Book Image

Multi-Cloud Architecture and Governance

By : Jeroen Mulder
Book Image

Multi-Cloud Architecture and Governance

By: Jeroen Mulder

Overview of this book

Multi-cloud has emerged as one of the top cloud computing trends, with businesses wanting to reduce their reliance on only one vendor. But when organizations shift to multiple cloud services without a clear strategy, they may face certain difficulties, in terms of how to stay in control, how to keep all the different components secure, and how to execute the cross-cloud development of applications. This book combines best practices from different cloud adoption frameworks to help you find solutions to these problems. With step-by-step explanations of essential concepts and practical examples, you’ll begin by planning the foundation, creating the architecture, designing the governance model, and implementing tools, processes, and technologies to manage multi-cloud environments. You’ll then discover how to design workload environments using different cloud propositions, understand how to optimize the use of these cloud technologies, and automate and monitor the environments. As you advance, you’ll delve into multi-cloud governance, defining clear demarcation models and management processes. Finally, you’ll learn about managing identities in multi-cloud: who’s doing what, why, when, and where. By the end of this book, you’ll be able to create, implement, and manage multi-cloud architectures with confidence

Related Content you might be interested in

Current Title:

Small book image
Multi-Cloud Architecture and Governance
Jeroen Mulder
Dec, 2020 | 412 pages
Small book image
Enterprise DevOps for Architects
Jeroen Mulder
Nov, 2021 | 288 pages
Small book image
Multi-Cloud Handbook for Developers
Jeveen Jacob | Subash Natarajan
Feb, 2024 | 292 pages
Small book image
Azure Strategy and Implementation Guide, Fourth Edition
Jack Lee | David Rendoacuten | Greg Leonardo | Jason Milgram
May, 2021 | 228 pages
Table of Contents (28 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
Reviews
1
Section 1 – Introduction to Architecture and Governance for Multi-Cloud Environments
Section 1 – Introduction to Architecture and Governance for Multi-Cloud Environments
Free Chapter
2
Chapter 1: Introduction to Multi-Cloud
Chapter 1: Introduction to Multi-Cloud
Understanding multi-cloud concepts
Multi-cloud – more than just public and private
Setting out a real strategy for multi-cloud
Introducing the main players in the field
Summary
Questions
Further reading
3
Chapter 2: Business Acceleration Using a Multi-Cloud Strategy
Chapter 2: Business Acceleration Using a Multi-Cloud Strategy
Analyzing the enterprise strategy for the cloud
Fitting cloud technology to business requirements
Keeping track of cloud developments – focusing on the business strategy
Creating a comprehensive business roadmap
Mapping the business roadmap to the cloud-fit strategy
Summary
Questions
Further reading
4
Chapter 3: Getting Connected – Designing Connectivity
Chapter 3: Getting Connected – Designing Connectivity
Connectivity is king – connectivity concepts in multi-cloud
Designing a network topology for multi-cloud – thinking ahead
Understanding network protocols in multi-cloud
Summary
Questions
5
Chapter 4: Service Designs for Multi-Cloud
Chapter 4: Service Designs for Multi-Cloud
Introducing the scaffold for multi-cloud environments
Cloud adoption stages
Translating business KPIs into cloud SLAs
Using cloud adoption frameworks to align between cloud providers
Understanding identities and roles in the cloud
Creating the service design and governance model
Summary
Questions
Further reading
6
Chapter 5: Managing the Enterprise Cloud Architecture
Chapter 5: Managing the Enterprise Cloud Architecture
Defining architecture principles for multi-cloud
Creating the architecture artifacts
Working under architecture for multi-cloud and avoiding pitfalls
Change management and validation as the cornerstone
Validating the architecture
Summary
Questions
Further reading
7
Section 2 – Getting the Basics Right with BaseOps
Section 2 – Getting the Basics Right with BaseOps
8
Chapter 6: Designing, Implementing, and Managing the Landing Zone
Chapter 6: Designing, Implementing, and Managing the Landing Zone
Understanding BaseOps and the foundational concepts
Creating a multi-cloud landing zone and blueprint
Managing the landing zone using policies
Orchestrating policies for multi-cloud
Global admin galore – the need for demarcation
Summary
Questions
Further reading
9
Chapter 7: Designing Resilience and Performance
Chapter 7: Designing Resilience and Performance
Starting with business requirements
Exploring solutions for resiliency in different cloud propositions
Optimizing your multi-cloud environment
Performance KPIs in a public cloud – what's in it for you?
Summary
Questions
Further reading
10
Chapter 8: Defining Automation Tools and Processes
Chapter 8: Defining Automation Tools and Processes
Cross-cloud infrastructure automation
Automation processes using a code repository and workflows
Exploring automation tools
Architecting automation for multi-cloud
Summary
Questions
Further reading
11
Chapter 9: Defining and Using Monitoring and Management Tools
Chapter 9: Defining and Using Monitoring and Management Tools
Defining monitoring and management processes
Exploring monitoring and management tools
Consolidating and interpreting data from monitoring systems
Discovering the single-pane-of-glass view
Summary
Questions
Further reading
12
Section 3 – Cost Control in Multi-Cloud with FinOps
Section 3 – Cost Control in Multi-Cloud with FinOps
13
Chapter 10: Managing Licenses
Chapter 10: Managing Licenses
Types of license agreements
Software licenses in cloud platforms
Managing licenses and contracts
Using third-party brokers for licenses
Setting up an account hierarchy
Summary
Questions
Further reading
14
Chapter 11: Defining Principles for Resource Provisioning and Consumption
Chapter 11: Defining Principles for Resource Provisioning and Consumption
Avoiding Amex Armageddon with unlimited budgets
The provisioning and consumption of resources in public cloud platforms
The provisioning and consumption of resources in on-premises propositions
Setting guidelines and principles for provisioning and consumption
Controlling resource consumption using cost alerts
Summary
Questions
Further reading
15
Chapter 12: Defining Naming Conventions and Tagging
Chapter 12: Defining Naming Conventions and Tagging
Creating a naming convention
Creating a tagging convention
Implementing naming and tagging
Managing naming and tagging conventions
Summary
Questions
Further reading
16
Chapter 13: Validating and Managing Bills
Chapter 13: Validating and Managing Bills
Exploring billing options and using cost dashboards
Validating invoices
Centralizing billing in multi-cloud
Summary
Questions
Further reading
17
Section 4 – Security Control in Multi-Cloud with SecOps
Section 4 – Security Control in Multi-Cloud with SecOps
18
Chapter 14: Defining Security Policies
Chapter 14: Defining Security Policies
Understanding security policies
Defining the baseline for security policies
Implementing security policies
Managing security policies
Summary
Questions
Further reading
19
Chapter 15: Implementing Identity and Access Management
Chapter 15: Implementing Identity and Access Management
Understanding identity and access management
Using a central identity store with Active Directory
Designing access management across multi-cloud
Exploring Privileged Access Management (PAM)
Enabling account federation in multi-cloud
Summary
Questions
Further reading
20
Chapter 16: Defining Security Policies for Data
Chapter 16: Defining Security Policies for Data
Storing data in multi-cloud concepts
Understanding data encryption
Securing access, encryption, and storage keys
Securing raw data for big data modeling
Summary
Questions
Further reading
21
Chapter 17: Implementing and Integrating Security Monitoring
Chapter 17: Implementing and Integrating Security Monitoring
Understanding SIEM and SOAR
Setting up the requirements for integrated security
Exploring multi-cloud monitoring suites
Summary
Questions
Further reading
22
Section 5 – Structured Development on Multi-Cloud Environments with DevOps
Section 5 – Structured Development on Multi-Cloud Environments with DevOps
23
Chapter 18: Designing and Implementing CI/CD Pipelines
Chapter 18: Designing and Implementing CI/CD Pipelines
Understanding CI/CD and pipelines
Using push and pull principles in CI/CD
Designing the multi-cloud pipeline
Exploring tooling for CI/CD
Summary
Questions
Further reading
24
Chapter 19: Introducing AIOps in Multi-Cloud
Chapter 19: Introducing AIOps in Multi-Cloud
Understanding the concept of AIOps
Optimizing cloud environments using AIOps
Exploring AIOps tools for multi-cloud
Summary
Questions
Further reading
25
Chapter 20: Introducing Site Reliability Engineering in Multi-Cloud
Chapter 20: Introducing Site Reliability Engineering in Multi-Cloud
Understanding the concept of SRE
Working with risk analysis in SRE
Applying monitoring principles in SRE
Applying principles of SRE to multi-cloud – building and operating distributed systems
Summary
Questions
Further reading
26
Assessments
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Chapter 5
Chapter 6
Chapter 7
Chapter 8
Chapter 9
Chapter 10
Chapter 11
Chapter 12
Chapter 13
Chapter 14
Chapter 15
Chapter 16
Chapter 17
Chapter 18
Chapter 19
Chapter 20
27
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Preface

