Zapthink.com

Enterprise Cloud Computing: Dallas – January 23 – 24, 2014
Thursday January 23, 2014-Friday January 24, 2014

Dallas Texas

Venue TBD

Price: $1,045.00 (including $250 early discount)

 

We offer additional discounts for groups of three or more people, government or non-profit employees, people who’ve taken a ZapThink class before, or individuals who are paying out of their own pocket. Please email us at info@zapthink.com for a discount code you can use when registering.

ZapThink Enterprise Enterprise Cloud Computing Course: The Leading Vendor Independent, Architecture-Focused Cloud Training

The Enterprise Cloud Computing course an intensive, two day “fire hose” of information that prepares you to leverage the Cloud to achieve real business value. We cut through the hype and separate what really works from the noise.

Announcing the new version 3.0 of the course!

ZapThink’s Enterprise Cloud Computing course has no prerequisites, and is appropriate for people with different roles and levels of expertise. This course is valuable for anyone who wants in-depth knowledge about how to succeed with Cloud Computing.

With expanded, updated content on Cloud security, governance, and more. Also includes a step-by-step Cloud tutorial!

What makes the Enterprise Cloud Computing course so special?



Vendor independent — We discuss vendors in context, both good and bad. You get a balanced perspective on each vendor we discuss.

Architecture focused — The course concentrates on what architects have to do to be successful with Cloud in their own organizations. We balance technology details with organizational approaches. If you’re not an architect you’ll learn how to think like one in this class!

Practical — we connect theory to practice with what really works in organizations like yours.

Current — we refresh the course on a regular basis to reflect the latest Cloud Architecture best practices.

Enterprise context — We place Cloud Computing into the context of large organizations, with complex, heterogeneous IT environments and all the politics and bureaucracy that every large organization faces.

Led by globally recognized Cloud and Architecture thought leader — All ZapThink’s courses are developed and led by Jason Bloomberg, President of ZapThink. Jason has been an analyst with ZapThink since 2001 and is the co-author of the new book, The Agile Architecture Revolution.

Not too technical, not too high-level — Unlike courses offered by others, we cover the technology without getting lost in the details. We discuss the big picture but connect it to the day-to-day reality of the IT shop.

Available around the world — See the event schedule for all the locations we’re offering Enterprise Cloud Computing!

Someone in every class will receive a copy of The Agile Architecture Revolution for free!

REGISTER

Enterprise Cloud Computing v. 3.0

Day 1

Registration: 8:00 to 8:30 AM

Module 1: Introduction & Definitions

Cloud Computing: Old Wine in New Bottles

Formal Definition of Cloud Computing

NIST Cloud Computing Definition Framework

Essential Cloud Characteristics

Cloud Service Models

Cloud Deployment Models

Managed Hosting vs. Cloud Computing

Conceptual Reference Model

Cloud Actors

Cloud Deployment Scenarios

The Enterprise Context

Relationship between Cloud & SOA

From SOA to Cloud

The Big Picture

Pioneers of the Cloud

The Birth of IaaS: Amazon Web Services

Amazon’s Retail Mentality

Amazon “Other” Revenue, aka Amazon Web Services

AWS Services Today (partial list)

The Cloud Service Models

Deployment Models

Separation of Responsibilities

Common IaaS Examples

IaaS Caveats

PaaS Examples

PaaS Caveats

Common SaaS Apps

SaaS Caveats

Different Multitenancy Models

Other Common *aaSes

Cloud Service Orchestration

Open Source Cloud Orchestration Platforms

OpenStack

OpenStack Ecosystem, Projects, and Support

Rackspace Private Cloud (Alamo)

HP’s Public Cloud

IBM SmartCloud

Eucalyptus

CloudStack

Vendor Spin

Oracle’s Shopping List

Oracle Cloud: It’s all about Oracle

Oracle Cloud Solutions

Oracle Fusion (Cloud) Apps

IBM’s Shopping List

Microsoft’s Shopping List

Microsoft SaaS is “Live”

Google Cloud Platform

Cutting Through the Hype

Case Study: M-Dot / Inmar

Module 2: Virtualization, Workloads, & Pods

Virtualization doesn’t equal Cloud

Traditional Infrastructure

Virtualization Basics

Types of Hypervisors

Type 1 (Bare Metal) Hypervisors

Type 2 (Hosted) Hypervisors

Protection Rings

Traditional Operating Systems

Server Virtualization Landscape

Desktop Virtualization Landscape

Paravirtualization

Full Virtualization (without Hardware Assist)

