Serchen Blog

How to better leverage the cloud for your tech business

The cloud allows companies to be more efficient and flexible with their computing resources, scaling up or down as their needs change. Here’s how to make the most of it.

A recent report by research company Gartner projects the global public cloud services market to grow 17.5% in 2019 to $214.3 billion, up from $182.4 billion in 2018.

“We know of no vendor or service provider today whose business model offerings and revenue growth are not influenced by the increasing adoption of cloud-first strategies in organizations,” said Gartner’s research VP, Sid Nag. And in the next three years, “Gartner projects the market size and growth of the cloud services industry at nearly three times the growth of overall IT services.”

Here in Philly, a recent survey of 100 Philly-based tech execs surveyed found that three of the top five most desirable tech skills involve the cloud. So why are so many companies turning to the cloud? There are several reasons driving its growth.

When we think of the cloud, many of us think data centers and hardware and less about software development. And with good reason: The cloud allows companies to be more efficient and flexible with their computing resources, scaling up or down as their needs change. Cloud providers are most likely to have better security and disaster recovery options, as well.

But you should also consider how the cloud can leverage your people. Cloud computing allows them to access applications and data from any location, as long as there is an internet connection. This increases productivity and also allows for the workforce to not be tied to one specific office location, while still allowing collaboration. Lastly, cloud providers have tools and features that let your people focus on the business problem, rather than things like authentication and mobile app configuration.

So how can you leverage the cloud for your business?

Extend what you already have.

Do you already have a Java web application? There’s no reason to throw it away and start fresh with Node.JS and AWS Lambda. Instead, look at how you can leverage auto-scaling to ensure that your application responds to changes in demand, how a load balancer can replace your existing Nginx or HAProxy front end, how you can use a content delivery network such as AWS CloudFront to reduce load on those servers, or how a cloud-based web firewall can protect you against denial-of-service attacks.

There is a lot of low-hanging fruit to be gained from an initial “lift and shift,” and the benefits of being “cloud native” will appear as you make these changes. Eventually, you will see ways to reimplement those parts of your application that can truly benefit from running in the cloud.

This advice applies to new projects as well. If you have a team that already knows a technology, leverage that knowledge and add in parts of the cloud infrastructure that make sense. – Read more

Eradicate human error and make your cloud implementation a picnic

Sunshine, sandwiches, scenic views, and not a care in the world besides the occasional wasp. Everyone loves a picnic.

Unfortunately, the same cannot be said for PICNIC, an enduring acronym in IT circles standing for Problem In Chair, Not In Computer. The term, dating back to the 1980s, was first employed by frustrated IT professionals weary of dealing with computer problems arising from user error rather than any actual issues with the technology.

Such challenges still exist today although, increasingly, they are migrating to the cloud. Data breaches resulting from cloud misconfigurations can have dramatic consequences. For example, the Capital One breach earlier this year affected more than 100 million records.

In most cases, these breaches are not the result of a particularly skilled threat actor or any advanced exploits or malware. Instead the door is left wide open through human error. Unfortunately, such cloud security issues are the result of poor data protection practices. For instance, sensitive information may be stored in unencrypted form or access permissions not locked down properly.

The Capital One data breach, first reported in July, is a particularly powerful example of how poor practices can trigger a major security crisis. The incident saw customer data including more than 140,000 social security numbers, one million Canadian social insurance numbers, 80,000 bank account numbers, and an unknown quantity of customer names and addresses accessed by Paige Thompson, a former software engineer at Amazon Web Services. It has been estimated that the breach could cost the company upwards of $150m.

The breach was made possible by a misconfiguration of the web application developed by Capital One, and not the underlying Amazon cloud-based infrastructure. Amazon also stated that the perpetrator’s specialist insider knowledge was not a factor, but rather the breach could have been carried out by anyone who stumbled on the misconfiguration.

Similar breaches have occurred at Fedex and Californian car dealership services provider Dealer Leads. Indeed, cloud-based data breaches caused by user errors are becoming so frequent that the PICNIC acronym might arguably be updated to stand for Problem In Company, Not In Cloud.

How can firms reduce the threat?

Because cloud-related mistakes can potentially expose businesses to huge and costly data breaches, organisations must do much more to mitigate the risks. It’s very difficult to remove the risk of human error entirely. Organisations need to ensure they implement robust policies to protect sensitive data in the cloud, as well as the right tool to manage them.

An audit is a good place to start. It is impossible to keep sensitive data safe if a company isn’t aware of what information it owns or where it is kept. Many organisations have spent years hoarding as much data as possible, and it’s all too easy for them to lose track as they expand and change their infrastructure.

