So, I was at Pulse this year and was the source of a pretty constant ridicule for carrying around what felt like a fifty pound laptop bag.It was horrible, and inconvenient, and not even effective.I had hard copies of schedules that were out of date about 30 seconds after I clicked print.By the end of the conference I had calluses on my fingers and I couldn’t walk more than about ten steps without having to change hands.It was really a constant reminder that I need to go to the gym more.
Anyway, interestingly enough, most vendors in the endpoint security space have basically adopted this same approach in designing their technology.Incoming attacks get blocked by signatures, and in order to keep you “prepared,” some companies just create and update these huge signature files, shoot them across the network, fold their hands and hope they get properly installed, and then get right back to work because the files they just sent are more or less immediately out of date.I can tell you from experience that lugging around a bulky bag of incomplete, outdated information is no way to do your job.It’s also no way to keep your employees, and by extension, your company, ahead of threats.
What companies need to do is focus on what a defense-in-depth of the endpoint would really look like.It means you need a lot of things.You need to have antivirus and firewall protection.You need a patch process that actually works.You need centralized policy management that is easily enforceable.And, of course, you need all of this in real-time.Until recently, that also meant you needed a lot of aspirin.
With its acquisition of BigFix last July, IBM basically invested in the convergence of security and systems management, two pieces of the operational infrastructure that will continue to become more intertwined.You can’t just write the policy, or obtain the patch, you also need to be confident that these changes and updates are continually being enforced at every single endpoint.Try automatically applying patches to computers that aren’t turned on and you’ll pretty quickly understand why convergence is so important.
Up until this week there were four offerings that were part of the Tivoli Endpoint Manager suite of products, all of which are managed under the same roof.We have solutions for lifecycle management, security and compliance, power management and patch management.This week, we were pleased to announce Tivoli Endpoint Manager for Core Protection, a solution designed to add another layer of depth to your endpoint security posture.Tivoli Endpoint Manager for Core Protection is the result of the relationship between IBM and Trend Micro, and offers the real-time, lightweight threat protection that other endpoint security solutions can’t really compete with.
I spoke earlier about how other vendors were sending these huge signature files across their network, files that were outdated before you even figured out how to install them on your PC.Tivoli Endpoint Manager for Core Protection is different because while it does employ the use of some signature files, it also leverages the cloud to reduce the amount of information that needs to be sent across the network and also provides the real-time protection that static signature files cannot.As the cloud is updated with the latest threat information, so too are all of the endpoints that are in conversation with that cloud.
This has proven to be extremely effective. In a recent third party test, the Trend Micro technology blocked 100% of all incoming malware (the second place competitive product came in at 77%) by taking a multi-layer approach. Nearly all (97.5%) of the malware was detected and blocked in the first layer (URL reputation) and the remaining pieces of malware were blocked in the two subsequent layers of defense. Now, here's where it gets even more impressive. An hour after the original test, they again tested just the malware that got through URL reputation, but this time it did not get through even that first layer of defense. This is protective technology that is updating and hardening its defenses as new threats come in.
I don't think I really need to explain the importance of endpoint security to anyone reading this. We all have different things at stake, whether it's your back accounts, your music collection, confidential information for work or even just a photo album. What I can say is that 77% isn't good enough when it comes to protecting any of those things.
The strength of Tivoli Endpoint Manager is that it combines first-rate security with the systems management capabilities needed to ensure that protection is deployed across the entire infrastructure. When it comes to endpoint management, it's about no longer looking at technology in silos, it's about understanding why and how we can integrate different complementary offerings. Tivoli Endpoint Manager is built on that philosophy.
For more information about Tivoli Endpoint Manager, please visit:
When IBM first kicked off the Dynamic Infrastructure announcement at Pulse 2009 conference, we heard some rumblings on whether Dynamic Infrastructure was just another executive buzzword or if there was real meat behind "the concept."
Doug McClure summarized the feeling well in his blog: “While this is great for executive level folks, I think we needed to drive this message into consumable and actionable things that lower level technical attendees could take back to their companies. They may be the ones who need to execute and show how previous or planned investments could help their company become smarter and more dynamic.”
After IBM’s announcement yesterday on new Dynamic Infrastructure offerings, critics will be hard-pressed to wonder whether Dynamic Infrastructure is actionable.Not only did IBM announce new products and services in the areas of Information Infrastructure, Virtualization, Service Management, and Energy Efficiency, but they also demonstrated how these solutions are helping three of our clients--the Taiwan High Speed Rail Corporation, Tricon Geophysics and the United States Bowling Congress--build new, more dynamic infrastructures to help reduce costs, improve service and manage risk.