Full Virtualization (with Hardware Assist)

OS Virtualization

Hosted Virtualization

VMWare Virtual Infrastructure Management

Cloud Workloads

Pods & Cloud Control Systems

VMWare 5000-User Pod Example

Citrix Pod Example

Using a Cloud Control System (CCS)

Aggregating Workloads & Pods

Availability Zones

Pod Architectures at Cloud Providers

Cloud Storage Technologies

Direct Attached Storage (DAS)

DAS Management Challenges

Storage Area Networks (SAN)

Availability Zone Physical Architecture

Sizing SANs

Module 3: Cloud Configuration

The Context for Automated Cloud Configuration

Fully Automated Provisioning

VM Images

Automated Provisioning of Environment from Spec

No Direct Management of Individual Boxes

Revert to “Previously Good State” at Any Time

Easier to Reprovision Than Repair

Anyone can Deploy or Update an Environment

The Toss Test (Hypothetical!)

NetFlix Chaos Monkey (Real!)

Netflix Simian Army

Cloud Configuration Toolchain

Toolchain: Provisioning

Toolchain: Release Management

Toolchain: Monitoring & Control

AWS CloudFormation

Cloud Configuration Maturity Levels

Case Study: reddit Condé Nast

Module 4: Architecting for the Cloud

Cloud Computing Roadmap

EA Cloud Strategy

TOGAF & Cloud

Phased Strategy for Cloud Migration

Cloud Deployment Choices

Architect for the Cloud

Elasticity Makes Clouds Cloudy!

The Challenge of Elasticity

The Dark Side: Enterprise IT

Forces of Change in Enterprise IT

The Challenge of Applications

What About Enterprise App Vendors?

The Challenge of Scalability

The Challenge of Fault Tolerance

The Challenge of Control

The Challenge of Mobility

Elastic Thinking

Diverse Application Challenges

CAP Theorem

Basic Availability

Partition Tolerance

High Availability Consistency

Enforced Consistency

Eventual Consistency

Eventual Consistency Throughout History

BASE instead of ACID

Is Synching All That Bad?

Soft State

Are you Ready for Inconsistent Data?

The Challenge of State

Avoid the “Matrix” Problem

Scalability & State, The Old Way

The Secret to Transferring App State to the Client

HATEOAS

What is REST Anyway?

REST vs. HOA

Essential REST Terminology

Uniform Interface

Four Architectural Constraints

Separation of Resource from Representation

Manipulation of Resources by Representations

Self-Descriptive Messages

Hypermedia as the Engine of Application State

Is REST about APIs?

Deltacloud: RESTful APIs to the Cloud

Deltacloud Example

Cacheability in the Cloud

Using Caches in the Cloud

HOA & Caches

HATEOAS in Action

The Challenge of SOA-Based BPM

Hypermedia-Oriented Architecture

The Light Side: The World of Web Scale

Cloud Coding Best Practices

Exercise: Application consolidation & migration

Module 5: Amazon Web Services Tutorial

Why AWS for this Tutorial?

Remember, AWS is IaaS

Deploying a Sample App

Provisioning in Progress (less than 5 minutes)

Provisions Environment & Creates Sample App

Events Tab Shows Automated Steps

Home Page of Sample App

Let’s Create Our Own Application

Container (VM) Choices

This is Our dev Environment

Selecting the Free Instance Type

Environment Provisioning in Progress (about 5 min.)

dev Environment Provisioned

It’s php All Right!

Configuration Options

More Configuration Options

EC2 Dashboard

My Instances – Can’t Log Into Them!

Need a Key Pair

Key Pair Created, Private Key Saved

Select Default Security Group

Turn On SSH Access

Copy Public DNS into WebPuTTY

Import Private Key (converted with PuTTYgen)

Logged in (Root Available with Paid Instance Types)

AMI Instance Options

Class Ends at 5:00 PM

Day Two

Class Begins at 8:30 AM

Module 6: Cloud Standards

The Problem with Standards

Context for Cloud Standards

Scope of Cloud Standardization

Who’s Talking to Whom?

Cloud Standards Taxonomy

Cloud Standards Landscape

Prevailing Standardization Approaches

Are We Talking About APIs?