Audits can help the enterprise get its house in order. Their disciplined approach lets organisations locate and classify any and all sensitive information spread across on-premises and cloud servers. Audits are especially good for identifying data that is governed by regulations such as the GDPR and PCI-DSS.

The challenge with built-in classification capabilities present in many cloud-based solutions is that rule creation and tagging is often a labour-intensive, manual process. For this reason enterprises should look to automate this process as much as possible. – Read more

Drastic Cloud Security Mistakes No One Should Make

In our modern age, it is natural to want to modernize your business in order to keep up with the times and keep customers interested, so investing in the cloud can often seem like a natural pathway for changing businesses, but it does come with some risks.

Not paying attention to the very real risks of compromising cloud security – which can seem like a faraway, non-important issue – can cost you greatly, and, at worst, could ruin your business. Customers put their trust in you to keep them and their data safe, so compromising that can be the absolute faux par, which will destroy your business’ reputation and ensure that no future success can be enjoyed. But enough with the fear-mongering: how can you stop these security slips ever happening in the first place? Knowledge is your best tool, so knowing about the dangers often prevents them from becoming issues.

Access Control

One of the cloud’s biggest selling points is that it can be accessed from anywhere, by anyone. This is great, but it also leads to one common mistake, which can end up costing your company a lot of business and, most probably, money: don’t let everyone access your cloud networks. Once you open the floodgates, everyone has a chance to rush in and take whatever data they want. Genuine customers could utilize your cloud network, but hackers who want to steal sensitive information such as passwords and bank details will also make use of it, which you definitely don’t want. Limit access to your cloud network as much as possible, without limiting yourself; make sure that the people who need to access it can and that it’s at least password protected, so that no one else is sneaking in and potentially ruining your business.

Maintenance

“Not keeping your cloud software up-to-date is probably one of the worst mistakes that you can make, but it’s a worryingly common one,” says Joni Martin, a tech writer at Writing Services and Revieweal, “and it often comes from a place of ‘maintenance and patches will cost time, money and resources that we don’t need to waste, it’ll be fine’, which is the complete wrong attitude to have. Every single time your software isn’t updated, vulnerabilities appear, which hackers will have knowledge of (due to patch notes and bug fixes lists and so on, all available to everyone on the internet), so you put yourself needlessly at a higher and higher risk of getting a security breach, which will cost you more than maintenance ever would. So, do yourself a favour and don’t be afraid to spend a little to save a lot, by keeping software up-to-date at all times.”

Back-Ups

However, even seemingly airtight, fully updated systems can have breaches, so you do need to be prepared for the worst case scenario, no matter how much you’ve worked to prevent it. In the case of a security breach, you won’t be able to keep using the cloud data which was compromised, so it is recommended to have a back-up set of data ready in order to keep business as usual without ruining users’ experience with your company, possibly causing even more damage to your reputation. Back-ups are a safe way to ensure that breaches can be handled without the added pressure of customer complaints piling up, because a website or online service has been down for an extended period of time, which gives you more time and space to sort out the real issue. – Read more

Trust in public cloud providers’ security is increasing

Enhanced security measures are encouraging use of cloud computing

End user apprehension towards moving to the cloud is dissipating, according to an IDG Connect survey. Of those polled, half felt more confident in migrating workloads off-premise, a trend that can be attested to stronger security measures on both the vendor’s side and the end user’s side.

Since its inception, cloud computing has forged paths towards efficiency and enhanced customer experiences, enabling the digital transformation necessary to ensure businesses remain competitive. Storing data and applications in the cloud though, brought to the surface a host of security issues that have dissuaded many IT decision makers from transitioning.

Cloud providers do offer security layers that end users can take advantage of to shore up vulnerabilities, yet despite this, a lack of understanding and expertise within IT departments has led to many organisations struggling to deploy the security measures, which are often complex and require specific knowledge. The result is vulnerable data and applications. Paired with severe breaches hitting the headlines regularly throughout 2018 and 2019, it is no surprise that many companies were hesitant to store their applications and data off-premise.

In response to end users’ fears, vendors are implementing stricter security controls which can restrict access to data centres, ensuring only those who need to access are granted access. This eliminates internal vulnerabilities by preventing the wrong employees stumbling upon information that wasn’t meant for their eyes. – Read more

Cost optimisation in the cloud: What do you need to know?

Consuming cloud services can create a host of new problems.

