——————————————————————————————————————
During a recent public sector CIO roundtable presentation and discussion on cloud computing in the public sector, the CIOs focused on the challenges and opportunities of planning, implementing and supporting a cloud computing infrastructure. While the CIOs agreed that there currently is significant hype surrounding cloud concepts, most felt that their agencies will implement a hybrid cloud solution – part private and part public cloud. The CIOs brainstormed and identified key issues, strategies and critical steps that must be adopted to ensure a smooth and successful implementation of cloud computing.
—————————————————————————————————————–
The CIO of a federal agency discussed managing and providing cloud-based shared services to his own agency and other federal and U.S. Department of Defense (DoD) organizations. He noted that his cloud computing approach and solution “is Internet-based, dynamic, scalable, elastic and efficient.”
The CIO further stated that the “key to the cloud computing strategy is the flexibility of our delivery model. Cloud computing can provide a variety of services, including software as a service (SaaS), platform as a Service (PaaS) and infrastructure as a service (IaaS).”
The presentation concluded with a discussion on the hybrid approach many public sector agencies are seeking for their cloud computing needs – a fusion of private and public cloud architecture (to ensure more privacy and security for mission-critical, highly confidential or top-secret applications and data). The CIOs concluded that “cloud computing offers great promise of more agility and flexibility, and likely some better pricing, but IT leaders should first develop a strategic approach that considers the pitfalls of current cloud implementations.”
During the roundtable, the CIOs brainstormed ideas on how to manage the key issues surrounding a transition to cloud computing. They identified three critical areas of focus:
• Security (including data privacy). The security of the cloud environment is only as good as the defense-in-depth of the provider. One CIO stated, “This is the Achilles heel for cloud computing and is the No. 1 concern, especially with sensitive data hosted in a public cloud environment.”
• Application migration road map. Not all applications are designed to run well on a cloud infrastructure. Several CIOs agreed. One said, “We should not overstate or over-commit on expectations and give the impression that this is a slam-dunk solution for capacity on demand.”
• Stakeholder buy-in. Stakeholders see cloud computing as a way to decrease costs. Early success is crucial to the implementation of a cloud computing strategy. One CIO said that the language of technology and the IT lexicon should be considered when speaking to non-IT professionals, saying, “We need to speak in business-speak and ensure that we use consistent definitions and translate any cloud computing benefits to the business.”
CIO CALL TO ACTION
CIOs developing a cloud computing strategy should do the following:
• Ensure that cloud computing service providers meet defined security requirements. Consider separate staging zones for development, test and production; physically separate data on application and data servers, and logically separate them on mainframes (e.g., LPARS).
• Create an application road map for transition to a (full or hybrid) cloud computing environment. Applications that have been virtualized (or can be virtualized) and that are designed for multi-tenancy (sharing of hardware and software) are the easiest to migrate.
• Begin with low-risk, non-mission-critical pilot projects to prove success and cost-effectiveness. Initial projects to consider include portals (especially public information websites and video hosting), new (especially consumer-facing) application testing and collaboration and small-scale software development (all SaaS). Consider selectively sourcing to a provider that demonstrates core competencies, has a client base you can reference and has solid experience.
BOTTOM LINE
Although cloud computing hype is at the Hype Cycle’s Peak of Inflated Expectations, IT leaders should be actively examining its potential in their environment and developing strategies for exploitation, where appropriate. At a minimum, CIOs should be investigating applications they can test, even if they are risk-averse. Success demands that CIOs address the security and application risks and clearly articulate the strategy to business leaders to garner stakeholder support.
Business Impact:
Cloud computing has the potential to provide more elasticity of resources on demand, operations flexibility, cost-efficiency and an improved and timely response to customer demand services—all of which are critical issues in resource-constrained public sector agencies.
Please e-mail the authors with your comments and suggestions. We also invite you to participate in a case study.
Al Passori: al.passori@gartner.com
Elizabeth Holden: elizabeth.holden@gartner.com
Additional Insights:
• “Cloud Computing in Government: Private, Public, Both or None?” Andrea Di Maio, 30 June 2009 (Research)
• “U.S. Federal Government Budget’s Not-So-Consistent Plans for Centralization, Consolidation and Cloud Computing” Massimiliano Claps and Andrea Di Maio, 25 February 2010 (Research)
