and your cloud provider and make any necessary changes.  Strive toward continuous improvement and share your successes with the organization as well.

So now that you’ve been armed with these seven tangible steps to crafting a successful cloud security plan, you have a lot less to worry about the cloud.  If you invest the time to develop a security strategy like this and select a reliable cloud provider, you can enjoy the vast benefits of cloud computing without having to sacrifice the security of your data.

To learn more about the benefits and risks of cloud computing, check out these great articles:

8 Things To Consider Before Committing To The Cloud

Top 9 Challenges in Cloud Computing

Six Cloud Benefits That Are Helping Businesses Innovate

##

Image credit

Comments

About Lindsey LaManna

Lindsey LaManna is a Marketing Manager at SAP. Her specialties include social media marketing, marketing strategy, and marketing communications.

Tags:

awareness

Why 3D Printed Food Just Transformed Your Supply Chain

Hans Thalbauer

Numerous sectors are experimenting with 3D printing, which has the potential to disrupt many markets. One that’s already making progress is the food industry.

The U.S. Army hopes to use 3D printers to customize food for each soldier. NASA is exploring 3D printing of food in space. The technology could eventually even end hunger around the world.

What does that have to do with your supply chain? Quite a bit — because 3D printing does more than just revolutionize the production process. It also requires a complete realignment of the supply chain.

And the way 3D printing transforms the supply chain holds lessons for how organizations must reinvent themselves in the new era of the extended supply chain.

Supply chain spaghetti junction

The extended supply chain replaces the old linear chain with not just a network, but a network of networks. The need for this network of networks is being driven by four key factors: individualized products, the sharing economy, resource scarcity, and customer-centricity.

To understand these forces, imagine you operate a large restaurant chain, and you’re struggling to differentiate yourself against tough competition. You’ve decided you can stand out by delivering customized entrees. In fact, you’re going to leverage 3D printing to offer personalized pasta.

With 3D printing technology, you can make one-off pasta dishes on the fly. You can give customers a choice of ingredients (gluten-free!), flavors (salted caramel!), and shapes (Leaning Towers of Pisa!). You can offer the personalized pasta in your restaurants, in supermarkets, and on your ecommerce website.

You may think this initiative simply requires you to transform production. But that’s just the beginning. You also need to re-architect research and development, demand signals, asset management, logistics, partner management, and more.

First, you need to develop the matrix of ingredients, flavors, and shapes you’ll offer. As part of that effort, you’ll have to consider health and safety regulations.

Then, you need to shift some of your manufacturing directly into your kitchens. That will also affect packaging requirements. Logistics will change as well, because instead of full truckloads, you’ll be delivering more frequently, with more variety, and in smaller quantities.

Next, you need to perfect demand signals to anticipate which pasta variations in which quantities will come through which channels. You need to manage supply signals source more kinds of raw materials in closer to real time.

Last, the source of your signals will change. Some will continue to come from point of sale. But others, such as supplies replenishment and asset maintenance, can come direct from your 3D printers.

Four key ingredients of the extended supply chain

As with our pasta scenario, the drivers of the extended supply chain require transformation across business models and business processes. First, growing demand for individualized products calls for the same shifts in R&D, asset management, logistics, and more that 3D printed pasta requires.

Second, as with the personalized entrees, the sharing economy integrates a network of partners, from suppliers to equipment makers to outsourced manufacturing, all electronically and transparently interconnected, in real time and all the time.

Third, resource scarcity involves pressures not just on raw materials but also on full-time and contingent labor, with the necessary skills and flexibility to support new business models and processes.

And finally, for personalized pasta sellers and for your own business, it all comes down to customer-centricity. To compete in today’s business environment and to meet current and future customer expectations, all your operations must increasingly revolve around rapidly comprehending and responding to customer demand.

Want to learn more? Check out my recent video on digitalizing the extended supply chain.

Comments

Hans Thalbauer

About Hans Thalbauer

Hans Thalbauer is the Senior Vice President, Extended Supply Chain, at SAP. He is responsible for the strategic direction and the Go-To-Market of solutions for Supply Chain, Logistics, Engineering/R&D, Manufacturing, Asset Management and Sustainability at SAP.

How to Design a Flexible, Connected Workspace 

John Hack, Sam Yen, and Elana Varon

SAP_Digital_Workplace_BRIEF_image2400x1600_2The process of designing a new product starts with a question: what problem is the product supposed to solve? To get the right answer, designers prototype more than one solution and refine their ideas based on feedback.

