ITM for Bucharest CMC Comms

IT Modernisation
Dr Peter Lenk
Chief IT Modernisation Task Force
2 |
NATO UNCLASSIFIED
Agenda
• IT Modernisation (ITM) Vision
• Implementation Details
• Status & Implementation Approach and
Schedule
• Conclusions
3 |
NATO UNCLASSIFIED
VISION
4 |
NATO UNCLASSIFIED
IT Modernisation Vision
IT Modernisation will fundamentally change the
way the NCI Agency provides IT services:
– Centralisation of Management
– Centralisation of IT Infrastructure
– Provision of services IAW Standard SLAs
• Defined quality levels
• Measureable
• Cost effective
5 |
NATO UNCLASSIFIED
Current
Situation
To-Be
Architecture
Local Resources
Local Resources
Local People
Local People
Local Processes
Local Processes
Networking / Processing / Storage / Core Services
People / Processes / Applications
Shared Resources
Wide Area Network
Local Resources
Local People
Local Processes
6 |
NATO UNCLASSIFIED
Local Resources
Local People
Local Processes
Vision: The End State
Three Views
Ops Centre
Service
A
Service
B
One Single
Resource Pool
Service
C
User View
7 |
NATO UNCLASSIFIED
Administrator View
Physical View
Operational Benefits
• Operational effectiveness gains:
–
–
–
–
–
–
Increase the availability of IT services
Enhance the Business Continuity (BC)
Enhance Disaster Recovery (DR) posture
Enhance the Information Security posture
Increase operational agility & flexibility
Universal access to services and data
• Increase mobility and flexible working
– Metered usage - transparency of costs
– Standardisation
• Levels of performance
• Training
• Efficiency gains:
– Reduce the manpower required to provide & maintain services
– Better sustainability
– Reduce life-cycle costs
8 |
NATO UNCLASSIFIED
NCI Agency versus Industry Benchmark
(2012)
1.9% 3.3%
0.1% 3.4%
17.7%
FTEs
12.1%
Building Maintenance
3.7%
37.7%
Power and Cooling
IT Hardware
IT Software
Connectivity
Buildings and facilites
79.8%
Hardware
Energy
BC/DR
29.8%
2.5% 7.0%
Personnel
Comms
NCI Agency
Industry
(Gartner Benchmark)
Assuming 10,000 sq.ft. US data centre
O&M costs are dominated by manpower
9 |
NATO UNCLASSIFIED
Linkage to Manpower Savings
Agency Manpower Projection
3500
3000
2500
2000
1500
1000
500
0
2016
2017
2018
Planning
Total
2014
10 |
CIV
2019
MIL
Data Centre Framework, Integration, SMC (WP1)
Wave II
Wave I
2015
NATO UNCLASSIFIED
2016
2017
Wave III
2018
Wave IV
2019
2020
Implementation Depends on
Three Pillars
PROCESS
PEOPLE
Operational Users
ICT is a people intensive
business. Finding, attracting,
developing and growing the
right talent pool within an
effective organizational
structure is key
Effective organizations
implement and refine business
process to ensure repeatable
operational behaviors. The
development, documentation,
training and implementation of
effective processes is a key
step in maturing the
organization
NCI Agency
87% Savings
11 |
NATO UNCLASSIFIED
TECHNOLOGY
Technology continually offers
new opportunities to improve the
quality of service and support
we deliver to our clients. It is our
responsibility as the “innovator”
to bring new technology to
improve service to NATO
NCI
Agency
13% Savings
IMPLEMENTATION DETAILS
12 |
NATO UNCLASSIFIED
Scope : Geographic
> 1000 users
1000 <> 500 users
500 <> 200 users
< 200 users
13 |
NATO UNCLASSIFIED
10 GbE
Internet GW
> 1000 users
1000 <> 500 users
500 <> 200 users
< 200 users
14 |
NATO UNCLASSIFIED
As-Is (Conceptual)
• 30+ data centres/server rooms
Site 1
• 2500+ servers of over 100
different types, and becoming
obsolete
Client Device
Consumer Network
Data
Centre/Server
Room
Client Device
Site 2
• Multiple operating systems and
multiple versions of each
• Application/project specific
resources
WAN
Consumer Network
Data
Centre/Server
Room
Site N
Data
Centre/Server
Room
Consumer Network
– server utilization rates
between 9% and 30 %
• Locally managed
• Three supported domains
– NU
– NR
Client Device
15 |
NATO UNCLASSIFIED
– NS
To-Be (Conceptual)
• Standardised resources
–
–
–
–
–
Data Centres
Local Computing Facilities
Access Gateways
Consumer Networks
Client Devices
• Resource pooling
• Centrally managed
• Two supported domains
– NU/NR
– NS
16 |
NATO UNCLASSIFIED
Supported domains
IT modernisation will make provisions for two
networks on different security levels as indicated
below
Protected Business Network
• Up to NR
• In support of
– majority of administrative
business processes;
– appropriate operational
processes; and
– processes requiring
interaction over the
Internet.