Cloud technology and the multiple platforms available today means that pretty much everything is run in the cloud these days. With the promise to drive business agility while also reducing costs, most enterprises have migrated to the cloud in large numbers. And whilst it’s true to say that cloud infrastructures offer new features that expand their capabilities, consuming cloud services can create a host of new problems – not least of all having to manage complicated bills reflecting differing global permutations.

Indeed, many enterprises are using a business management discipline and analytics software (FinOps) that assists in calculating the costs of public cloud services provided by various vendors. In this way, enterprises can better plan, budget and forecast their spending requirements for cloud consumption. With any anticipated move into the cloud, the real challenge lies in creating an environment that is both effective and efficient, especially in terms of setup and running costs.

With the well-known cloud offerings from the likes of Amazon Web Services or Google Cloud for example, the approach to cloud cost optimisation can be looked at from a number of angles, irrespective of the service chosen. Here are some considerations that will help you to understand the factors involved in optimising your cloud costs.

Cost variables

Data Transfer: The cost of transferring data into your cloud is usually free. But transferring it out is another matter. So, in the same way you should design single-cloud systems to minimise the cost of internal data transfers, you should also aim for a cost-efficient multi-cloud architecture.

First, you’ll need to be mindful that outbound network charges vary from vendor to vendor. And also that, at individual vendor level, the cost of data transfer between different cloud regions varies from geographical region to region. For example, Google Cloud Platform charges far less for data transfers between its regions in the US than elsewhere in the world. Similarly, Amazon users pay lower rates for transfers between US East and US West than between any other two regions. In order to achieve the best balance between cost and performance, it pays to be strategic when selecting regions across your multi cloud.

Compute and Storage: Each cloud vendor offers a range of different instance types and storage services aimed at different use cases, cost requirements and performance expectations. So finding the best fit for your workloads can be a complex challenge—all the more so when comparing resources across several clouds. On top of that, pricing structures vary between vendors, where like-for-like resources may be charged differently. Cost comparisons can get particularly difficult when weighing up your storage options. Depending on the nature of the service, charges could be based on several factors, such as the number of read and write requests, the amount of data you transfer out of storage and the amount of capacity you provision. Don’t forget that vendors tend to structure their charges into pricing tiers, where you pay lower rates at higher levels of resource consumption. So, on the one hand a particular vendor is a better choice when your capacity requirements are low, but that same vendor becomes pricier as your applications scale. – Read more

5 considerations for CXOs thinking about SaaS

Accessible and flexible? A report from the IDC reveals what’s scaring users away from SaaS.

Fundamental digital transformation projects, such as undertaking cloud migrations, frequently means buying into one or more SaaS platforms.

Software-as-a-Service lets companies try out best-of-breed software at accessible and flexible rates. Whether for the company’s CRM, ERP, marketing hub, or otherwise, SaaS can carry some serious benefits.

The immediate cost seems low, the fact that a large company is behind the platform means added security, and the ability to grow into the platform slowly and scale up as necessary are the top three reasons businesses like SaaS platforms.

However, experts believe that business leaders must also be aware of a few issues with SaaS platforms before they invest in one.

According to IDC, here are the top five things that scare SaaS buyers away (and what to do about them):

# 1 | High costs and fees

Initially, SaaS seems affordable. Often, SaaS platforms cost US$99 per user — and that looks really easy to understand.

However, what businesses find hard to estimate is how many users they actually need to get on the platform. Compared to on-premise software, SaaS is quite unpredictable where pricing is considered.

Often, SaaS providers also often tend to charge an initiation or setup fee for enterprise users which makes things even more expensive — and a training fee just adds to the initial costs for the business.

According to IDC, 33 percent of IDC’s SaaSPath survey respondents cited high costs and fees as the biggest issue they had experienced with SaaS providers.

Of those who cited high cost and fees as their biggest issue with SaaS providers, 36 percent repatriated.

What most businesses don’t consider, however, is that SaaS platforms will often be happy to negotiate a different rate if the demand is for a large enough number of users.

Further, when organizations face high costs and fees with one SaaS provider, looking for new alternatives in the market is also an option they must consider.

# 2 | Price increases

According to IDC, even if costs don’t start high initially, drastic or frequent price increases can also cause headaches for SaaS buyers.

Price increases where buyers do not see a corresponding change in features or other perceived value is another key issue buyers fear.

In fact, IDC believes that value for the price paid is one of the top three attributes buyers must take into account when evaluating SaaS providers.

