1
Shared Services Canada
Architecture Framework Advisory
Committee
Inaugural Meeting
Benoît Long Senior Assistant Deputy Minister Transformation, Service Strategy and Design Shared Services Canada
October 11, 2012
2
Topics
9:30 – 9:40 Opening Remarks and Introductions
9:40 – 10:00 Information Technology Infrastructure Roundtable (ITIR)
and Architecture Framework Advisory Committee (AFAC)
10:00 – 10:15 Overview of Shared Services Canada
10:15 – 10:30 Break
10:30 – 11:00 Data Centre Consolidation
11:00 – 11:30 Telecommunications Transformation
11:30 – 12:00 Enterprise Architecture
12:00 – 12:30 AFAC Workplan and Next Meeting
Agenda
3
IT Infrastructure Roundtable and Advisory Committees
4
AFAC: Objectives and Terms of Reference
Mandate:
• Serves as a public-private sector consultative forum on enterprise architecture in
support of SSC’s transformation initiatives;
• Explores, weighs options and makes recommendations through SSC on all
aspects of enterprise architecture as it relates to SSC’s transformation initiatives –
in particular, email, data centre and networks/telecom;
• Supports the advancement of SSC’s transformation agenda consistent with
Government of Canada priorities;
• May establish sub-working groups as required to address specific issues; and,
• Addresses and responds to issues or recommendations provided by the ITIR.
Membership:
• ICT industry representation, federal representation (Chief Information Officers
(CIO) from other government departments, SSC).
Meetings and Agenda:
• Frequency of meetings, agenda.
5
Fall
(November)
Winter
(February – March)
Core Themes
• Transformation Journey
• Plan-to-Plan
o Data Centres
o Telecommunications
•Strategic Sourcing and
Best Practices
• Review of Plan-to-Plan
o Data Centres
o Telecommunications
Updates • Procurement Benchmarks
Advisory Committee
• To be confirmed (as required)
IT Infrastructure Roundtable - Forward Agenda
6
Constraints, Dependencies, and
Risks
Oct 2012 Nov
2012
Dec 2013 Feb
2013
Mar
2013
Apr
2013
May 2013
Transformation
Overview X X
DCC and
Telecom P2P X X
Architectural
Framework P2P X X X X X X X
Identity,
Credential and
Access
Management*
X X Finalize
for ITIR
Cloud
Computing* X X X
Finalize for
ITIR
Converged
Communications
(Voice, Video,
Data)*
X X
AFAC Forward Agenda
Assumptions: * only for discussion purposes; Advisory committee meets every 4-6 weeks and has core group of members
from ICT industry and SSC. Advisory committee would have minimum of two meetings to develop product for consideration by
IT Infrastructure Roundtable and one meeting to finalize product before presentation to IT Infrastructure Roundtable.
7
Review of Initial Deliverables
• Framework – Corporate Executive Board –
enterprise architecture program
• Annual Report and Plans/Progress
• SSC architectural documents/artifacts and interim
operating standards
• Others?
8
AFAC Rules of Engagement
• Members are expected to freely share their ideas and opinion
(aim is to leverage participants knowledge and experience)
• No idea is a bad idea
• Members of the committee have been asked to participate
because of their expertise, not their company or association
affiliations – leave corporate and affiliations at the door!
• Recommendations should be standards-centric (i.e. not
product-centric).
9
A New Organization with an IT Focus
Budget 2011 Consolidate Standardize Re-engineer
Shared Services Canada:
Created on August 4, 2011
Mandated to deliver email, data centre and network/telecom services to 43 Government of
Canada institutions representing 95% of the federal IT infrastructure spending
Budgets, people, assets and contracts transferred to SSC in November 2011
Full accountability for the infrastructure on April 1, 2012
Shared Services Canada Act, Royal Assent, June 29, 2012
Raison d’être
Reduce costs
Improve Security
Maximize Efficiencies
Minimize Risks
10
OPERATIONS TRANSFORMATION
Business Continuity Frameworks Establishment of organizational structure Data collection/ validation of people, projects and assets to establish baseline
Enterprise Approach To Transformation
August 4, 2011 April 1, 2012
SSC created: transfer of 1,500+ PWGSC employees
Data Centres • Harvest efficiencies from consolidation • Reduce number of data centres from 300 to less than 20
2015 2020 November 15, 2011
Networks • Transition from department-centric to shared network
infrastructure • Converge voice data and video onto the same network
infrastructure • Expand wireless network infrastructure for mobile devices
Transfer of 5,000+ employees from 42 departments
Email • Move to one single email platform for the
Government of Canada (unclassified – secret)
Stand alone Department
SSC legislation receives Royal
Assent
June 29, 2012
11
Current State of IT across Government of Canada
Highly complex, costly and
less secure than desired
63 email systems
19 large data centres
65 Medium-sized data
centres of varying quality,
security and energy
efficiency;
hundreds of smaller
“closets”;
50 wide area networks
connecting over 3000
buildings and data centres –
over 1,000 firewalls;
less than 100 buildings with
wireless WAN services;
over 110,000 people with 2
phones;
over 1000 PBX and key
systems;
largely in-sourced
2,100 mission-critical, mandate-
specific systems that span:
key benefits programs (e.g.
