IT Modernisation
Download
Report
Transcript IT Modernisation
IT Modernisation
Bart Van Miert
Principal Project Manager – NCI Agency
IT Modernisation Vision
• IT Modernisation will fundamentally change the
way the NCI Agency provides IT services:
– Centralisation of Management
– Centralisation of IT Infrastructure
– Standardised services
• Enable provision of services IAW Standard SLAs
– Defined quality levels
– Measureable
– Cost effective
NATO UNCLASSIFIED
2
Drivers for IT Modernisation
• Military Manpower projections indicate it will become
increasingly difficult to provide services:
– NCI Agency must change how services are provided in
order to cope
• Equipment is aging and needs to be replaced; 65%
will be past normal end of life within two years:
– We need to be smart how we provide services, not simply
replace equipment
• A centralised approach can bring significant benefits
and cost savings:
– Sustainability, DR/BC, reduced IA/CD risk, flexibility.
– Manpower Optimization savings
NATO UNCLASSIFIED
3
IT Modernisation – The Project
Scope
• 2 networks (Operational and Business network)
• Implementation of:
– Modern IT infrastructure
– Client provisioning solution
– IT Service management toolset.
• Migration of services and applications to the new
infrastructure
– Focus on Centralisation in the Data Centres
– Migration of Services to the Business Network
IT Modernisation
IA/CD
NATO HQ
Agencies
NCS
I
User
S
A Applications
M
/
&
C
CES
C
D
I
User
S
A Applications
M
/
&
C
CES
C
D
I
User
S
A Applications
M
/
&
C
CES
C
D
SM&C
Infrastructure
& Core Services
Communications
Layer
NATO UNCLASSIFIED
5
As-Is (Conceptual)
• 30+ data centres/server rooms
Site 1
• 2500+ servers of over 100 different
types, and becoming obsolete
Client Device
Consumer Network
• Multiple operating systems and
multiple versions of each
Data
Centre/Server
Room
Client Device
Site 2
• Application/project specific
resources
– server utilization rates between 9%
and 30 %
– storage loads not centrally managed,
nor centrally controlled
WAN
Consumer Network
Data
Centre/Server
Room
Site N
Data
Centre/Server
Room
• Locally managed
• Three supported domains
– NU
– NR
– NS
Consumer Network
Client Device
21/07/2015
NATO UNCLASSIFIED
6
To-Be (Conceptual)
• Standardised resources
–
–
–
–
–
Data Centres
Local Computing Facilities
Access Gateways
Consumer Networks
Client Devices
• Resource pooling
• Centrally managed
• Two supported domains
– NU/NR
– NS
21/07/2015
NATO UNCLASSIFIED
7
Nodes (enhanced vs. standard)
• Standard node - Minimum footprint to provide
access to the enterprise
–
–
–
–
Core network infrastructure services (DNS/DHCP/AD)
Remote management capabilities
Enterprise network access enhancement
Information assurance and cyber defence components
• Enhance node – additional infrastructure capacity to
support “residual” Legacy applications
– In principle this comprises additional processing and
storage capacity to host these “Legacy” applications
Management of both node types is centralised.
21/07/2015
NATO UNCLASSIFIED
8
ITM – Implementation approach:
• Incremental implementation approach
– Priority to establishment of Data Centres and Sites
with urgent Hardware replacement requirements
– Optimized implementation (Time/Cost)
– Better savings realisation (vs. a per services
approach)
• ITM implementation is proposed in 4 Waves
• Centralisation of services in Data Centres
– Expect up to 80% centralisation of applications by the
end of wave 4.
