Migrating Critical Applications to the Cloud: Google Cloud Domain and Project Structure Recommendations

Migrate Critical Applications to the Cloud: Google Cloud Domain and Project Structure Recommendations

Question

JencoMart is a global retailer with over 10,000 stores in 16 countries.

The stores carry a range of goods, such as groceries, tires, and jewelry.

One of the company's core values is excellent customer service.

In addition, they recently introduced an environmental policy to reduce their carbon output by 50% over the next 5 years.

Company Background - JencoMart started as a general store in 1931, and has grown into one of the world's leading brands, known for great value and customer service.

Over time, the company transitioned from only physical stores to a stores and online hybrid model, with 25% of sales online.

Currently, JencoMart has little presence in Asia, but considers that market key for future growth.

Solution Concept - JencoMart wants to migrate several critical applications to the cloud but has not completed a technical review to determine their suitability for the cloud and the engineering required for migration.

They currently host all of these applications on infrastructure that is at its end of life and is no longer supported.

Existing Technical Environment - JencoMart hosts all of its applications in 4 data centers: 3 in North American and 1 in Europe; most applications are dual-homed.

JencoMart understands the dependencies and resource usage metrics of their on-premises architecture.

Application: Customer loyalty portal LAMP (Linux, Apache, MySQL and PHP) application served from the two JencoMart-owned U.S.

data centers.

Database -Oracle Database stores user profiles - 20 TB - Complex table structure - Well maintained, clean data - Strong backup strategyPostgreSQL database stores user credentials - Single-homed in US West - No redundancy - Backed up every 12 hours - 100% uptime service level agreement (SLA) - Authenticates all users Compute -30 machines in US West Coast, each machine has: - Twin, dual core CPUs - 32 GB of RAM - Twin 250 GB HDD (RAID 1)20 machines in US East Coast, each machine has: - Single, dual-core CPU - 24 GB of RAM - Twin 250 GB HDD (RAID 1) Storage -Access to shared 100 TB SAN in each locationTape backup every week Business Requirements -Optimize for capacity during peak periods and value during off-peak periodsGuarantee service availability and supportReduce on-premises footprint and associated financial and environmental impactMove to outsourcing model to avoid large upfront costs associated with infrastructure purchaseExpand services into Asia Technical Requirements -Assess key application for cloud suitabilityModify applications for the cloudMove applications to a new infrastructureLeverage managed services wherever feasibleSunset 20% of capacity in existing data centersDecrease latency in Asia CEO Statement - JencoMart will continue to develop personal relationships with our customers as more people access the web.

The future of our retail business is in the global market and the connection between online and in-store experiences.

As a large, global company, we also have a responsibility to the environment through green initiatives and policies.

CTO Statement - The challenges of operating data centers prevent focus on key technologies critical to our long-term success.

Migrating our data services to a public cloud infrastructure will allow us to focus on big data and machine learning to improve our service to customers.

CFO Statement - What Google domain and project structure should you recommend?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

D.

Note: The principle of least privilege and separation of duties are concepts that, although semantically different, are intrinsically related from the standpoint of security.

The intent behind both is to prevent people from having higher privilege levels than they actually need -> Principle of Least Privilege: Users should only have the least amount of privileges required to perform their job and no more.

This reduces authorization exploitation by limiting access to resources such as targets, jobs, or monitoring templates for which they are not authorized.

-> Separation of Duties: Beyond limiting user privilege level, you also limit user duties, or the specific jobs they can perform.

No user should be given responsibility for more than one related function.

This limits the ability of a user to perform a malicious action and then cover up that action.

https://cloud.google.com/kms/docs/separation-of-duties

Based on the provided information, JencoMart is a global retailer with over 10,000 stores in 16 countries. They are planning to migrate their critical applications to the cloud and reduce their carbon output by 50% over the next 5 years. They currently host all of their applications in 4 data centers, with most applications being dual-homed. They have little presence in Asia but consider that market key for future growth. The customer loyalty portal is a LAMP (Linux, Apache, MySQL and PHP) application served from the two JencoMart-owned U.S. data centers. The Oracle Database stores user profiles - 20 TB, with a complex table structure, well-maintained, clean data, and strong backup strategy. The PostgreSQL database stores user credentials, single-homed in US West, with no redundancy, backed up every 12 hours, and a 100% uptime service level agreement (SLA) that authenticates all users. The compute infrastructure consists of 30 machines in US West Coast, each machine has twin, dual-core CPUs, 32 GB of RAM, and twin 250 GB HDD (RAID 1), and 20 machines in US East Coast, each machine has a single, dual-core CPU, 24 GB of RAM, and twin 250 GB HDD (RAID 1). Access to shared 100 TB SAN in each location is available, and tape backup every week is conducted.

The business requirements are to optimize for capacity during peak periods and value during off-peak periods, guarantee service availability and support, reduce on-premises footprint and associated financial and environmental impact, move to outsourcing model to avoid large upfront costs associated with infrastructure purchase, and expand services into Asia. The technical requirements are to assess key application for cloud suitability, modify applications for the cloud, move applications to a new infrastructure, leverage managed services wherever feasible, sunset 20% of capacity in existing data centers, and decrease latency in Asia. The CEO statement is that JencoMart will continue to develop personal relationships with their customers as more people access the web. The future of their retail business is in the global market and the connection between online and in-store experiences. As a large, global company, they also have a responsibility to the environment through green initiatives and policies. The CTO statement is that the challenges of operating data centers prevent focus on key technologies critical to their long-term success. Migrating their data services to a public cloud infrastructure will allow them to focus on big data and machine learning to improve their service to customers. The CFO statement is not provided in the given information.

The Google domain and project structure that should be recommended to JencoMart for their cloud migration is:

D. Create a single G Suite account to manage users with one project for the development/test/staging environment and one project for the production environment.

The recommended Google domain and project structure should have a single G Suite account to manage users. This will make user management simpler and more efficient. Having one project for the development/test/staging environment and one project for the production environment will provide clear separation between the two environments, making it easier to manage and secure. The development/test/staging environment should be separated from the production environment to ensure that any issues in the development environment do not affect the production environment.

The use of managed services wherever feasible will reduce the complexity of the migration and maintenance of the cloud infrastructure. The assessment of the key application for cloud suitability and the modification of applications for the cloud will ensure that the applications are optimized for the cloud infrastructure. Moving applications to a new infrastructure will provide a clean start for the cloud migration, making it easier to manage and secure. Sunset 20% of capacity in existing data centers will reduce on-premises footprint and associated financial and environmental impact.

The