One of the core tenents of DevOps is ‘Automate everything’. However, automation comes with a cost. The cost of maintaining a automated script can turn out to be costlier than a manual process.

We approach cloud automation in a holistic way goes beyond DevOps. Our methodology includes thorough research into the needs of our customers and analysis/revision of organization-wide practices on configuration management, tagging, cost control, CI/CD, and reducing cloud waste.

Our Cloud Service Management (CSM) framework is modeled on Professional Services Automation framework for IaaS, PaaS, and SaaS service providers. The CSM framework will address SLAs, legal liabilities and monitoring components. The major areas of importance in a CSM framework are:

Provisioning: SLA definition, cost analysis and capacity distribution

Change Management: adding, replacing and managing components and contracts

Incident Management: Integrated monitoring and  helpdesk
Long term problem management: includes issue reoccurrence, capacity planning

Cloud Security is an essential ingredient of a successful cloud strategy. According to a report by (ISC)² more than 90% of the organizations are concerned about cloud security. Cloud Security goes beyond migrating existing Identity and Access Management (IAM) systems to cloud. Cloud Security & Governance requires a comprehensive overview of security policies of an organization including physical security, thread detection systems, pen testing, chaos engineering, firewalls and encryption.

Apart from the well-documented security risks outlined by OWASP such as SQL injection, DDoS etc., migrating to cloud comes with its own set of challenges including loss of visibility, compliance management, contractual breaches, misconfiguration/misunderstanding of responsibilities (ala AWS Shared Responsibility Model)