Planning key for cloud migration in the financial services industry
More companies are moving data to the cloud to empower a dynamic workforce, improve the reliability of their services, and to gain flexibility in their IT expenditure.
Cloud-based systems are accessible from anywhere, are mostly unaffected by power outages, and are easy to scale. They are also the ideal solution if a large portion of your workforce is working remotely. The cloud can offer an array of business benefits, but it also comes with risks, therefore careful implementation is needed.
“For many companies, the business benefits of cloud migration are self-explanatory. However, if they don't follow a well-planned cloud adoption process, cloud migrations can run into unexpected costs or security compromises,” advises Charl Ueckermann, CEO of AVeS Cyber Security.
The cloud adoption process of assessment, planning, adoption and optimisation highlights inherent risks to consider throughout the cloud migration journey. This process assists organisations in taking a holistic approach, where teams can take on what they can handle while maintaining alignment with the overall business strategy and long-term goals.
“As with all online processes, it is essential to plan for data security concerns. Additionally, the costs of cloud usage can quickly skyrocket if organisations go in blindly. Keep in mind that every online service and feature that is activated bears a cost on cloud platforms,” says Ueckermann, who was recently involved with a significant cloud migration project in the financial services sector.
“In competitive, data-driven industries like financial services, the cloud has a big role to play in optimising business operations. A successful migration can have a significant impact on the business. Still, the challenge is to ensure the realisation of cloud benefits while establishing and maintaining full cost visibility.”
“A great start to cloud migration is to initially conduct a full business readiness assessment, a well-defined future state analysis as well as a business impact analysis. These are all done to understand and address strategic questions, including operational costs, workforce productivity, acceptable downtime and technical infrastructure.
“We look at the current business readiness to see what information is ready for migration and what isn’t fit for the cloud. We also analyse the client’s needs, business objectives, and overall migration goals to ensure the migration would be future-fit,” says Ueckermann.
Before migrating to the cloud, businesses should get a view of their organisation’s current capabilities and future needs. It’s also critical for companies to think about the impact of the changes on their customers and not only on their operations, advises Ueckermann.
“Thorough, upfront assessments provide a foundation for the planning and road-mapping of the migration. Once the assessment phase is complete, a detailed roadmap is constructed to provide a proper solutions framework for cloud migration. A roadmap should be holistic, highlight the business’s strategic cloud goals, and specifically address risk mitigation and cloud cost management initiatives,” says Ueckermann.
“As part of the cloud adoption process, a series of workshops should be hosted to prepare the client’s technical as well as cross-functional teams.”
“Risk management forms a big part of the workshops and involve details around data loss prevention, rights management services, identity, and access management, continuity, and cloud security services,” he says.
When moving data to the cloud, security design is of utmost importance as it lays the foundation on how a business can safeguard itself against unauthorised and malicious access attempts, as well as protect the organisation from inflating cloud usage costs.
“These workshops also address the management of cloud-related costs, where cloud spend limits are discussed and agreed on for different departments in the organisation. From a management accounting perspective, different business areas should be accountable for and manage what they spend. On the same software licence, different budget limits can be set and adjusted.”
After implementing the cloud platform, there are tools available to ensure that companies can manage their cloud spend in real-time, with enough granularity to track usage and costs in every department. Tracking is incredibly useful in managing financial risk in the cloud and gives you full visibility of your cloud spend.
“A costing dashboard is also a great tool for helping the client’s cloud project owner keep track of cloud costs and communicate limits to department heads accordingly. The dashboard helps organisations to monitor, manage and maintain cloud spend and neutralises the financial risks of cloud migrations,” says Ueckermann.
In addition to visibility on cloud spending, it is necessary to implement a monitoring process to review cloud usage. The project team can then monitor whether the business units are using the platforms as designed for. The monitoring process gives a good indication of whether business benefits are delivered swiftly. It enables the organisation to execute the defined roadmap while making changes where necessary and as highlighted by the usage data received.
“After the implementation process, success is determined by the individual users of the system. Effective change management and engaging end-user training are essential components of cloud migration projects,” highlights Ueckermann.
“Companies also don’t have to do everything themselves. By partnering with their cloud security service providers, clients benefit not only from having an implementation partner but also from receiving focused managed services to optimise their cloud usage after project completion. Although the responsibility to check cloud costs lies with the client, managed services can offer institutions peace of mind to operate freely, knowing that a partner is looking after their cloud costs and security measures,” he says.
“This strategic approach assists organisations with a less stressful cloud adoption process, leading to fewer unexpected costs and more realised benefits,” he concludes.
AVeS Cyber Security
AVeS Cyber Security is a specialist in industry-specific IT Governance & Architectural services, combining expert knowledge and services with leading technology products to provide comprehensive Information Security and Advanced IT Infrastructure solutions. Over the past 22-years, AVeS Cyber Security has strategically honed its solutions and services to help Southern African businesses future-proof their IT environments against the continually evolving threat landscape while achieving their digital transformation aspirations. The company offers a leading portfolio of professional services, products, and training in security, infrastructure, and governance solutions. In 2019 and 2020, the company won six awards from some of the world’s top technology vendors, indicating competency, strength, innovation and robustness in an industry that is fast growing in complexity due to evolving challenges, such as ransomware, advanced targeted attacks and the Internet of Things. The awards include Kaspersky's Africa Partner of the Year 2019 and 2020, Kaspersky's Top META Learning Partner 2020, ESET's Regional SMB Sales Champion 2019, ESET's Product Champion 2019, and Symantec's SMB Partner of the Year 2019. AVeS Cyber Security also received four new partner statuses, namely, Microsoft Gold Datacentre Partner, DellEMC Gold Partner, Veeam Silver partner and Sophos Platinum partner.