Individual Projects

In 8 Levels to Your Successful Cloud Project

Have you experienced it before? The software/solution supplier's presentation promises you a perfect “match” for the cloud. What about it is fiction and what is reality?

With “our” CIA triangle, we are able to check the maturity level of an application in terms of its cloud readiness. We do not only look at the architecture, but also at the life cycle of the processed data. As a result of our investigations, we also provide suggestions about the best suited cloud model and optimization potential.

Our approach is based on the following levels that need to be mastered:

1

Auswahl der Plattform

In this "game", for finding the perfect strategy, first the surrounding has to be analysed. The goal is to find the target platform and learn about the available services.

2

Service Modell definieren

This level is about processing the gained knowledge. Depending on the target platform, common services reach from fully-managed through shared-responsibility to self-managed solutions.

3

Application Assessment

The first boss named "architecture" arrives. While working out a first high level concept, the realization may strike, that the chosen services do not match. Courage is needed to make the right decision about returning to level one, enabling you to make the adjustments needed for winning this fight!

4

Threat Modeling

After planning something to protect, it's time to choose the weapons. Possible options are the classical threat modelling supported by fitting tools or predefined solutions of PaaS and SaaS systems.

5

Solution Architecture

The architecture boss strikes again! Now it's all about fine-graining the high-level architecture. This has to be done very carefully. If the boss is not finished off properly, it will bite back in the next levels!

6

Implementation and Integration

Let's start building! In order to construct a robust solution without technical debts, it is important to define key points that lead the way without rushing. This can include implementations of EaC (everything as code), automations, surveillance and alerting

7

Security Review / Audit

This multi-leveled boss must first be analysed: Is the review process is regulated? Are third party reviewers are needed?... In any way, key to success is having a clear plan and providing the operating team enough resources for processing security topics.

8

GO Live Assessment

The final boss is about endurance. For finding possible operational issues, a respectful but critical dialog with all involved parties has to be conducted. Finding errors and missing parts before going life, saves stress and money