Similarly, the spaces where people work and the tools they use are shaped by the tasks they have to accomplish to execute the business strategy. But when the business strategy and employees’ jobs change, the traditional workspace, with fixed walls and furniture, isn’t so easy to adapt. Companies today, under pressure to innovate quickly and create digital business models, need to develop a more flexible work environment, one in which office employees have the ability to choose how they work.

SAP_Digital_Emotion_BRIEF_image175pxWithin an office building, flexibility may constitute a variety of public and private spaces, geared for collaboration or concentration, explains Amanda Schneider, a consultant and workplace trends blogger. Or, she adds, companies may opt for customizable spaces, with moveable furniture, walls, and lighting that can be adjusted to suit the person using an unassigned desk for the day.

Flexibility may also encompass the amount of physical space the company maintains. Business leaders want to be able to set up operations quickly in new markets or in places where they can attract top talent, without investing heavily in real estate, says Sande Golgart, senior vice president of corporate accounts with Regus.

Thinking about the workspace like a designer elevates decisions about the office environment to a strategic level, Golgart says. “Real estate is beginning to be an integral part of the strategy, whether that strategy is for collaborating and innovating, driving efficiencies, attracting talent, maintaining higher levels of productivity, or just giving people more amenities to create a better, cohesive workplace,” he says. “You will see companies start to distance themselves from their competition because they figured out the role that real estate needs to play within the business strategy.”

The SAP Center for Business Insight program supports the discovery and development of  new research-­based thinking to address the challenges of business and technology executives.

Comments

Sam Yen

About Sam Yen

Sam Yen is the Chief Design Officer for SAP and the Managing Director of SAP Labs Silicon Valley. He is focused on driving a renewed commitment to design and user experience at SAP. Under his leadership, SAP further strengthens its mission of listening to customers´ needs leading to tangible results, including SAP Fiori, SAP Screen Personas and SAP´s UX design services.

Tags:

Innovation Without Boundaries: Why The Cloud Matters

Michael Haws

Is it possible to innovate without boundaries?

Of course – if you are using the cloud. An actual cloud doesn’t have any boundaries. It’s fluid. But more important, it can provide the much-needed precipitation that brings nature to life. So it is with cloud technology – but it’s your ideas that can grow and transform your business.USA --- Clouds, Heaven --- Image by © Ocean/Corbis

Running your business in the cloud is no longer just a consideration during a typical use-case exercise. Business executives are now faced with making decisions on solutions that go beyond previous limitations with cloud computing. Selecting the latest tools to address a business process gap is now less about features and more about functionality.

It doesn’t matter whether your organization is experienced with cloud solutions or new to the concept. Cloud technology is quickly becoming a core part of addressing the needs of a growing business.

5 considerations when planning your journey to the cloud

How can your organization define its successful path to the cloud? Here are five things you should consider when investigating whether a move to the cloud is right for you.

1. Understanding the cloud is great, but putting it into action is another thing.

For most CIOs, putting a cloud strategy on paper is new territory. Cloud computing is taking on new realms: Pure managed services to software-as-a-service (SaaS). Just as legacy computing had different flavors, so does cloud technology.

2. There is more than one way to innovate in the cloud.

Alignment with an open cloud reference architecture can help your CIO deliver on the promises of the cloud while using a stair-step approach to cloud adoption – from on-premise to hybrid to full cloud computing. Some companies find their own path by constantly reevaluating their needs and shifting their focus when necessary – making the move from running a data center to delivering real value to stakeholders, for example.

3. The cloud can help accelerate processes and lower cost.

By recognizing unprecedented growth, your organization can embark on a path to significant transformation that powers greater agility and competitiveness. Choose a solution set that best meets your needs, and implement and support it moving forward. By leveraging the cloud to support the chosen solution, ongoing maintenance, training, and system issues becomes the cloud provider’s responsibility. And for you, this offers the freedom to focus on the core business.

4. You can lock down your infrastructure and ensure more efficient processes.

Do you use a traditional reporting engine against a large relational database to generate a sequential batched report to close your books at quarter’s end? If so, you’re not alone. Sure, a new solution with new technology may be an obvious improvement. But how valuable to your board will you become when you reduce the financial closing process by 1–3 days? That’s the beauty of the cloud: You can accelerate the deployment of your chosen solution and realize ROI quickly – even before the next full reporting period.

5. The cloud opens the door to new opportunity in a secure environment.

For many companies, moving to the cloud may seem impossible due to the time and effort needed to train workers and hire resources with the right skill sets. Plus, if you are a startup in a rural location, it may not be as easy to attract the right talent as it is for your Silicon Valley counterparts. The cloud allows your business to secure your infrastructure as well as recruit and onboard those hard-to-find resources by applying a managed services contract to run your cloud model

The cloud means many things to different people. What’s your path?

