Cognizant's Cloud360 is OnTarget to deliver ITMaaS market share... 451 Research

IT-management-as-a-service (ITMaaS) is a promising space in the cloud computing market that is estimated to make a significant growth in the coming years. Cognizant is already leveraging Cloud360 to integrate its application and infrastructure services to deliver ITMaaS. What makes Cloud360 a key differentiator for ITMaaS is its ability to integrate application and infrastructure services.

Cloud360 offers an application management module at levels 1 and 2 in the ITIL workflow making the application infrastructure completely traceable. It helps delivering integrated services between the application and integration services, by seamless workflow management between the application and the infrastructure layers, and providing application awareness for a holistic management of environments.

Cloud360 plays a vital role in the integration process whereby cloud can be integrated into the main management stack so that services can be monitored in a non-linear way. It proves useful for customers whether one wants to use public, or private, or on-premises platforms. It acts as the accelerator that can be used for one or multiple VMs. Cognizant offers Cloud360 as a product, providing licenses on a SaaS model.

Cloud360’s key automation capability is facilitated by Cognizant’s Xi Automation layer that abstracts VMs from AWS and VMWare managing the environments through a single console. Deployment and integration are supported by Cognizant’s managed services team or through the self-service portal. Apart from the provisioning, orchestration, monitoring, auto-remediation, metering and chargeback, analytics and advisory services which the customers can access through the self-service portal, what makes the product unique is the customer’s ability to plug in their existing tools with Cloud360’s service management layer. The Service Management layer, coupled with the Operations management layer results in a unique way of delivering ITMaaS.

Both Cognizant and its customers have reaped benefits on account of the real-time dashboard that eliminates dependence on periodic reports for measurement of SLA performance. Compared to some of its competitors, Cloud360’s customer portfolio is increasing steadily indicating its rising popularity with the customers.  Cloud360 is considered to be one of the key determinants of Cognizant’s success in the ITMaaS market.

Get insights into ITMaaS in this news report from 451 Research: “The company's Cloud360 offering appeals to the market because of its 'tenancy agnostic' architecture. Could this be a theme for 2014 ITMaaS market development?” by Katy Ring & William Fellows.

Winner of UP-CON Best Cloud Automation Solution, 2013

The Cloud360 success story continues…

I am happy to announce that Cognizant's Cloud360 has been awarded by UP-CON as the Best Cloud Automation Solution of 2013. Having been selected for this award from among some of the best next-generation cloud computing companies is a very prestigious recognition for us. The cloud automation feature of Cloud360 is creating quite a stir in the cloud world giving us impetus to enhance it even further.

The ability to automate application environments is one of the primary features of Cloud360 that is drawing more and more customers towards it. Its customizable automation policy makes it a unique offering giving customers full control of their environments. Its Instance and Application profiles allow for automated deployment enabling the customers to standardize and simplify the automation of application deployments. The automation policies cover a range of automated activities from how provisioning happens to where the provisioning happens to how a monitoring event needs to be handled to how cost control is enforced in an environment. This was never a luxury that the IT users enjoyed before.

The technology that is behind Cloud360’s automation capability is "Xi - Experience Intelligible", an easy-to-use English-like language that enables IT users to automate their everyday operations. It empowers Administrators and Business users to dynamically control the behavior of their Enterprise Applications. We recognized the fact that different enterprises have different management, monitoring and automation needs and one type of policy may not work for all. With Xi Configurator, users have the flexibility to create policies based on their requirement, thus giving them greater decision-making power and control over their environment. Users can also keep a check on the resource utilization and consumption by different group and implement timely actions to avoid misuse and contain costs.

Cloud360’s automation capability enables Business users as well as Administrators to collaborate and customize the hosting of applications for their end user. There was a time when the Business users had no control over the applications during run-time even though they were the owners of the business. With Cloud360, the enterprises are experiencing greater synergy between the Business users and the administrators. With the help of policies, the users can easily automate processes, thus saving the time spent on configuring and troubleshooting environments, reducing the element of manual error and investing the time and resources in more productive activities instead.