A key piece of the announcement is the IBM Service Management Center for Cloud Computing, which now includes new IBM Tivoli Identity and Access Assurance, IBM Tivoli Data and Application Security, and IBM Tivoli Security Management for z/OS, for Cloud environments. I don’t know about you, but all that’s more meat than this vegetarian can handle. :)
To continue driving home the Dynamic Infrastructure success, IBM is sponsoring a variety of events for the public to learn more. Register for a free, local Pulse Comes to You event to see how Service Management is a key component for enabling a DyanmicInfrastructure for a Smarter Planet.
When you think of the levels of innovation you are required to give to the business, cloud is the right technology to do it.
Since the Cloud lives on the Internet, which is built upon the "bricks" of open standards, it should not surprise you that there is a drive to an ubiquitous Infrastructure as a Service (IaaS) open source cloud computing platform for public and private clouds.
In October 2011, my neighbors to the South at Rackspace founded the OpenStack Foundation.
Today, IBM is announcing that we will be joining the OpenStack Foundation as Platinum-level sponsors along with AT&T, Canonical, HP, Nebula, Rackspace, Red Hat and SUSE.
The OpenStack Foundation has a great blog post that covers what's happening today and what the next steps will be.
This is the start of a very exciting future for cloud computing and of course there will be more news coming from the OpenStack Foundation in the weeks to come at events like the OpenStack Design Summit & Conference in San Francisco on April 16-20 and IBM Impact in Las Vegas on April 29 - May 4.
What is IBM Tivoli Software? We know you want the short version. Steven Wright of Tivoli Software breaks it all down for us in less than 7 minutes on a white grease board. Check it out while you have your morning coffee, afternoon tea, or while you get your miles in on the treadmill or trail with your smart phone. Then visit ibm.com/software/tivoli for more details on how IBM Tivoli Software can help you run a smarter business. .
Over 51 million tourists travel to Orlando, Florida every year, but only the cool ones go to attend IBM Edge and IBM Innovate.
As I type this, so many of our customers, partners and my colleagues are in the "brutal" 88°F* weather learning more about storage and software & system innovation.
Since much of my focus is around product announcements, I wanted to point folks to the IBM Tivoli Storage Productivity Center V5.1 announcement that happened yesterday (Announcement Letter 212-189).
For content coming from the conference, a number of the marketing team are on the ground at Edge and tweeting. Be sure to follow Maria, Martha and Branavan (and of course, @ibmstorage) as well as the hashtag #ibmedge.
The Rational team have a number of exciting new announcements around Jazz and they will be talking quite a bit about mobile, cloud, industry solutions and a few other things including DevOps.
For us service management folks, DevOps translates into tangible benefits we can bring back to the business; like fewer errors and faster time to resolving errors if they do occur.
Back at Pulse 2012, we announced, among other things, the Beta for IBM SmartCloud Continuous Delivery (see the blog post and press release).
Along with IBM SmartCloud Control Desk and IBM SmartCloud Provisioning Manager (among others), it's about developers and testers having access to the same tools, data and information that operations uses and leveraging them to fix problems before they occur. And if problems do occur, the linkages with tools like Rational Application Developer and Rational Performance Tester allow the developers and testers to quickly resolve these issues as everyone and everything is connected.
As stated before, fewer errors and faster time to resolving errors if they do occur. This translates into using time to be productive and being innovative. Innovation is what provides value back to the business.
A bit different from yesterday, I spent the morning helping our customers register for industry round tables and then followed that up with showing customers the new Integrated Service Management Simulator Game in the Expo Center.
Tuesday, as you know, is when IBM makes product announcements and this Tuesday was no different.
Jamie Thomas talked about a number of announcements (including the ones below) in her portion of the general session (which can be found on the Livestream)
I would call your attention to the following two Announcement Letters that were released today:
The adoption of cloud and virtualization technologies by the market is increasing.
For these technologies to be meaningful to our customers, it is on us to ensure that we can provide the levels of Visibility, Control and Automation (TM) they require to match their Integrated Service Management best practice. (and that's just what we're doing)
Press Release Round Up
The press team put out some great articles that I'd also like to call your attention to:
Some great coverage of the successful client relationships we've built with our industry solutions. They are worth a read (especially the Cities one).