17 |
NATO UNCLASSIFIED
NATO Secret
Operational Network
• Up to NS
• In support of
– war fighting processes;
– processes requiring higher
level assurance; and
– military and political
communications.
Transition from NATO Secret ON to the Protected
Business Network (PBN)
• Shift of applications from the NATO Secret
Network to the PBN.
• 3 scenarios
– Application remain on NS
– Application moves to PBN
– Application on both networks (different instances)
• Contractor will be required to migrate both the
application and the data (data will be identified
by the purchaser).
18 |
NATO UNCLASSIFIED
Design
Design Objectives
• Follows a services based approach
• Traceable requirements implementation
– Agency provides requirements, constraints
– Contractor proves through the design:
• how the ITM services are implemented and
• how the Purchaser requirements (section 14, SRS) are met
• In a top-down way (architecture design to detailed
implementation design level)
• Support for ITM project life-cycle
19 |
NATO UNCLASSIFIED
Design - Service Based Approach
• 4 Service Design Packages:
–
–
–
–
Enterprise SMC
IaaS
Client Provisioning
Core Enterprise Services (i.e. Exchange/Sharepoint)
• Service Design Package addresses:
– Technical (related to section 14 requirements)
– Process and Organisation (related to section 10
requirements)
20 |
NATO UNCLASSIFIED
Design – Service Based Approach
Enterprise SMC
Core Enterprise
Services
21 |
Client Provisioning
Infrastructure as a Service (IaaS)
NATO UNCLASSIFIED
IaaS – Centralization/Consolidation
Exchange Centralization
A48.F5
D6/Stavanger
D5/Viborg
D4/Uedem
Consolidate
D7/Glons
NATO HQ
D1/NORTHWOOD
D2 Brunssum
C1
Other applicable
Applications:
D15/Norfolk
Mons
C2
Core
C3
D3/Ramstein
C4
- Sharepoint, etc.
D12/Lyon
- Others should be
developed with this in mind
D16/Izmir
Lago Patria
High Availability
Exchange Service
D13/Athens
D10/Oeiras
D8/Poggio Renatico
D9/Retamares
A34.F14-vrn
22 |
NATO UNCLASSIFIED
IaaS – Centralization – non-Consolidation
A48.F5
D6/Stavanger
D5/Viborg
JOIIS
But NO consolidation
D4/Uedem
D7/Glons
NATO HQ
D1/NORTHWOOD
JOIIS
D15/Norfolk
JOIIS
C1
JOIIS
Mons
C2
Core
JOIIS D3/Ramstein
C3
JOIIS
C4
D12/Lyon
JOIIS
JOIIS
Multiple instances
Of Applications
D13/Athens
D8/Poggio Renatico
D9/Retamares
A34.F14-vrn
NATO UNCLASSIFIED
D16/Izmir
Lago Patria
D10/Oeiras
23 |
D2 Brunssum
IaaS – Non Centralization – Consolidation
Local Applications
A48.F5
D6/Stavanger
D5/Viborg
D4/Uedem
D7/Glons
NATO HQ
D2 Brunssum
D1/NORTHWOOD
C1
D15/Norfolk
Mons
L
e
g
a
c
y
C2
Core
C3
D3/Ramstein
Castlegate
C4
D16/Izmir
D12/Lyon
Lago Patria
D13/Athens
D10/Oeiras
D8/Poggio Renatico
D9/Retamares
A34.F14-vrn
24 |
NATO UNCLASSIFIED
Security Aspects
• The implementation will require security
accreditation at enterprise and local site level.
• Security Accreditation efforts are lead by the
purchaser supported by the contractor.