With SAP HANA Enterprise Cloud service, you can navigate the best path to building, running, and operating your own cloud when running critical business processes. Find out how SAP HANA Enterprise Cloud can deliver the speed and resources necessary to quickly validate and realize solid ROI.

Check out the video below or visit us at www.sap.com/services-support/svc/in-memory-computing/hana-consulting/enterprise-cloud-services/index.html.

Connect with us on Twitter: @SAPServices

Comments

Michael Haws

About Michael Haws

Michael Haws is the Vice President of HANA Enterprise Cloud at SAP. His specialties include Enterprise Resource Planning Software & Services, Onshore, Nearshore, Offshore--Application, Infrastructure and Business Process Outsourcing.

Tags:

Consumers And Providers: Two Halves Of The Hybrid Cloud Equation

Marty McCormick

Long gone are the days of CIOs and IT managers freely spending money to move their 02 Jun 2012 --- Young creatives having lunch and conversation. --- Image by © Hero/Corbisexisting systems to the cloud without any real business justification just to be part of the latest hype. As cloud deployments are becoming more prevalent, IT leaders are now tasked with proving the tangible benefits of adopting a cloud strategy from an operational, efficiency, and cost perspective. At the same time, they must balance their end users’ increasing demand for access to more data from an ever-expanding list of public cloud sources.

Lately, public cloud systems have become part of IT landscapes both in the form of multi-tenant systems, such as software-as-a-service (SaaS) offerings and data consumption applications such as Twitter. Along with the integration of applications and data outside of the corporate domain, new architectures have been spawned, requiring real-time and seamless integration points.  As shown in the figure below, these hybrid clouds – loosely defined as the integration of data from systems in both public and private clouds in a unified fashion – are the foundation of this new IT architecture.

hybridCloudImage

Not only has the hybrid cloud changed a company’s approach to deploying new software, but it has also changed the way software is developed and sold from a provider’s perspective.

The provider perspective: Unifying development and operations

Thanks to the hybrid cloud approach, system administrators and developers are sitting side by side in an agile development model known as Development and Operations (DevOps). By increasing collaboration, communication, innovation, and problem resolution, development teams can closely collaborate with system administrators and provide a continuous feedback loop of both sides of the agile methodology.

For example, operations teams can provide feedback on reported software bugs, software support issues, and new feature requests to development teams in real time. Likewise, development teams develop and test new applications with support and maintainability as a key pillar in design.
After seeing the advantages realized by cloud providers that have embraced this approach long ago, other companies that have traditionally separated these two areas are now adopting the DevOps model.

The consumer perspective: Moving to the cloud on its own terms

From the standpoint of the corporate consumer, hybrid cloud deployments bring a number of advantages to an IT organization. Specifically, the hybrid approach allows companies to move some application functionality to the cloud at their own pace.
Many applications naturally lend themselves to public cloud domains given their application and data requirements. For most companies, HR, indirect procurement, travel, and CRM systems are the first to be deployed in a public cloud. This approach eliminates the requirement for building and operating these applications in house while allowing IT areas to take advantage of new features and technologies much faster.

However, there is one challenge consumers need to overcome: The lack of capabilities needed to extend these applications and meet business requirements when the standard offering is often insufficient. Unfortunately, this tempts organizations to create extensive custom applications that replicate information across a variety of systems to meet end user requirements. This development work can offset the cost benefits of the initial cloud application, especially when you consider the upgrades and support required to maintain the application.

What this all means to everyone involved in the hybrid cloud

Given these two perspectives, on-premise software providers are transforming themselves so they can meet the ever-evolving demands of today’s information consumer. In particular, they are preparing for these unique challenges facing customers and creating a smooth journey to a hybrid cloud.

Take SAP, for example. By adopting a DevOps model to break down a huge internal barrier and allowing tighter collaboration, the company has delivered a simpler approach to hybrid cloud deployments through the SAP HANA Cloud Platform for extending applications and SAP HANA Enterprise Cloud for hosting solutions.

Find out how these two innovations can help you implement a robust and secure hybrid cloud solution:
SAP HANA Cloud Platform
SAP HANA Enterprise Cloud

Comments

Marty McCormick

About Marty McCormick

Marty McCormick is the Lead Technical Architect, Managed Cloud Delivery, at SAP. He is experienced in a wide range of SAP solutions, including SAP Netweaver SAP Portal, SAP CRM, SAP SRM, SAP MDM, SAP BI, and SAP ERP.