I'd also point you to the excellent blog post Christina wrote about Intelligent Metering Network Management
Speaking of Coverage
As a sequel to yesterday's general session visual note-taking adventure, I present to you my notes from day 2 (Flickr link:
What's Next For Noah?
Tomorrow, I'll be talking to Scott Laningham on the Livestream at 12:40pm PST about Integrated Service Management and then closing out the conference and staffing the Simulator Game in the Expo Center.
If you want, stop by and say hello. I'll show you the demo and can also talk to you about anything Integrated Service Management -related.
Just in case you weren't sold on IBM's commitment to better serve and team with smaller enterprises, here is some hard hitting evidence for you. IBM recently launched the Small and Midsized Business (SMB) web portal around Cloud & Smarter Infrastructure as a clear illustration of how the Tivoli, Maximo, TRIRIGA and Netcool solutions are geared for the SMB space across Cloud, Mobility, Asset Management and Storage.
We fully recognize that SMB customers have different sets of needs and IT requirements than our large enterprise customers . And just to be clear, these are NOT watered-down, leftover, or recycled enterprise level products. Instead, the portal features a portfolio of easy to deploy, rapid-value solutions that are appropriately sized and priced for SMB's.
For example, our new cloud provisioning product includes a "try & buy" feature that allows you to quickly download a free trial. SmartCloud Provisioning delivers computer infrastructure as a service by providing on-demand access to virtual machines and storage in the network. The trial is fully functional for 90 days at no charge, and at the end of the trial period, you can purchase the products directly from the site with just a few clicks.
And if you are interested in interacting with a community for this product, you can visit our developerWorks site for discussion forum for the IBM SmartCloud Provisioning Open Beta Program
The new SMB portal also links to a free trial download of Tivoli Endpoint Manager, so you can experience its capabilities and benefits firsthand. This trial has all features enabled and is good for an evaluation period of 30 days.
The following article was written by Cameron Allen, Pierre Coyne and Beth Sarnie and is the second in our OSLC series.
In fact, if you were at Pulse 2012...you heard how IBM Watson will be used to help doctors diagnose medical conditions and improve patient care at WellPoint.
For those of you, like myself, that don’t have a Watson-like recollection, here’s a quick flashback detailing a millisecond in Watson's brain on a sample patient:
Watson is given specific information on a patient’s symptoms, and makes a preliminary diagnosis of the flu as the most likely illness.
Based on the unique patient's name, Watson looks up records of the patient's history for the past few years, providing new insights that point to the better possible cause of, for example, a Urinary Tract Infection.
Based on the patient's family connections, Watson is able to use the family history to derive that the mostly likely cause is now diabetes.
And finally, Watson is able to access a patient’s latest tests to derive a final diagnosis.
If you're in the business of IT, this may sound a lot like incident management. And as any level 1 support person can attest, diagnosing the root cause of an incident is much like diagnosing a patient's condition. You need information from multiple sources (e.g. service desk, license, CMDB, monitoring, and asset management systems), but more importantly, it has to be in context, up to date, and delivered in a timely basis to make an accurate diagnosis of the root cause.
The problem has always been that an incident manager, like a doctor, has to jump between tools, entering requests in each system for the right information...and that is time consuming. In some cases, information isn't readily available and must be requested from other sources, not under their direct control.
One of the ways Watson is able to be such a great diagnostician (and incident manager) is through "linked data," which allows it to seek out and find related information on the patient from multiple sources in a fraction of a second to facilitate faster, more accurate patient diagnosis.
Until now, an incident manager did not have this same luxury.
That's where Jazz for Service Management comes in. Jazz is IBM's realtime platform for integrating management across multivendor tools, and across service lifecycle processes and functions. Like Watson, Jazz for service management uses principles of linked data, along with community standards (including OSLC) to support Watson-like service management decisions, regardless of what vendor tools you have in place.
As the Western Hemisphere was slumbering, news from Singapore was lighting up Twitter as our senior executives took the stage at the IBM InterConnect conference to talk about some of the latest announcements from the IBM corporation on innovation and a Smarter Planet.
Much of the reporting has been done on Twitter (hashtag #IBMInterConnect) and these keynotes are available on the LiveStream including an amazing speech by Dr. Michio Kaku about the future of computers ("everywhere and nowhere").*
These are supplemented by interviews conducted by Todd "Turbo Todd" Watson, also on the LiveStream.