• Security measures are based on the purchaser’s
risk assessment
• Security products need to on the approved
Product list (http://www.ia.nato.int/niapc)
25 |
NATO UNCLASSIFIED
Service
Management
• Concept of Service Operations Centres
– Initial Service Operations centre in SHAPE (current
NCI Agency Service Delivery main location)
– Alternate location JFC Brunssum as it already hosts
Service
the Alternate NCC and
NCIRC
Desk
– Provision of the Service management tools for the
IaaS capability
– Framework for integration
with communications and
Control Centre
(IT Operations)
Core and FAS management
elements
– Includes enterprise Technical
Service Desk
Management
Contractor Support
26 |
NATO UNCLASSIFIED
Contractor support for
Life-Cycle Management
• Proposed Service provisioning model is NATO
Owned – NATO Operated (NONO) with the
exception of outsourced print and scan services
(COCO)
• However the contractor will have life-cycle
support responsibility for the O&M elements (by
site for 5 years):
– 4th level support (HW/SW)
– Service Charges
– Sustainment training
27 |
NATO UNCLASSIFIED
Life-Cycle Management
• Based on Total Cost of Ownership (Living
document – updated during the life-cycle)
• Breaks down into
– Cost of Procurement
– Cost of Implementation
– Cost of Support
Contractor
NCI Agency
– Cost of Operation (Manpower)
• Ceiling of 465 FTE’s
28 |
NATO UNCLASSIFIED
ITM Topology
Mission
Networks
(DCIS,FMN)
NGCS - NCI
ITM
NR
One-Way
Secure Diode
NS
Gateway(s) –
IEG Scenario C
P102 Incr 1
Mail
Notification
NU DMZ’s
PIA
(NU)
Gateway(s)
IEG Scenario B
P102 Incr 2
NGO’s
Emergency
Services
ANWI
Agencies
NS enclaves
NATIONS
Industry
Internet
29 |
NATO UNCLASSIFIED
National Secret
NCI / ITM Overlap (draft)
30 |
NATO UNCLASSIFIED
STATUS & IMPLEMENTATION
APPROACH & SCHEDULE
31 |
NATO UNCLASSIFIED
CP 9C0150 Projects
Serial
0IS03090
Title
Provide NATO Messaging Service
Infrastructure as a Service and IT
0IS03091
Consolidation
0IS03092 Extend, Upgrade and Adapt Fielded Baseline
Provide Unified Communication and
0IS03093
Collaboration Services
0IS03094
Provide Web Enabling Services
0IS03095 Provide Information Administration Services
32 |
0IS03096
0IS03097
0IS03098
0IS03099
0IS03100
PMIC
BiSC PMO
Geographical Information Services
Upgrade Enterprise Directory Service
Upgrade Information Portal Services
0IS03101
Upgrade Bi-SC AIS Service Management
and Control (SM&C) Capability
0IS03102
Information Exchange Services
NATO UNCLASSIFIED
ITM
AGS
Sigonella
CP 9C0150 Authorisation
• CP 9C0150:
–
–
–
–
Submitted by ACT
Endorsed by Military Committee
Endorsed by RPPB
Authorised by the NAC
August 2011
January 2014
14 February 2014
21 March 2014
We are nearing the end of the beginning
33 |
NATO UNCLASSIFIED
Project Authorisation
• TBCE submitted to the NOR on 18 June 2013
• NCI Agency submitted single TBCE for the
scope of ITM, covered in:
– Bi-SC Capability Package 9C0150- Core Information
Services for Command and Control
• P91 – Infrastructure as a Service and IT Consolidation
• P92 – Extend, Upgrade and Adapt Fielded Baseline
• P101 – Upgrade Bi-SC AIS Service Management
and Control (SM&C) Capability
– One project from Alliance Ground Surveillance –
P191
• Extend BiSC AIS Services to the AGS Main Operating Base
34 |
NATO UNCLASSIFIED
ITM – Implementation approach:
• Incremental implementation approach by site
– Priority to establishment of Service Operations
Centre, Data Centres and Sites with urgent Hardware
replacement requirements
– Optimized implementation (Time/Cost)
• Centralisation of services in Data Centres
– Expect up to 80% centralisation of applications by the
end of wave 4.
35 |
NATO UNCLASSIFIED
Implementation Road Map
Data Centre Framework
Integration
SMC (WP1)
Planning
Client Device Framework (WP2)
Sole Source NATO HQ (WP4)
Strategic Consultant (WP5)
NCIRC Adaption (WP6)
Wave II
Wave I
2014
36 |
2015
NATO UNCLASSIFIED
2016
2017
Wave III
2018
Wave IV
2019
2020
36
Project Authorisation
• Undergone two screenings with the WGNTEs
• Estimated Investment Committee authorisation
schedule:
–
–
–
–
–
Introduction
First discussion
1st Stage authorisation
WP1 2nd Stage authorisation
WP1 IFB release
– 3 April 2014
– 8 April 2014
– early May 2014
– end June 2014
– 1 July 2014
• Subject to timely IC authorisations, the NCI
Agency hopes, for WP1 (WP2 slightly later):
– Release IFB
– Contract Award
37 |
NATO UNCLASSIFIED
– by summer 2014; and
– by summer 2015.
