View
49
Download
4
Category
Preview:
Citation preview
Windows® Azure™
Technically Qualifying DealsWindows Azure Enterprise Strategy Worldwide Azure Team [ESWAT]
Windows Azure
Customer’s Solution
Task: Insert the peg in the hole
Windows® Azure™ Platform
Is it going to work?
Goal: Fail FastGet Risks (red lights) on the table early and either turn them into green lights, or fail fast
Customer ActorsNot like traditional apps, operations have to be involved as well as security teams. Have all the players/stakeholders been identified?
You are not selling a used car
Windows Azure™ Platform
Absolute Blockers?
Absolute Blocker Example 1No Full Text Search in SQL AzureWorkaround:
Use 3rd party indexing toolsImpact:
Customer will have to build application & infrastructure to support full text search requirement.In the future, migration to Full Text Search in SQL Azure will be possible.
Absolute Blocker Example 2No PCI DSS capabilityWorkaround:
Use a 3rd party PCI DSS compliant provider for parts of application that deal with Credit Cards.
Impact:Extra integration point for customers application.Industry best practice for payment gateways.
Absolute Blocker Example 3HIPAA RequirementWorkaround:
Don’t use Windows Azure to process data covered by HIPAA
Impact:Application may not be viable on Windows Azure
Windows® Azure™ Platform
Is it going to work and not require an inhumane amount of effort?
What are the risks?MicrosoftThe CustomerTeam
Take NotesWhat is the issue?How impactful is it?Is it solved in the future?Can it be worked around?What was the outcome?
Assessing the riskWhat are the TOP technical “blockers”?
Top Technical “Blockers”Missing Features
SQL Full Text SearchStatic VIPsUDP SupportFirewall rulesJava Support
SecurityCompliance & RegulatoryCDN SecurityWeb Portal
OperationalBackup/Restore
It’s a moving target!
Missing FeaturesEngineering takes timeNeed evidence to get it on the priority listEscalation could improve priority, but still not happening over night
Security Quiz 1Statement:
Microsoft’s Datacenters have ISO27001, SAS 70, FISMA & PCI certifications.
Truth:Statement is correct, but misleading. Microsoft’s data centers operate 200+ services. Each service, including Azure, has to obtain their own certifications.Windows Azure has no certifications at this time.
Security Quiz 2Statement:If you encrypt the data customer applications can become HIPAA compliant.Truth:
You are NOT HIPAA lawyers.Usually, vendors have to sign a Business Associates Agreement when dealing with HIPAA. Right now we cannot do that.Encrypting the data outside of Windows Azure and keeping the keys outside of Windows Azure at all times MAY remove the need for a BAA. Customers need to verify this as appropriate.
Operational IssuesBusiness ContinuityDisaster RecoveryIntegration with existing tools
More to considerGeo-* Constraints
Political FactorsPatriot Act
Country specific routingLocal regulations
Network Topology ConstraintsLatencyProtocolsUDP
On-Premises IntegrationAD IntegrationNon-Microsoft ServersIdentity
Hardware DependencyGPUSpecific Processor ArchitecturesHardware derived licensing
Availability RequirementsApplication BasicsApplication SizeApplication ComplexityApplication Criticality
Critical applications amplify small concerns.
Application Remaining Life3rd Party Dependency
LicensingSQL Database functionality
Tools that can helpWindows Azure Migration Assessment Tool (MAT)
Use the Windows Azure Migration Assessment tool (MAT) to address migration considerations including app server, database, integration, security and instrumentation for .NET as well as non .NET platforms like Java and PHP.Download the Windows Azure Migration Assessment Tool
Microsoft Assessment and Planning Toolkit 6.0The Microsoft Assessment and Planning (MAP) Toolkit gets your cloud migration planning process going with automated discovery and detailed inventory reporting on web application and database readiness for the Windows Azure platform.Download the Microsoft Assessment and Planning ToolKit
Application Black ListVM Role Server Workloads to avoidMicrosoft Servers Hosted In Windows Azure
SharePointCommerce ServerBizTalk ServerRDP into Office installed on VM Role
Business Technical
Get the balance right in deciding
Have the conversation with the account team & customer
Escalation & SupportWhat are those bad deals?What are the top blockers?What are you losing?What are you not even going after?
Q & A
Recommended