Since this event was focused on a Smarter Planet (the entire IBM portfolio), we covered a lot of ground. Big Data. Social. Mobility. And, of course, cloud.
For SmartCloud Foundation, the Tivoli organization has a number of exciting solutions that are designed to help you increase the levels of innovation you provide to your clients.
For this blog, I thought it'd be good to focus on three of the new solutions you might not have seen before that are going to help you in building out your private cloud.
IBM SmartCloud Cost Management is one of the key components in transforming IT from a "cost center" to an innovation center by providing levels of visibility, and transparency, to the IT costs associated with your cloud. Measure, analyze, report, and invoice the utilization and costs of physical, virtualized, and cloud computing resources, storage and network resources, applications, and other non-IT cost drivers.
IBM SmartCloud Patch Management combines the benefits of two solutions, IBM Endpoint Manager for Patch Management and IBM SmartCloud Provisioning, to provide an effective entry point that delivers lower costs and improves the visibility and control of physical, virtual, and cloud environments.
Finally, the IBM SmartCloud Virtual Storage Center is a solution that you might have seen us talk about at Pulse 2012 and it's now an exciting addition to the portfolio. This solution helps IT storage managers migrate to an agile cloud-based storage environment and manage it effectively without having to replace existing storage systems. If you're looking to increase your storage efficiency in cloud, but don't have the checkbook to do a "rip and replace" of your entire infrastructure, you need to be looking at this solution.
There's more going on in Singapore over the next two days, and more discussion of SmartCloud Foundation and IBM Smarter Planet. Stay tuned to Twitter and the LiveStream and feel free to post comments below.
* I have to confess that this blog was delayed because I got sucked into watching the keynotes.
The following article was written by Cameron Allen, Pierre Coyne and Beth Sarnie and is the second in our OSLC series.
In non-acronym speak, what I'm saying is that the future of service management has arrived in the form of Open Services for Lifecycle Collaboration.
But, what is OSLC and what does it have to do with you?
If you are a user of service management tools of any kind, or rely on information from tools to do your job, then you probably know that finding the right information is half the battle, and getting realtime access to that information when it is not under your direct control can feel next to impossible.
OSLC means you can now leverage the simplicity and ease of web links to both find and share information across your management tools (be they IBM, or any vendor tools).
Just as web pages can be linked on the Internet, data can be linked together from one application to another – creating an application ecosystem where applications don't care what vendor they're from. They look up who has the data in a directory, and jump right to it.
OSLC is not something new, and Tivoli is not the first to adopt it for integration. If you're an IBM Rational user, you may already be a believer. IBM Rational, its users, and an extensive ecosystem of partners have been using OSLC to successfully interconnect the application lifecycle for years.
In fact, Rational Jazz is the realization of OSLC community specifications and shared services in an open platform that anyone can use to interconnect the application lifecycle. Rational just delivered their 4th incarnation of the integrated product offering called Collaborative Lifecycle Management based on Jazz.
Tivoli is now leveraging these same principles to help break down silos of information across the end-to-end service lifecycle. That means expanding the notions behind Jazz from service design and development to now include service delivery and management. We call this Jazz for Service Management.
Take for example, problem management. In order to diagnose and resolve a given trouble ticket, the problem information must be gathered and aggregated from multiple sources. We may need information pertaining to the application topology, the health of a system within that topology, outages or events that may be affecting the application, the CPU utilization, the versions and configurations of the hardware and software that this application is dependent upon. I could go on...
The problem is that all of this information lives in different places. You can either call around to the various owners of that information, or you pay a business partner to learn the API of the tool in order to get to the data, or you can have a highly skilled, in-house resource write the integration. These options require extensive expertise in vendor-specific APIs and lots of maintenance to keep them current.
OSLC utilizes community defined specifications for sharing and linking data applied to specific service management scenarios so that in a critical outage scenario, all relevant information relating to that outage can be accessed in real time from any number of sources, displayed in the context of that problem, in a single integrated view, with related actions that can be taken.
The difference is simplicity. You might be able to do this this now with a lot of experts and time but OSLC delivers simplicity.
And, most importantly, because OSLC uses community specifications for service management scenarios, integrations can be built once and applied across multiple 'related' OSLC-enabled tools. "Write-once, Apply-many."
For more information, listen to this podcast on the Tivoli User Community. This podcast provides a deeper insight into the next generation of service management built using linked data.
