In: Computer Science
ou are the Senior Systems Administrator for a community based charity. Your charity is involved in locating and providing accommodation, mental health services, training and support services to disadvantaged people in the community. Your charity currently runs a small datacentre that has some 50 x86 64 bit servers running mainly Windows Server 2008 R2 for desktop services, database and file services. It also has about 10 Red Hat Enterprise Linux 5 servers for public facing Web pages, services and support. Your charity is considering joining a community cloud provided by a public cloud vendor in order to provide a number of applications to all 500 support staff and administrative users. The community cloud would also be used to store the charity’s 200TB of data. This data contains a considerable amount of confidential information about the people to whom the charity provides services. A small number of the charity’s applications are mission critical and the data that those applications use is both confidential and time sensitive. The cloud vendor has made a presentation to management that indicates that operational costs will drop dramatically if the cloud model is adopted. You are asked to assess whether this model is in the best interests of the business. 1. Describe the steps that you would take to do a Risk Management assessment of this proposal. 2. Ramgovind, Eloff and Smith proposed in their 2010 paper that an information security analysis should include the requirements of Identification and authorisation, authorisation, confidentiality, Integrity, non-repudiation and availability. Discuss whether these requirements are adequate for a proper security assessment for a proposed move to an IaaS model for the charity. 3. A potential migration to the Cloud raises many issues around Governance. Discuss the governance issues that you see arising from a migration of on-premise servers to an IaaS model. 4. The charity’s board has proposed a move to migrate its servers to an IaaS model. Discuss the methods that you would propose to the board to assess the SLA of the Cloud Provider. 5. The board has decided, as an initial step, to move the office automation and database servers to the AWS cloud in order to begin the migration process, and test their strategy. Describe the steps that you would include in the plan to migrate these services.
looking for more specific answer for question 4 and 5
4. For migration the entire on-premise infrastructure to the cloud, it is better and advisable to go for the AWS general guidelines and documentation page for migration the entire infrastructure to the cloud. Moreover, AWS believes in better customer experience and always tries to honor their SLA. Depending upon the support level you want, you can choose for Developer support, Business level support and Enterprise level support. So for the systems you can easily migrate your datacenter to AWS using EC2 instance with the desired resources. Moreover, high availability and data durability are the important feature provided by AWS.
5. Firstly and most importantly, you can't just migrate your entire infrastructure to cloud without checking compatibility and dependency issues. So, the best thing would be try migrating your dev environment to cloud and check what and all issues you are facing while migration and setting up the infrastructure. Once your dev environment reached a steady state and its functionality is working as expected, then you can move your production environment. For database migration and all, you can check the AWS documentation page for detailed steps of migration.