employment and pension benefits)
security (e.g. national defence and
national policing systems and
provincial police force databases,
CBSA border systems, and Public
Safety cyber security and
Emergency Response);
safety and health (e.g. food
monitoring, health science labs,
weather systems, seismic systems);
farmers and students (agriculture
innovation, student loan programs)
finance systems (e.g federal-
provincial tax and benefit systems,
money laundering)
connectivity that ensures safe
access to government, programs,
citizens and protects information
Mission-critical programs highly
dependent on infrastructure
Current state of IT
infrastructure:
is complex, old and
expensive
is a long-term unfunded
liability
is vulnerable to availability
and performance issues
is a barrier to business
system renewal, modernization
and agility
has uneven quality of service
has some resiliency soft
spots
is not service oriented
Procurement practices that limit innovation.
Issues persist and are barriers
to government priorities
12
Data Centre and Networks - Current State
LAN1 – Dept A
LAN5 – Dept Q
LAN4 – Dept H
LAN3 – Dept F
LAN2 – Dept B
LAN7
LAN6
LAN3000
Building Building Building Building
WAN1 WAN2 WAN3 WAN43 . . .
LAN5 – Dept Q
LAN4 – Dept H
LAN7
LAN6
Building Building Building
Dept. A:
small data
centre
LAN2 – Dept B
LAN7
LAN6
Building
Dept. A: large.
data centre
Dept. H:
small data
centre. Dept. Q:
small data
centre
Dept. F:
small data
centre
Dept. C:
small data
centre
LAN2999
LAN7
LAN6
Building
Dept. B:
small data
centre
. . .
. . .
Dept. D:
small data
centre
data centres
13
Conceptual End State – Simpler, Safer and Smarter
14
Data Centre Consolidation Renewed, Reliable, Resilient
Peter Littlefield Director General, Data Centre Consolidation Initiative Shared Services Canada
October 11, 2012
15
VISION
VALUE
Improve Service Quality • Improve levels of service and security for all
• Modernize infrastructure and platforms
• Increase system availability, reliability, robustness and scalability
• Reduce dependence on physical location
Maximize Efficiencies • Reduce infrastructure and overall costs
• Standardize infrastructure and operations
• Determine appropriate level of private sector engagement
• Make most effective use of IT labour force
Minimize Risks
• Fewer, better quality facilities
• Power supply diversification
• Centralize planning and recapitalization
• Address aging IT infrastructure
• Examine industry investment and risk sharing
Additional Benefits • Significant environmental benefits
• Reduce power demand
• Reduce greenhouse gas emissions (cleaner power); reduce e-waste
• Economic stimulation
• Innovation (workforce, technology, service)
The Government of Canada will consolidate data centres, centralize their administration, and rationalize service delivery, to achieve greater
efficiencies, reduce costs, minimize risks, and improve service quality
Data Centre Consolidation: Transformation Principles
16
By the numbers: • Over 300 GC data centres
Total of > 600,000 sq.ft.
19 data centres ≥ 5,000 sq.ft.
65 data centres 1,000 – 5,000 sq.ft.
Over 2,000 more server locations
• Over 25,000 servers
35% virtual; 65% physical
7% Unix; 14% Linux; 79% Windows
• Nearly 50,000 MIPS
• Over 14 PB of on-line storage (54% utilized)
Challenge: • Work together: 43 organizations to 1
• Manage demand and capacity horizontally
• Optimize SSC’s people, processes, and technology
• Greening of government operations – efficient use of clean power
• Secure GC data, infrastructure, networks, and facilities
GC Data Centres: Where Are We Now?