Also, at Pulse 2012 (video link), developerWorks' Scott Laningham is joined by Don Cronin, program director, Tivoli Technical Strategy and Architecture; and Mike Kaczmarski, IBM Fellow and Tivoli Chief Integration Architect to discuss the Magic of linked data.
Leave your comments on how you are using OSLC in your organization below and don't forget to follow us on Twitter @servicemgmt and be sure to bookmark our OSLC story on Storify.
The following article was written with significant contributions from Cameron Allen, Pierre Coyne and Beth Sarnie
Question of the day: why is IT agility so darn elusive?
Follow up question: after spending multiple millions in technology to improve service delivery, quality, and productivity, why do so many line of business executives perceive that IT is still not moving "fast enough?"
Silo'd information presents a big speedbump to agility. According to the 2012 IBM study of CEOs, high performing organizations are able to access data 108% more, draw insights from that data 110% more, and act on that data 86% more, than their underperforming peers.
Which brings us back to the specific problem: Information exists, but it is not shared. Information remains trapped in silo'd tools and departmental applications. It's not only not moving "fast enough," it's not moving at all.
If you agree with ITIL and related methodologies, agility is directly linked to your IT processes. So while we can improve process methodology and connections across roles and functions, and within specific technology siloes with tools, if the data and resources can not be freely shared across process-enabling tools, then its all for not.
Going one level deeper, what is the cause of this 'information black hole', where data enters tools, and is never seen again? Your reality is that you probably rely on a mix of multi-vendor tools. Those vendor tools rely on proprietary APIs for integration and trying to make tools with different APIs communicate requires the IT equivalent of a team of United Nations translators, where each is an expert in their applications main language (API). Once successful, the herculean effort can create a constant maintenance cost, and might not work well in the end - things will be lost in translation. That said, even single vendor tool suites are notoriously difficult to integrate.
So what can be done?
Stop for a moment and consider the best example that demonstrates simplicity of integration on a massive scale. It's the Internet. With the Internet, you can get information from millions of different web sites and all you need is a browser.
So for argument's sake, if tools are the equivalent of web sites, then all we need are links to connect two tools. We can take that one step further, borrowing principles from social networks like LinkedIn or IBM Connections, where we can search for one person, and see relationships to other people (making searching for data across tools much easier).
That in essence is OSLC (Open Services for Lifecycle Collaboration): A set of open, community agreed upon specifications for linking tools using web technology. (And before you ask, no. It's not a standard, because apparently standards alone have not done the job)
Data from any vendor tool is registered in a directory like a search engine, where other tools can find it, its relationship to other data, and access it via simple web link technology. Not similar to the Internet, but exactly like the Internet.
What that means is you can easily interconnect tools and processes. You can even replace tools with competitive tools - eliminating vendor lock in. It also means you can re-purpose one integration across a series of 'like' tools. "Write once, reuse-many" inherently applies here. All of this translates into simpler and faster access to information by people and tools, better analytics leading to better decisions, and better automation of workflow.
It's not hardware. It's not software. It's a new category of solution; expert integrated systems.
It's one of the "game changer" solutions that our customers have come to expect from IBM (and that our partners love). It's solving very specific problems that customers have on their road to innovation.
One of those problems is built-in expertise. This is a hardware and software solution that is integrated at levels you've not seen before on a solution; giving customers and partners a simplified user experience for implementation and maangement.
IBM SmartCloud & Tivoli
To that point, you'll notice IBM PureSystems has it's own end-to-end management capabilities specific to the solution.
It does. But, for broader management challenges, IBM SmartCloud and Tivoli software will extend the investment in that IBM PureSystems solution by providing Visibility. Control. Automation(tm) across the entire IT infrastructure.
Together with IBM SmartCloud and Tivoli software, IBM PureSystems will push customers to higher levels of efficiency with their service management practice.
As you talk to your IBM sales rep or your business partner, ask them about IBM SmartCloud & Tivoli software with IBM PureSystems for your entire infrastructure and service management.
As you know, the team held a Cloud Service Management Simulator Workshop at Pulse 2012 and I was in the room for a portion of the session (look for me in the background at 1:03) and I know that the attendees had their eyes opened.
The team cut together a pretty cool trailer to give you an idea of what goes on at one of these simulator sessions.
If it looks like chaos, that's because there is a good bit of chaos in the process of role-playing the real-world interaction between IT and business when they are not aligned properly.