Enterprises move environments to the cloud. Applications and systems are not migrated to just one cloud platform: enterprises will use a mix of Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS), hosted on different platforms such as AWS, Azure, Google Cloud, and on-premises private clouds. Enterprises are adopting a multi-cloud strategy, leaving the architects and lead engineers with the challenge of how to integrate architectures and manage the enterprise cloud. Architects and engineers will learn how to design, implement, and integrate cloud solutions and set up controls for governance.

After the introduction of the concept of multi-cloud, this book covers all of the topics that architects should consider when designing systems for multi-cloud platforms. That starts with designing connectivity to and between the various platforms and creating the landing zones in Azure, AWS, and GCP.

The book is divided into four main sections, covering the following:

  • Operations, including setting up and managing the landing zones that provide the infrastructure for cloud environments
  • Financial operations including cost control and license management
  • Security operations, covering identity and access management, securing data, security information, and event management
  • Continuous delivery and deployment using DevOps, CI/CD pipelines, and new concepts such as AIOps and Site Reliability Engineering

The book contains best practices for the major providers, discusses common pitfalls and how to avoid them, and gives recommendations for methodologies and tools. Of course, a book about multi-cloud could never be complete, but this book will provide you with good guidelines to get started with architecting for multi-cloud.

Previous Section
Next Section