How A Large Bank’s I&O Team Self-Provisions Infrastructure and Application Services in Minutes not Days
We recently completed a project at one of the largest banks in Southeast Asia. The IT organization was looking to accelerate the delivery of infrastructure and application services to support the growing demands of application development teams building business applications that drive competitive advantage for the bank.
In the absence of automated workflows, the IT organization was stuck with manual processes that resulted in long waits experienced by end users, rising operational expenses, inconsistent infrastructure, and overall dissatisfaction by business users.
The customer adopted HyperGrid’s HyperCloud™ offering, a consumption-based, on-premise cloud service for the enterprise. HyperCloud™ offers integrated governance and control for DevOps management and orchestration for any application on bare-metal, VMs and containers, and on any cloud. The No-CapEx pricing model allowed the organization to get all the benefits of the public cloud while maintaining security and control. Showback reports allowed the organization to track infrastructure usage across their data-center with the cost visibility needed to control spending.
The customer defined three tiers for their infrastructure services: platinum, gold, and silver. Each tier would be allocated specific compute, network and storage resources given the workload and the environment on which it would be provisioned.
For each tier, on-demand services had to be available in the self-service library for development teams. For Virtual Machines, blueprints for the Ubuntu, CentOS, Windows Server 2012 and Windows Server 2016 operating systems were needed where manual software installation was expected. Additionally, fully configured application stacks for PHP and .NET on containers were needed for quick deployment in development and testing environments using the latest code checked in by developers.
Machine Blueprints and Application Blueprints were quickly created based on these requirements and made available in the self-service library. Advanced infrastructure and application modeling standardized application provisioning using:
- IT-blessed scripts (e.g. BASH, PowerShell, Puppet, Chef, etc.) invoked at 20 different life-cycle events (triggers) to provide consistent application deployment on any infrastructure
- Data injection to support dynamic application dependencies in multi-VM or multi-container deployments
However, IT had some important questions to answer before rolling out these services to their users.
- If an automated, self-service model is adopted for provisioning, how can IT ensure that approval workflows and entitlements are enforced for governance?
- How can IT enforce quota and cost metering policies to ensure appropriate usage of infrastructure with showback reports to track the cost of infrastructure and application services?
- How can IT manage not just the initial provisioning workflows but the life-cycle management operations for infrastructure and applications post-provision?
The governance framework in HyperCloud™ provides role-based access controls, entitlements, approval, quota and cost metering policies to enable secure and holistic management of resources, workloads, and operations across any cloud with the cost visibility needed to control spending. These controls were configured in the “Cloud Provider” that IT registered for HyperCloud™.
HyperCloud™ automated both the provisioning and the lifecycle management operations for both infrastructure and application services – allowing teams to access monitoring, backup, in-browser terminals, log analysis, scale in or out, continuous delivery workflows and applications updates to speed up DevOps processes. By adopting automated lifecycle management, IT could automate downstream operations, lowering the cost to apply patches, scale out resources, and update configurations.
Ultimately, the winning feature for the bank was the self-service library that enabled self-provisioning of infrastructure, storage, network, database, and application services in minutes, not days! Even more essential for a highly regulated financial institution, all provisioning workflows initiated through the self-service library adhered to IT-defined governance controls, entitlements, approvals and quota policies – allowing IT to be in full control while providing agility and flexibility to application development teams.