The goal is to keep the company profitable. That lasts for about 3 minutes...
But here's the thing. As the workshop progresses, the transformation occurs and balance is achieved (and money starts to be made).
Every service management practitioner should bring their co-workers to this workshop. It is an experience that will help drive your company towards innovation.
Watch the video to see what I mean, and for more information on the simulator, send an email to tivmktg [at] us [dot] ibm [dot] com.
For those new to the blog, IBM SmartCloud Control Desk was one of the new announcements made at Pulse. It is a service catalog/service desk based on IT Infrastructure Library™ (ITIL™) V3 and ideal for streamlining incident, problem, change, configuration, release, and IT asset management.
This service desk offering will assist customers in process control center for managing change & configuration, assets, incidents/problems, service requests, SW licenses and more.
The announcement letter (212-051) was published on March 13 and we now have a very cool demo that showcases the solution.
David has written about the Cloud Service Management Simulator Workshop in a previous blog and things are heating up as we get closer to Pulse.
In addition to the Sunday workshop we have a few extra seats left on Saturday for business partners and customers who wish to attend. If you are interested, please send an email to email@example.com. Both workshops (Saturday and Sunday) are from 2:00 pm - 5:00 pm.
And for more information, watch developerWorks' Scott Laningham interview Ivor MacFarlane on what to expect in the room.
This year at Pulse, we will be running another Cloud Service Management Simulator Workshop. If you are interested in attending, please send an email to firstname.lastname@example.org
What is it? -The
IBM Cloud Service Management Simulator Workshop is a hands-on,
interactive simulation game which focuses on the challenges and business
value of implementing service management best practices in the context
of a realistic scenario. -During the workshop, you'll use
gaming and role-playing dynamics to mirror the real-world interaction
between IT and the business, from both a strategic and operational
-Over the course of the session, you will
experience a transformation from chaos to order, and learn how the
right balance of speed, accuracy, and prioritization in problem solving
can translate into a superior business outcome.
What's in it for you? -Accelerated
and breakthrough understanding of ITSM and ITIL best practices, which
you can take back to your company to assess how these can contribute to
your organization. -Better understanding of how the effectiveness of IT processes impacts the business.
-A fun interactive experience!
When is it? -Sunday, March 4th, from 2:00pm to 5:00pm, -MGM Grand Hotel, Las Vegas - Room 306 (Level 3 of the hotel conference center)
-We deliberately chose this day and time, as it does NOT conflict with any other sessions.
Today's post comes from Veronica Shelley, Market Manager, IBM Security.
With IBM's October 12th SmartCloud launch, perhaps you're considering cloud computing for your organization. After all, the benefits of cloud computing are well known. Cloud computing is flexible, scalable, and cost-effective, and it's a proven delivery platform for providing business or consumer IT services over the Internet. Cloud computing can help you cut costs and IT complexity, provide new services to customers, and streamline business processes. Cloud computing is gaining in popularity and may be the wave of the future. Yet, many organizations hesitate to get started due to security concerns and confusion over how to get started.
Perceived risk versus actual risk
Cloud computing may seem new, but the fact is companies have been outsourcing services and technology for years. Providers already deliver hosted technology offerings that are located off-site with client access via the Internet. This is a common scenario for services such as remote storage or hosted email and other software as a service (SaaS) solutions. And just because companies may give up some control to the provider when they move to a cloud-based environment (just as they give up some control in any outsourced arrangement), it doesn't mean they have to compromise on security. By asking the right questions and adequate preparation, companies can build a "trust and verify" relationship with the cloud provider they are working with.
Questions to ask to ensure cloud security
It's important to remember that the same factors apply to ensuring security whether it is cloud-based or within a traditional IT infrastructure. The key difference in the cloud model is that it includes external elements, and those elements will be managed by the cloud service provider. This means companies need to understand the environment beyond their own data center and consider how it impacts the organization from a security standpoint. To help ensure security and peace of mind, as well as a good working relationship with the cloud provider, the client company should always identify and prioritize cloud-specific security risks beforehand. Often, companies will find they have the same amount of control, if not more, with a cloud service.
There are specific tactics an organization can use to enhance cloud security. For identity and access management issues, companies need to control passwords, support privileged users and enable role-based access to these cloud services. With data protection, a key concern is knowing whether or not a company's hosted data is secure, especially if data from rival companies is also being stored on the provider's cloud service. Companies should also ensure the cloud provider is deploying antivirus software on all supported systems that could be exposed to attacks, and ensuring that selected programs can identify and protect against malicious software or processes. From an auditing and monitoring perspective, companies need to determine how the cloud provider is testing and monitoring the infrastructure to meet legal and regulatory requirements.