Western & Northern: 81
Ontario: Atlantic: 31
NCR: 128
Québec:
28
40
17
Data Centre Vision: From – To Perspective
Optimize the delivery of GC data centre services, by standardizing technologies, consolidating buildings and IT, centralizing operations, and re-engineering service delivery
Key Components Elements FROM (TBC) TO (TBC)
Facilities
Number of Data Centres 300+ < 20
Geographic location Dept. based Enterprise focus; objective criteria
Footprint > 600,000 sq.ft. < 200,000 sq. ft.
Hardware Number of Servers 25,000+ < 18,000
Type of computing and storage Specialized Standardized
Software Middleware Non standard Standardized platforms
Virtualization Ratio (virtual: physical) Low (35:65) High (70:30)
Network Consolidation Dept. specific WAN/LANs Common high speed and secure network
Power & Cooling Power Density (Watts per square foot) 35 W/sq. ft. 100 W/sq. f t. (min.)
Total Power (Mega Watts) 17.8 MW 13.4 MW
Resiliency Availability and disaster recovery Tier 0-2 Tiers 3-4
For Illustration Purposes Only
18
Step 1:
Current State
• Inventory of facilities and infrastructure
• Applications to infrastructure map
• Service levels for all programs and applications
• Knowledge and experience from industry and other government jurisdictions
Inventory
Application Map
Case Studies, Industry Trends
DCC Methodology Step 2:
Requirements Step 3:
End State Step 4:
Plan Step 5:
Execute
• Partners’ business needs and technology directions
• Policy impacts
• Key enterprise requirements
• Partners as agents of change and relationships
• Target architecture for future state data centres and infrastructure
• Organization to provide future state data centre services
• Core skills and industry options
• Gap analysis between current and future
• How to migrate from current to end state
• Costs and benefits analysis
• Sourcing approach
• Impacts to people and culture
• Risks and mitigations
• Detailed project and migration plans
• Procurement of goods and/or services
• Infrastructure plan alignment with partner business cycles and plans
• Business Cases to support initiatives
• Project execution in several waves of small projects
• Dynamic plan adjustment
• On-going adjustment of strategies and plans, as needed
• Active partner engagement
• Benefit tracking
• Frequent recognition of successes
Requirements Analysis
Engagement Strategy
Target Architecture
Target Organization
Service Delivery Model
Migration, HR, Sourcing Strategies
Consolidation Plan
HR Mgmt. Plan
Change Mgmt. Plan
Business Cases
Progress Reports
Benefits Reports
19
Commoditize
Data Centre Consolidation Strategies
Modernize
Standardize Reduce
• Duplicative infrastructure
• Unused capacity
• Time to delivery
• Environmental footprint
• Costs
• Diverse infrastructure
• Service levels
• Service delivery
• Business intake
• Infrastructure as a service
• Storage
• Compute
• Platform as a service
• Data centre facilities
• Aging infrastructure
• Workplace tools
• Core competencies / skills
Key Driver: Capital refresh lifecycle
20
Criteria for the Selection of Data Centres
• SSC envisions the establishment of a few principal data centres (e.g. < 20)
o Based on industry best practices and case studies of organizations and jurisdictions who have conducted data centre consolidation initiatives, of comparable size and complexity.
• SSC is analyzing the many options available for the establishment of data centres, for example:
o Use of existing Crown real property assets
o Construction of new facilities
o Partnership with other jurisdictions
o Private sector arrangements
• Scientific and objective criteria – economic, demographic, environmental and technological factors – will be examined during the selection process.
• SSC has launched an independent third-party study to determine objective location selection criteria by October 31, 2012.
• Locations should be determined by the Spring of 2013.
Potential Criteria
• Geographical and geological factors
• Proximity to existing telecommunications network hubs
• Proximity to power utilities
• Security assurance
• Business continuity
• Proximity to Canadian users, vendor support and a sustainable workforce
• Environmental footprint
• Cost (e.g. build, property, power)
21
Data Centre Conceptual End State (detail)
22
Data Centre Consolidation Principles 1. As few data centres as possible
2. Locations determined objectively for the long term
3. Several levels of resiliency and availability (establish in pairs)
4. Scalable and flexible infrastructure
5. Infrastructure transformed; not ‘’fork-lifted’’ from old to new
6. Separate application development environment
7. Standard platforms which meet common requirements (no re-architecting of applications)
8. Build in security from the beginning
End State: Security
1. All departments share one Operational Zone
2. Domains and Zones where required
3. Classified information below Top Secret
4. Balance security and consolidation
5. Consolidated, controlled, secure perimeters
6. Certified and Accredited infrastructure
23
Data Centre Consolidation Principle Cont’d
End State: Data Centre Service Management
1. ITIL ITSM Framework
2. Standardized Service Levels/Availability Levels
3. Inclusive of Scientific and special purpose computing
4. Standardized Application and Infrastructure Lifecycle Management
5. Smart Evergreening
6. Full redundancy – within data centres, between pairs, across sites
End State: Business Intent
1. Business to Government
2. Government to Government
3. Citizens to Government
24
Current Activities and Next Steps
• Complete current state inventory and analysis (Dec. 2012)
• Engage with Partner departments to produce business
requirements (Dec. 2012/Jan. 2013)
• Industry Day(s) and formal engagement (early 2013)
• End State Definition (Mar. 2013)
25
Data Centres – Critical Success Factors
• ...
