14
Next Generation Data Centre Security Paul Mayne February 5 th , 2018
Next Generation Data Centre Security Paul Mayne
February 5th, 2018
Table of Contents
Drivers and demands
A Data Center Security Transformation Model
Next Generation Data Center Security Architectures
A path to secure data centers
Drivers and Demands
Change drivers impacting Data Center Security Investments?
Which is safer my Data center or the Cloud?
Build vs buy vs lease decisions
Upgrade or Re-implement
Security?
Is this risk acceptable?
Where do I start with security?
Too much money for no
real return
Is my IT vendor the right
Security partner
Is Security liability shared?
How long will this investment
last?
The CXO demands on IT
Monetize Investments (Cloud DC/generate revenue vs cost consumption)
Protect existing customer base and revenue streams (Secure customers, employees and revenue
Drive new Revenue (Support innovation/open systems/Partner vs build)
Reduce or eliminate downtime of services and data loss. (zero downtime)
Keep the technology simple (Clear ROI/No bleeding edge)
Business driven security technology (Optimized investments)
A Data Center Security Transformation Model
A Data Center Transformation Model
Customer Access and Interface Services
Physical and Logical Security Services Security Partners
Compute Services
Communications Services
Storage Management
Services
Monitoring & Event Mediation
Service Catalog Manager
Financial Services
Lifecycle Management
Application Managers
Workflow Managers
Analytics
Operations Services Manager
Orc
he
stra
tio
n a
nd
Inte
grat
ion
Se
rvic
es
Ne
two
rk M
anag
em
en
t Se
rvic
es
Next Generation Security Data Center Architectures
Next Generation Security Architecture Overlay
Courtesy CISCO Cloud Data Center Architecture
Wiring Fire Control Cabinet Cooling Power UPS L1 Facility
Server SAN Network
IT Infrastructure
X86 Server Security SAN
Security
Virtualization Security
Host Security
Network Security
Physical Security
Data Security
Management Security
DC United Management
Service Resource Providing
SLA
Room Monitor
OM Management
United Portal
Muliti-DC Monitoring
X86 Physical Pool
Virtualization Pool(Government)
Resource Pool
Cloud Service
High-Performance Pool
Government VDC
Cloud Disk Cloud Host
Server SAN Network X86 Server Security SAN
Virtualization Pool(Enterprise & Public Service)
Resource Pool
Internal Cloud
General Resource Pool
Application
OA
Enterprise & Public Service Cloud
Cloud Service
VPC
Application
IT Infrastructure
High-Performance Pool
General Resource Pool X86 Physical Pool
Cloud Disk Cloud Host VPC
Government Portal
Education VDC
Digital Library
Education Resource Sharing
Police VDC
Car tracking system
Crime Information
System
Health VDC
Drug Monitoring
Epidemic Reporting .
.
Production VDC
OA
ERP
TEST VDC
WEB
BIG DATA VDC
Finance
BI
.
.
National Distributed Cloud Data Center 1
National Distributed Cloud Data
Center N
National Distributed Cloud Data
Center 2
…
A Distributed Cloud Data Center Architecture
The path to secure Data Centers
The real Business Drivers of Cloud DC
Protect Applications
Data
Customers
Responsiveness
Service Levels
Optimize Cost
People & Process
Investments
Support complexity
Underutilized resources
Grow Technology adoption in
the business
App rollout
Information availability
Service enablement
Enterprise Value
Implementing a Cyber Security Operations Center with the Cloud
Reporting Layer Security Management Network
Management Device
Management User
Management
Data Layer Security Events
Assets Policy
Management
Network Events
User Events
Logs Profiles
Data Acquisition Layer
Internet Routers Web Apps Firewalls Servers Switches Gateways