Implementation Plan
Security Operation Centre (SOC):
SHAPE (BE)
JFCB (NL)
DC:
NATO HQ (BE)
Planning
Data Centres (DC):
SHAPE (BE)
JFCN (IT)
Enhanced Nodes (EN):
ACT (US)
MARCOM (UK)
LANDCOM (TU)
AGS (IT)
EN:
JFCB (NL)
AIRCOM (DE)
JWC (NO)
JFTC (PL)
EN:
NSPA (LU)
NCIA (3)
(BE, NL, PO)
EN:
NAEW (DE)
Standard Nodes (SN)
SN:
JALLC (PO)
CAOC U (DE)
CAOC T (ES)
DACC (IT)
SN:
NSB (3)
(DE, IT, PL)
DCIM (10)
NSPA (3)
(IT, HU, FR)
SN:
NAEW (4)
NSTO (2)
NDC (IT)
NSO (DE)
Wave II
Wave III
Wave IV
Wave I
2014
38 |
2015
NATO UNCLASSIFIED
2016
2017
2018
2019
2020
ITM
Implementation work packages
• Overall ITM Scope broken down into 5 work
packages
– WP1 – Implementation and migration of Back-end
Services (Approx 115M€)
– WP2 – Establish a Framework Contract for the Client
Devices (Approx 41M€)
– WP4 – Expansion of NHQ Data Centre for the
Enterprise
– WP5 – Provide Consultancy Support to NCI Agency.
– WP6 – Adapt NCIRC FOC
 Alignment of the work packages with proposed procurements
39 |
NATO UNCLASSIFIED
Work Package 1
• WP 1 - Implementation of Back-end Services
– WP1.1 – Implement Infrastructure and centralisation
of applications (Integrator Role)
– WP1.2 – Establish a Framework Contract with the
NCI Agency for DC and Nodes equipment
– WP1.3 – Service Management and Control (SMC)
tools and equipment
– WP1.4 – Implement Client provisioning services
– WP1.5 – Implement outsourced print and scan
services
40 |
NATO UNCLASSIFIED
Implementation Road Map
Data Centre Framework
Integration
SMC (WP1)
Planning
Client Device Framework (WP2)
Sole Source NATO HQ (WP4)
Strategic Consultant (WP5)
NCIRC Adaption (WP6)
Wave II
Wave I
2014
41 |
2015
NATO UNCLASSIFIED
2016
2017
Wave III
2018
Wave IV
2019
2020
41
Wave I – Work Package I –
Fixed Milestones
• Achieve Design Acceptance – EDC + 20 weeks
• Establish SOC & DC’s IOC – EDC + 50 weeks
• Wave I Sites completion – EDC + 78 weeks
NCI Agency welcomes reduced implementation
timeline proposals, but not extensions
42 |
NATO UNCLASSIFIED
CONCLUSIONS
43 |
NATO UNCLASSIFIED
ITM Prime Contractor
• We are looking for a Strong Partner to implement
ITM
– Someone who has implemented similar Projects before
• Similar scale, scope, multiple international sites
• For International, Defence, Government, and/or commercial
organisations with similar complexities
– Implementation experience needed in both:
• Corporation (Prime Contractor, & suppliers), and
• Key individuals (Project Mgr, Tech Lead, Test Dir, Migration Mgr)
– Strong Service Management & Control experience to
provide:
• An integrated system that can provide metering and reporting
linked to agreed SLAs/OLAs
• Implementation of ITIL processes
44 |
NATO UNCLASSIFIED
4 Major Challenges to Industry
• Strike right balance between CAPEX and OPEX
– This is a ‘spend to save’ activity
– Most of our OPEX costs are manpower related
• Abstract, pool and automate
– Create a ‘single pane of glass’
– Hide underlying complexity
– Provide flexibility and efficient management
• Migrate the application space
– Virtualise
– Migrate
– Centralise
• Work with imperfect information
45 |
NATO UNCLASSIFIED
[email protected]
Questions?
46 |
NATO UNCLASSIFIED

Download Report