• ...
• ...
• ...
• ...
• ...
• ...
• ...
• ...
Process
Technology
People
26
Telecommunications
Transformation Program
Michel Fortin Director General, Telecommunications Transformation Initiative Shared Services Canada
October 11, 2012
27
VISION
VALUE
Improving Service Quality • Improve levels of service to citizens and public
servants
• Standardize infrastructure and platforms
• Increase system availability and robustness by improving redundancy and route diversification
• Implement ubiquitous personal mobility
Maximizing Efficiencies • Consolidate and converge to reduce
duplication of infrastructure
• Centralize operation and administration
• Determine appropriate level of private sector engagement
• Make effective use of shrinking IT budget
Minimizing Risks
• Increase information security
• Centralize planning and procurement
• Consolidated access points to the Internet
• Rejuvenate aging IT infrastructure
Additional Benefits • Enable Workplace 2.0
• Reduce travel costs (videoconferencing)
• Improve support to remote worker
• Significant environmental benefits
The Government of Canada will consolidate networks and transform telecommunications services, to achieve greater efficiencies, reduce costs,
minimize risks, and improve security and service quality
Telecommunications Transformation Principles
28
Current State – Analysis
Canadians population distribution
Legend Population Orange– population >1,000 Blue – population < =1000
• Canada population = 33.4M
• 13 largest ciities (metro areas) total population > 18M
• Canada has 230 cities with a population of > 15,000
• Important to factor in population distribution in network architecture to provide best service to citizen
29
Geographical Distribution of Federal Employees
• Total of approximately
255,000 public
servants (excluding
military members of
the Canadian Forces
and RCMP officers)
• Over two thirds of
public servant
employees are
located in Ontario and
Quebec
GC employee distribution by province + NCR
Alberta 5.6%
British Columbia
9.3% Manitoba 3.8%
NCR 40.6%
New Brunswick
3.2%
New Foundland 1.8%
Northwest Territories
0.3%
Nova Scotia 4.4%
Nunavut 0.1%
Ontario 14.6%
Prince Edward Island 1.3%
Quebec 11.8%
Saskatachewan 2.5%
Yukon 0.2%
International 0.6%
30
Geographical Distribution of Federal employees
• GC employees are
located in ~1400
cities/towns in
Canada
• 74% of GC
employees are
located in Zone 1
(population of
350,000+ with
suburbs). These
represent only 9% of
the total # of locations
• 80%+ of GC locations
are small towns
(<10,000 population)
(Zone 4, 5)
Zone 1 74%
Zone 2 10%
Zone 3
3%
Zone 4 12%
Zone 5 1%
Legend Population Zone 1 – pop. >350,000 Zone 2 – pop. 50K-350K Zone 3 – pop. 10K-50K Zone 4 – pop. < 10,000 Zone 5 - Nunavut, NWT, Yukon
Zone 1 9%
Zone 2 5%
Zone 3 2%
Zone 4 81%
Zone 5
3%
GC employee population distribution
GC location distribution
Two populations: Canadians and
Public Servants
31
Must transform to provide best value and better service to Canadians !