21/07/2015
NATO UNCLASSIFIED
9
Implementation Plan
Planning
Data Centres (DC):
SHAPE
JFCN
DC:
NATO HQ
Enhanced Nodes (EN):
ACT
MARCOM
LANDCOM
AGS
EN:
JFCB
AIRCOM
JWC
JFTC
EN:
NSPA (1)
NCIA (2)
EN:
NAEW (1)
Standard Nodes (SN):
SN:
JALLC
CAOC U
CAOC T
DACC
SN:
NSB (3)
DCIM (10)
NSPA (2)
SN:
NSTO (2)
Wave I
2014
2015
Wave II
2016
NATO UNCLASSIFIED
Wave III
2017
Wave IV
2018
2019
10
Location selection rational
• Selection of proposed DC locations based on
–
–
–
–
–
Availability of the location (time, cost and capacity)
Investment required to host “enterprise DC”
Geographic location in NATO arena
Physical distance to user population
Alignment with current and planned Communication
capabilities (NGCS and Public internet access
gateways)
– Physical limitation to meet proposed ITM Architecture
(Data Synchronisation distance)
21/07/2015
NATO UNCLASSIFIED
11
10 GbE
Internet GW
> 1000 users
1000 <> 500 users
500 <> 200 users
< 200 users
21/07/2015
NATO UNCLASSIFIED
12
ITM – Implementation work packages
• Overall ITM Scope broken down into 6 work
packages with a value of up to 175M€
– WP1 – Implementation and migration of Back-end
Services
– WP2 – Establish a Framework Contract for the Client
Devices
– WP3 – Expansion of Lago Patria Data Centre for the
Enterprise
– WP4 – Expansion of NHQ Data Centre for the
Enterprise
– WP5 – Provide Consultancy Support to NCI Agency.
– WP6 – Adapt NCIRC FOC
Alignment of the work packages with proposed procurements
21/07/2015
NATO UNCLASSIFIED
13
Work Package 1
• WP 1 - Implementation of Back-end Services
– WP1.1 – Implement Infrastructure and centralisation
of applications (Integrator Role)
– WP1.2 – Establish a Framework Contract for DC and
Nodes equipment
– WP1.3 – Service Management and Control (SMC)
tools and equipment
– WP1.4 – Implement Client provisioning services
– WP1.5 – Implement outsourced print and scan
services
21/07/2015
NATO UNCLASSIFIED
14
Implementation Road Map
Data Centre Framework
Integration
SMC (WP1)
Planning
Client Device Framework (WP2)
Sole Source Lago Patria (WP3)
Sole Source NATO HQ (WP4)
Strategic Consultant (WP5)
NCIRC Adaption (WP6)
Wave I
2014
2015
Wave II
2016
NATO UNCLASSIFIED
Wave III
2017
Wave IV
2018
2019
15
Service Management
• Concept of Service Operations Centres
– Initial Service Operations centre in SHAPE (current
NCI Agency Service Delivery main location)
– Alternate location JFC Brunssum as it already hosts
the Alternate NCC and NCIRC
Service
– Provision of the Service
Desk management tools for the
IaaS capability
Technical
– Framework for integration with communications
and
Management
Control Centreelements
Core and FAS management
(IT Operations)
– Includes enterprise Service Desk
21/07/2015
NATO UNCLASSIFIED
16
ITM Topology
NATIONAL
Restricted
Networks
NGCS - NCI
ITM
NR
One-Way
Secure Diode
NS
Mission
Networks
(DCIS,FMN)
Gateway(s) –
IEG Scenario C
P102 Incr 1
Mail
Notification
NU DMZ’s
PIA
(NU)
Gateway(s)
IEG Scenario B
P102 Incr 2
NGO’s
Emergency
Services
ANWI
Agencies
NS enclaves
NATIONS
Industry
National Secret
Internet
NATO UNCLASSIFIED
17
Key Risks
• Transition – From the old to the new:
– of applications and data to the new infrastructure
– of the users to new ways of working, particularly in regard
to the PBN
– of the NCI Agency internal processes and staffing skills
• Delays – Timescales are very aggressive:
– Obsolescent equipment will be replaced late or will require
additional urgent investments
– Reductions in manpower may compromise service delivery
• Will compromise ability to achieve savings
• Culture – This is a transformation project:
– NCI Agency staff manpower levels
– Users ‘sense of ownership’
21/07/2015
NATO UNCLASSIFIED
18
QUESTIONS?
[email protected]
NATO UNCLASSIFIED
19