Hybrid IT Governance: Automation is Key

• Organizational management and governance;
• Accelerating business process speed and scope;
• Expanding business partner ecosystem; and
• Broadening enterprise information system user base.

•  Delegation of management decision authority to those responsible for everyday interactions with the organizations business ecosystems and IT supply chain
• Establishment and communication of cloud ecosystem related risk tolerance through Service-Level Agreements (SLA), including delegated authority on decisions that impact the risk tolerance;
• Near real-time monitoring, recognition, and understanding, of information security risks arising from the operation and/or use of the information system leveraging the cloud ecosystem; and
• Organizational accountability around incidents, threats, risk management decisions, and solutions.

Figure 1: Risk Management Framework (NIST SP 800-37 Rev. 1)

• Customer demands for multi-channel and multi-device interaction;
• Expanding dynamic global IT requirements;
• Operational business decision support;
• Enforcement of organizational governance;
• Operational flexibility through business ecosystem API; and
• Internal demands to deliver on the promise of IT-as-a-Service.

• The discovery and documentation of existing public cloud resources;
• The enforcement of data and access management security policies;
• Monitoring and reporting of all governance processes;
• Cost controls and budget management processes; and
• Evaluation and selection of application “cloud readiness”.

• A seeded catalog of the industry’s leading cloud infrastructure providers, out-of-the-box without the overhead of custom integration.
• A marketplace where consumers can select and compare provider services, or add their own IT-approved services for purchasing and provisioning.  Consumers can use a common workflow with full approval processes that are executed in terms of minutes not weeks.
• Reporting and Monitoring that includes multi-provider consolidated billing estimates, actuals, and usage projections for accuracy and cost assignment.
• A visual designer that includes sync-and-discover capabilities to pull all assets (VMs) into a single, architectural view and management standard.
• Integration with service management and ticketing systems through an API framework.

( This content is being syndicated through multiple channels. The opinions expressed are solely those of the author and do not represent the views of GovCloud Network, GovCloud Network Partners or any other corporation or organization.)

( Thank you. If you enjoyed this article, get free updates by email or RSS – © Copyright Kevin L. Jackson 2015)