Current State (from a number’s perspective)
Networks:
50 Wide Area Networks serving 43 depts
~8000 WAN access to ~ 4000 buildings
Telephony:
300,000+ CENTREX telephone lines
850 + PBXs or Key Telephone Systems
120,000+ Blackberries, cell phones, wireless modems
15,000+ Toll Free Lines
Videoconferencing
2800+ Boardroom Systems
82 VC bridges
Contact Centre
100+ contact centres of various sizes
12000 + contact centre agent seats
32
Telecom Vision: From – To Perspective
Modernize and optimize the delivery of GC networks, by standardizing technologies, consolidating buildings and IT, centralizing operations, and
re-engineering service delivery
Key Components Elements FROM (TBC) TO (TBC)
Inter-building Networks
Number of Wide Area Networks 50 1 (intended)
Number of WAN connections to buildings
7000+ -20%
Intra-building Networks
Number of multi-tenant buildings with consolidated infrastructure
<40 >300
Number of buildings with Wireless LAN services
< 100 >3000
Telephony Number of PBXs and key systems 850 + <100
Number of IP phones deployed < 10,000 >150,000
Videoconferencing Number of VC bridges 82 < 12
Contact Centres Number of contact centres (infrastructure)
100+ -50%+
For Illustration Purposes Only
33
Conceptual Telecom/Networks End-State
34
Conceptual End State (detail)
35
Conceptual End-State Continued
Consolidation principles • As few wide area networks as possible
• All departments share network access in multi-tenant buildings
• Network equipment is shared
• Telecom hubs (call managers, VC bridges) located in enterprise data
centers or common points of presence
• Inter-data center connections should be diverse and fully redundant
• Scalable and flexible infrastructure
• Performance levels should be similar wherever possible
• Contracts/services will be consolidated
Security principles • All departments share one enterprise/common zone
• Access to sensitive departmental data is secured through restricted zones
• Developers do not have access to production infrastructure
• Classified information below Top Secret
• Consolidated, controlled, secure perimeters
• Balance security and consolidation
• Certified and Accredited infrastructure
36
Conceptual End-State Continued
Transformation Areas 1. Inter and Intra-data center networks
2. Inter-building wide area networks
3. Intra-building (Local Area Networks) includes mobile services
4. Converged (Voice, Video , Data) / Unified Communications
5. Contact Centres (internal and external)
6. Network Security
7. Internet connectivity (including IPv6 support)
Characteristics • Integrated (single, common, secure GC network will link all service
delivery points)
• High performance
• Secure
• Cost-effective
• Standardized (based on open standards, modularized design)
• Mobile (wireless technology will be maximized where cost-effective)
• Responsive and resilient
37
Current Activities and Next Steps
• Complete current state inventory and analysis (Oct 2012)
• Engage with stakeholders to produce business requirements
(December 2012/January 2013)
• Industry Day(s) and formal engagement (early 2013)
• End State Definition (March 2013)
38
Networks – Critical Success Factors
• ...
• ...
• ...
• ...
• ...
• ...
• ...
• ...
• ...
Process
Technology
People
39
Enterprise Architecture Program
Jirka Danek Director General, Enterprise Architecture Shared Services Canada
October 11, 2012
40
Enterprise ICT Architecture
41
Draft Architecture Documents Schedule Available today
• Distributed computing
♦ GC SRA RIA*
• Telecommunications
♦ Wireless LAN RA**
♦ Wireless LAN RIA
♦ VoIP RA
• IT Security
♦ Security Domains and Zone Architecture
♦ Security Domains and Zones Implementation Guidelines
♦ Management Zone Implementation Guidelines
Q3 2012-2013
• Telecommunications
♦ GCNET Intra-Building RA
♦ GCNET Inter-Building RA
♦ GCNET Data Center Network RA
♦ UC RA
Distributed computing
♦ Directory RA
♦ Mail Service Strategy
* RIA – Reference Implementation Architecture
**RA – Reference Architecture
42
Draft Architecture Documents Schedule Cont’d
Q4 2012-2013
Distributed computing
♦ VDI Platform RA
♦ Collaboration RA
Production computing
♦ ERP Platform RA
♦ Common Infrastructure Service RA
♦ Storage Services RA
♦ Data Protection/Backup Services RA
♦ Data Archival Services RA
♦ Data Centre Facilities Management RA
♦ IT Service Management RA
♦ High Availability and Disaster Recovery RA
♦ Data Centre Services Interoperability RA
Telecommunication
♦ Videoconferencing RA
TBD Telecommunication
♦ Contact Center RA
IT Security
♦ IT Environment Protection
♦ Identification, Authentication, Authorization
♦ Secure Communications
♦ Perimeter Defence, Detection, Response, Recovery, Audit
43
Enterprise Architecture EC Framework
© 2011 The Corporate Executive Board Company. All Rights Reserved.
EXECUTIVE SUMMARY I RECOMMENDED RESOURCES I DETAILED FINDINGS I APPENDIX
Core Enterprise Architecture Activities
44
AFAC
Next Meeting
45
Next Meeting of AFAC
• Receive and integrate feedback into Transformation
Program presentation for IT Infrastructure
Roundtable meeting that is being planned for
November 2012.
• Timing for meeting #2 for Architecture Framework
Advisory Committee.