To be honest, price increases aren’t really something businesses can guard against by themselves, but if they’re negotiating a bespoke deal with a SaaS provider, maybe price increases could be factored in — something both parties are comfortable with.

# 3 | Difficulty migrating services and data

Moving from on-premise or other traditional applications offers organizations many benefits, but if the transition is too painful, it will stop organizations from staying with their chosen SaaS provider.

Of the respondents to IDC’s survey, 25 percent of those that listed difficulty migrating services and data as their biggest pain point with SaaS providers chosen to repatriate.

Migration is a big issue for both repatriates and non-re-patriates, so IDC advises providers to focus on ways to ease the transition from traditional applications to SaaS.

For businesses, it, of course, makes sense to look for platforms that support their needs and hand-hold them if necessary to help them move to the SaaS platform.

To be honest, a lengthy trial period is quite a good way for businesses to check out different platforms and understand which one they’re most comfortable with. – Read more

How Cloud Computing is Changing Cybersecurity

As it has emerged over the past few years, the cloud has really revolutionized business and allowed us to do amazing things with web-delivered technologies.

However, one of the biggest issues around the cloud has always been, and still is, cybersecurity.

The cloud brings with it a host of cybersecurity issues. Some of them relate to the inherent nature of cloud computing, and others are exploited by hackers through very specific design processes.

Tech moves fast! Stay ahead of the curve with Techopedia!

Here are some of the general challenges of maintaining cybersecurity in the cloud

Lack of Transparency

Because the cloud vendor model requires client businesses to trust outside third parties, transparency is a big issue. That starts with knowing what your vendor’s data setup is like – whether it’s truly a private cloud, or a multi-tenant design that should rightly be called public – and how many barriers there are between the data holdings of multiple customers.

Then other questions center around the security standards and algorithms that the vendors are running. Even things like uptime have to be hashed out in a service level agreement, or there’s really not full transparency in play. That issue of trusting the cloud vendor is one that’s always been central to the relationship between a cloud provider and a consumer of cloud services.

A company is giving up a lot of control – and with that comes a burden of due diligence and the desire to create transparent relationships with vendors.

“If someone is going to operate a service like a public cloud that people are supposed to be able to count on, while changing it under the hood on a continuous basis, and constantly releasing improvements to it, they have taken a management burden upon themselves that no one else in the computing industry has ever shouldered,” wrote Bernd Harzog at Network World in 2017.

“This gives rise to some very tough questions, which none of the public cloud vendors has been forthcoming to answer.”

There are ways to hedge against vendor risks, for example, creating redundant multi-cloud systems and making in-house systems more versatile, but the threat is still there. – Read more

Benefits of Moving Your Company’s Data to Bare-Metal Cloud

VMs, or virtualization cloud may sound fancy but there’s a newer and better way to use the cloud.

Cloud services for businesses are essential components, but you might be wasting money by not migrating to a bare-metal configuration.

Saves You Time and are Low Latency

Bare metal servers are supported by hardware architecture that deliver optimum performance all the time.

Bare metal cloud are becoming more and more popular among enterprises as they deliver some of the lowest latency cloud services, a factor that can make or break your company’s performance. You get access to the speed that not only saves you and your employees time but money as well.

More than that, pre-configured instance environments make short work of automation tasks that will normally take half an hour or so. In just a few minutes and several mouse clicks, your cloud is ready to go.

Enhanced Security

In a VM setup, scores of cloud servers are grouped together, which make them more vulnerable to hacking and attacks from external sources. Bare-metal servers on the other hand occupy a single space in an operating system, which makes it more stable, nimble and still enjoy a stronger resistance to hacking and malicious interference. – Read more

How to integrate on-premises datacenters with public clouds

The integration between on-premises datacenters and one or more public clouds is what we now call a hybrid cloud setup.

As opposed to multicloud, which involves multiple public clouds without any on-premises datacenters infrastructure in the mix, hybrid clouds offer its users the ability to keep sensitive or “high-priority” data on-premises. Hybrid cloud setups are becoming increasingly popular in both the finance and health-care sectors as both these sectors have quite specific regulations around security and privacy, as well as zero tolerance for latency issues. Imagine a lagging computer on a stock market floor or in an emergency room of a hospital. Sounds scary, but it’s never going to happen because there are regulations in place that keep important stuff like that on-premises. That doesn’t mean that banks and hospitals don’t want all that other good stuff that comes from the cloud though, like GPU instances or AI and deep-learning-powered services that recognize speech and images.