Compute API Support

Amazon AWS APIs

Eucalyptus & Amazon AWS APIs

OpenStack APIs

Cloud APIs: Future Trends

Core Cloud Standards

OVF

CIMI

OCCI

CDMI

Essential Security Standards

Cloud Standards Bodies – PaaS

PaaS: Cloud4SOA Consortium

Cloud Semantic Standards

Semantics Depend Upon Context

Semantic Interop Largely Manual

Types of Application Semantics

Semantic Description of a Cloud Application

Semantic Conflicts

Module 7: Cloud Security

Four Disciplines of Cloud Security

#1: Establish Your Risk Profile

Risk Profile Defines Control & Technology Requirements

# 2: Conduct Asset Inventory

Applying the Security Control Model

#3: Threat & Vulnerability Analysis

Threat Models

Attacker Profiles

Targets

Cloud Vulnerabilities

#4: Control Management & Business Resiliency

Business Resiliency Capabilities

Cloud Security Maturity

The Three Core Cloud Access Control Concerns

Cloud Security: Authorization

Federated Security

Federated Identity Standards & Technologies

Identity Mediation to the Cloud

Example: Vordel Cloud Gateway

Vordel’s Drag & Drop Policy Development

Security Assertion Markup Language (SAML)

SAML Transaction Steps

OAuth Authentication Flow

Is OAuth Doomed?

Identity Federation (Microsoft)

Windows to EC2

Securing Cloud-Based Solutions

Granular Access Control

Cloud Security: Data Confidentiality

Cryptographically Enforced Data-Centric Security

Know Your Data: Data Lineage & Provenance

Data Provenance

Data Remanence

Cloud Security: Data Availability

Secure Computation

Security Best Practices for NoSQL Data Stores

Secure Data Storage & Transaction Logs

Endpoint Input Validation & Filtering

Real-time Security Monitoring

Privacy-Preserving Data Mining and Analytics

Virtual Security (VirtSec)

VirtSec: External Security

Typical DMZ (No Virtualization)

Partially Virtualized DMZ

Completely Screened DMZ

VirtSec Gotchas

Securing Tiers in AWS

Multitenancy with Cloud Networks

Build a Flow thru a Tunnel

Public vs. Private Clouds: Which Are More Secure?

What about a Virtual Private Cloud (VPC)?

Creating AWS VPC

Kerberos to VPC

Public, Private, or VPC?

Case Study: Amazon.com

Module 8: Cloud Governance

Governance is Key to Agile Architecture

Governance Leads to Empowerment

What is Governance?

Governance Domains

Governance & Enterprise Risk Management

Cloud Governance Challenges

Cloud Availability & Failover

Dealing with Cloud Reliability Example: Amazon EC2

Cloud Governance as VM Governance

Sample Amazon Simple Queue Service Policy

Rogue Clouds

Cloud Service Brokers (CSBs)

Unclear Nature of CSB

Forrester’s Unified Cloud Broker

CSB Topology Options

NNSA CSB Key Workflows, Enclaves, and Modules

Pilot Texas Cloud Offering

CSB Roadmap

#5: Visibility, Auditability, Collaboration & Governance

Audit Requirements

Cloud Assurance

Incident Response

eDiscovery and the Cloud

eDiscovery Issues

Cloud Compliance Directions

Cloud Compliance Model

Auditing & Logging

PCI and EU DPD

The Cloud Mandate in the US Government

Our Tax Dollars At Work

The 25 Point Plan

“Cloud First” Policy

FedRAMP

Third Party Assessment Organizations (3PAOs)

FedRAMP Hurdles

Exercise: Cloud Governance

Module 9: Big Data & the Cloud

What are “Big Data”?

Today’s Big Data are Tomorrow’s “Small” Data

Big Data Crisis Point

Parkinson’s Law (Big Data Corollary)

The Three V’s

2012 Big Data Technology Landscape

What are Big Data for?

Real Time?

Big Data Motivations

Cloud Features & Big Data

Big Data & The Cloud

NoSQL Landscape

Apache Cassandra

Other Leading Open Source NoSQL Choices

Amazon DynamoDB

Enter Hadoop

Hadoop Value Proposition

The Hadoop Challenge

Hadoop Distributed File System

MapReduce

Exhaustive Processing

Hadoop Architecture

Big Data at Apache: Pig, Hive & Zookeeper

Common Hadoop Mistakes

Amazon Elastic MapReduce

Setting the Bar for Private Clouds

Hadoop Architecture @ Orbitz

Orbitz: Single Input Record and Results

Big Data Governance

Governance the Old Way

Governance the New Way The Secret to Big Data Governance

Analytics vs. Curation

Next-Gen Data Governance Tool

Our Tools are Only as Good as our Architecture

Cloud is an Emerging Market

Class Ends at 3:00 PM

REGISTER

Venue:

 

Dallas Texas

Venue TBD

REGISTER