Reaping the benefits of cloud
Organizations interested in reaping the benefits of cloud can best begin by understanding the security ramifications of a cloud deployment to their business, keeping in mind they can start small by deploying cloud in low-risk workload areas like email services. This easing-in process gives organizations valuable time to become familiar with cloud on a scale that's simpler to grasp and doesn't put them at increased security risk. And as familiarity of cloud and trust in the provider grows over time, companies can expand their use of cloud computing into other areas of business. By following this gradual path, companies can start enjoying the benefits of cloud in a way that's safe and secure.
Today, IBM has a number of exciting announcements around SmartCloud. It's such a big announcement that we might have to turn it into a national holiday (which wouldn't be cool for the one dude waiting by the mailboxes for his copy of Zookeeper on BluRay).
Why Cloud? Why Now?
When we listen to customers across industries, we hear them tell us about the bold moves they must make to stay ahead of their competition. They tell us about how they need to quickly and efficiently provide new and innovative services to their customers.
Speed to market. Efficiency. Reducing costs.
These are their watch words and they look at cloud computing as a technology that offers these advantages.
That said, there's also a requirement to ensure the same levels of governance they currently have set in place. They also want to ensure that they are reducing (not increasing) their level of risk. And, of course, it has to be done securely.
Can all of this be done with cloud computing?
I would not joke about delaying that dude's copy of Zookeeper if it wasn't.
In all seriousness, yes it can and IBM has been helping customers do this for a while now. We've been successful with a large number of customers already and these new announcements build upon our previous success and really enforce our message: "Rethink IT. Reinvent Business."
IBM offers clients the freedom of choice to find solutions that meet their business requirements ranging from a portfolio of cloud solutions targeted directly at the enterprise to a choice of delivery models (public, private and hybrid) as well as expertise and service management capabilities.
There are a number of announcements in this launch across every brand in IBM (all of which are on the website).
For this blog post, I'm going to focus on IBM SmartCloud Foundation.
IBM SmartCloud Foundation
There's a full press release on this, but basically the SmartCloud Foundation family of private cloud solutions help companies quickly design and deploy private cloud environments with a new level of control over cloud service delivery and management.
As organizations take the next step beyond virtualized data center and begin to expand their cloud environments, they are concerned with managing what has become known as "image sprawl."
The SmartCloud Foundation portfolio contains these offerings:
A new cloud ‘starter kit’ - IBM SmartCloud Entry is prepackaged, private-cloud software that provides simplified cloud administration, standardization of virtual machines and improved operations productivity with an easy-to-use, self-service interface (highly optimized for IBM Power and System x hardware).
A new powerful provisioning engine and image management system – At the heart of cloud computing is the ability to dynamically create or "provision" virtual machines. Called IBM SmartCloud Provisioning, the software can create hundreds of virtual machines in less than a minutes and scale to more than 4,000 virtual machines in less than an hour.
New cloud-based monitoring software – IBM has applied its industry-leading monitoring expertise to create cloud-specific software called IBM SmartCloud Monitoring. It provides greater visibility into the performance of virtual and physical environments: storage, network and server resources.
While preventing security breaches is paramount, security administrators are frequently bogged down with tedious, time-consuming, complex day-to-day tasks that divert their attention from security issues.These time-consuming tasks can be reduced by improving security administration processes and automating audit documentation, allowing administrators to focus on innovative extensions to their business applications in order to maximize investments.
Join us for this webcast on July 14th to learn about the new capabilities in Security zSecure suite, Security Key Lifecycle Manager, Tivoli Federated Identity Manager, Tivoli Security Information and Event Manager, and other security products that enhance cloud security on the mainframe.
In this session, you’ll learn how Tivoli Security Management for zEnterprise can help:
·Reduce the cost of administrating security on the mainframe by reducing complexity and using fewer staff resources
·Automate security policy enforcement to implement best practices and compliance requirements
·Analyze data to detect and respond rapidly to the large volume of security events and threats both internal and external
·Proactively handle events with automated closed-loop remediation that closes exposures
·Protect sensitive data and simplify the lifecycle management of encryption keys
·Consolidated cloud security management for zEnterprise