Bridging the gap

Cost is also a major factor that drives organizations toward a hybrid setup, especially when variable workloads are involved. A hybrid setup lets you use your regular on-premises datacenters infrastructure to handle normal workloads and switch to public clouds for “cloud bursts.” This is no easy feat, however, and is certainly more complicated than running a multicloud setup. This is because the different cloud and on-premises resources not only use different APIs and management interfaces but are often based on completely different technologies that were never meant to integrate with each other. In fact, according to a research study by DataCenterKnowledge, one of the most common problems with hybrid cloud adoption is getting legacy applications to work alongside modern cloud-native ones. Patching the two together always comes at a performance cost and when we’re talking about business-critical applications, that isn’t really an option for organizations that have thousands of customers depending on them.

While there are a number of advantages to this hybrid model such as flexible usage-based pricing models, almost zero setup cost, and on-demand access to virtually unlimited resources, getting it all to work together is still a work in progress. This means that even though a large number of organizations have adopted this setup and are using it efficiently, there isn’t really a one-size-fits-all or “foolproof” solution to the problem yet. Several platforms help you get there, however, and even some new ones that are quite promising with regards to supporting a truly hybrid infrastructure. This means supporting as many integration scenarios as possible since hybrid clouds typically encompass quite an assortment of hardware, operating systems, and APIs. This is where the platforms come in and try to make it all easier to manage, preferably with a single control pane for both your on-premises datacenters and your public clouds.

AWS Outposts

Outposts was released by Amazon Web Services in November 2018 as part of a major push toward making the hybrid cloud feasible. As opposed to making software that’s compatible with your on-premises equipment, AWS goes old-school here and gives you new on-premises equipment that’s compatible with its cloud. These are delivered to your datacenters in the form of preconfigured racks where AWS services can be run just as they would in the cloud. In addition to being fully managed by AWS and able to run legacy apps in a cloud-native manner, Outposts also allows you to keep AWS services like compute and storage on-premises. Though this method works well since you’re effectively swapping out all your hardware and software for AWS compatible stuff, a complete datacenter “lock-in” isn’t a tempting offer for everyone. Since a big part of what the hybrid cloud represents is freedom and options, buying hardware managed by AWS limits both. – Read more

4 Keys Steps to Cloud: From assessment to transformation

Here, UKCloud explains how businesses can take advantage of Data Centre Modernisation, whilst still focusing on their core business and avoiding key pitfalls of digital transformation

So, you’ve decided you’d like to reap the benefits of Data Centre Modernisation; reducing costs, increasing your operational agility and spending more time focusing on your core business. But you may be left wondering what you need to do, what approaches you can take and some of the key pitfalls to avoid.

You have realised that your organisation needs to adopt multiple cloud services – but that’s a long way from where you are today. You are facing a myriad of existing systems, technologies and contracts that you need to disentangle. But you don’t have the capacity or expertise to properly focus on turning your vision into an executable plan.

Without a coherent plan, your use of cloud is tactical and piecemeal. It’s difficult to keep control of these new cloud services whilst also keeping your existing IT afloat. In effect, things are getting worse – and you need them to get better.

4 Key Steps to Cloud: High-level

Recognising these challenges, we have identified four keys steps that can simplify, de-risk and accelerate your journey to cloud as outlined below in Figure 1:

4 Key Steps to Cloud: Detailed

UKCloud provides a range of services at each step, that supports organisations as they progress their journey to the cloud. Figure 2. shows some examples of the type of work we recommend and progress with our customers.

How can we help?

Our team of multi-cloud experts are at hand to help you with a clear path to cloud, no matter where you are on that journey. UKCloud provide expert, agnostic, multi-cloud advisory through a structured, modular approach. Each stage is supported by a defined, outcome focused workflow that delivers tailored, high value output enabling organisations to adopt cloud with confidence.

Our services are designed to support the specific procurement, assurance, security and connectivity needs of public sector organisations. Our portfolio of products and services are available via G-Cloud and other popular public sector frameworks and support cloud-based transformation programmes end-to-end or via discrete phases dependent on your requirements.

Why UKCloud for Professional Services?

Our methodology is informed by the 220+ digital transformation projects we have successfully completed within public Sector.

Our agnostic, multi-cloud approach and experience ensures appropriate and efficient solutions for business needs: the right workloads, on the right clouds.

Our team of experts provide pragmatic leadership and support that caters for the end-to-end cloud journey, spanning vision, strategy, migration and optimisation.

Our approach supports transformation programmes of varying scale & complexity using flexible tools, templates, reference architectures and methods tailored to individual organisation needs. – Read more