Technology

4 big problems of cloud computing

Before taking full advantage of a native cloud approach in terms of scalability, availability, or innovation, a company must address a number of challenges. Here are the four main ones:

1. Solve the problem of lack of skills

A recent study by OutSystems points to a lack of in-house skills and experience as one of the main barriers to cloud adoption.

Cloud architect, tech lead, full stack developer… all of these specialized profiles are currently under pressure in the job market. At the same time, 44% of decision makers surveyed in the study believe that the use of native cloud technologies is a lever for attracting and retaining talent.

However, the deficit should disappear in the coming years. WeScale CTO Pablo Lopez notes the change in the content of the initial training courses. “Engineering schools are starting to look at containerization and Kubernetes technologies. Future promotions will be trained on cloud platforms. »

2. Get rid of technological complexity

Moving from monolithic applications to a granular native cloud approach through a microservices architecture requires a real upskill. “Companies are moving to the cloud through trial and error,” notes Pablo Lopez. “They need to support what already exists while teaching disruptive technologies. »

While cloud providers offer a very rich portfolio with about ten new services every month, IT must constantly monitor and then evaluate the real impact of these technologies in order to maintain the best models in terms of performance, security and cost.

According to the expert, two approaches are possible. “The company can create new operating groups dedicated to their own cloud technologies, which will include the rest of the IT department. At the risk of being looked at with envy. Another possibility: choose a global transformation. “Which involves a significant learning effort, but also more resistance to change. »

To get around this problem, large clients such as Société Générale, EDF, ADP or Engie have created a cloud-based Center of Excellence (CCoE). This core experience aims to hide the complexity of projects by popularizing the subject matter, choosing a limited number of cloud services, and providing trajectories to achieve the Holy Grail of your own cloud. Digital companies have created SRE (Site Reliability Engineering) groups to disseminate best practices.

3. Control operating costs

No need to set up a physical server, IT teams can use the cloud to create a development and testing environment with just a few clicks. This may contribute to overconsumption. “Despite the presence of threshold mechanisms, the ability to predict cloud costs remains difficult,” said Judge Seven Le Mesle, co-founder and president of WeScale. “They depend, among other things, on traffic congestion and rate systems established by providers. »

“CIOs talk more in terms of envelopes than fixed amounts. This worries financial teams that are accustomed to keeping the budget accurate to the euro,” he continues. “With regard to the FinOps approach, we talk a lot about it, but it is still little implemented. Otherwise, there are solutions designed to optimize cloud costs such as NetApp’s CloudCheckr, Nutanix’s Beam, or VMware’s CloudHealth.

4. Understanding New Security Risks

Finally, the cloud approach is leading to a paradigm shift in cybersecurity. “In an on-premise environment, all you have to do is build a wall around your applications that is strong enough to resist attacks,” recalls Pablo Lopez. “Working with the cloud breaks that pattern. By increasing the number of entry points, the attack surface increases. In this way, the native cloud leads to a rethinking of security, in particular by reducing the number of privileged accounts and limiting access to services and data to a strict minimum.

However, “by design” security is not yet natural, notes Seven Le Mesle. “DSI is implementing, among other things, cloud technologies to give more autonomy to its developers. However, they are not always well aware of the security issues and the security teams are overwhelmed. Hackers use, in particular, “exploits” published on code deposit platforms like GitHub.

“A DevSecOps approach should allow everyone to be accountable for security, knowing that it took five years for DevOps to go mainstream. Meanwhile, Séven Le Mesle is celebrating a new role. This is a cyber champion who promotes and disseminates best practices in IT teams.

Back to top button

Adblock Detected

Please consider supporting us by disabling your ad blocker.