This technological innovation of Cloud360 has significantly simplified the usage of the Cloud technology and management of environments. Making automation easily accessible and customizable has provided users with greater decision-making power at their finger-tips, thus providing a powerful virtual canvas for automation. This unique technological breakthrough that has redefined the way Cloud environments are managed and monitored. It is an extremely rewarding experience as this technology is gets more recognition each day with increasing number of accolades and awards. This eggs us to further enhance the Cloud360 platform with newer innovations.

Brazil - Technology and Business Innovations

I was in Brazil earlier this week to speak at the Cognizant Innovation Forum at Sao Paulo, and was struck by the tremendous potential the country promises for start-ups and business innovators. While I had an idea that the country’s economy is gradually on the rise giving rise to excellent investment opportunities, I was fascinated to see the perspectives and geography specific requirements of this country that ranks #2 in Facebook and Twitter usage. I met with various customers and investors, and spoke about a diversified set of topics from banking innovations to emerging technologies in card payments to online insurance to retail analytics, and of course cloud computing use cases.

One of the interesting facts that I noted was the shooting up of online sales from 0 to 28 billion within a span of just 12 years indicating a phenomenal economic growth. I happened to visit a Hippie fair and was quite surprised to find that most sellers were accepting credit cards. That spoke a great deal about the country’s economy. The steady economic growth in Brazil is contributing towards a growing middle class which is creating a demand for different kinds of insurance products. During the meet, one of the discussions revolved around the challenges related to not just technology, but people, process and social elements for bringing up a SaaS-based insurance offering in a country that has more than 70,000 insurance agents. The demand for insurance products in Brazil, in fact, is said to be as diverse as it is in Europe and the U.S.A.

We also discussed about a unique challenge in the retail and online stores. The credit card transactions that get timed out and translate as lost business opportunities is close to 25% in Brazil. This number is less than 3% in U.S.A. In this context, we spoke about what could be the underlying issues in the infrastructure. I met with a start-up in Brazil that is trying to solve this technology problem and decrease the percentage of failed transactions for businesses. We had addressed similar problems of lost opportunity to several of our online customers of Cloud360 using various auto remediation, and other platform features of ours. It was interesting to see a different perspective of the business problem, technology means and the solution as well.

My stay has been a fruitful one when I learned a lot about the country’s prospects and figured that in spite of some of the challenges it has, this is a place that has a lot of scope for start-ups and companies planning business innovations.

Developer-centric IT World

With cloud computing becoming a well-established option for IT operations, Cloud providers traditionally ensured that they delivered varied cloud experience to a wide range of enterprise customers. Be it private, or a virtual private cloud solution, or solely for security and performance, the providers made sure that their IT operations' clientele got what they needed - or what they thought their clientele need!

Most cloud providers today realize that the cloud world is getting more and more developer-centric. A lot of developers are launching applications without being dependent on IT. There are times when IT Operations are not able to provide the required infrastructure within a set timescale. At times like these - they turn to Cloud, for competitive advantages. The businesses have much aggressive deadlines to deliver a new or improved offering - more or less becomes the least common denominator for timelines.

Apart from reliability and stability, what developers effectively look from their cloud providers - are flexibility, affordability and speed in turning up new services. In essence, every customer today comes with a different and unique requirement. Now Cloud users have the luxury to not just rely on one Cloud provider to meet their specific requirements. They have the option to choose system integrators that are, as Gartner puts it, “combining application development and application management with managed services on a strategic cloud IaaS provider’s platform”.

Cognizant’s Cloud360, for instance enables users to provision, monitor, and manage their application environments faster and more efficiently than before. With its self-service portal, it allows development teams to spend less time provisioning new environments and more time understanding business needs and developing applications. It enables agile development and test environments, empowers the engineering team in meeting the demands of a tighter development life-cycle and enables business to deliver faster and higher-quality products to users.

How Disaster-proof is your Data?

When we talk about disaster recovery strategy and business continuity plan ‘Cloud’ is bound to feature in the agenda. Apart from the flexible backup and recovery solutions offered by the cloud providers, the cloud itself is sometimes used as a backup repository. What other disaster recovery plan should one have in place? Well, imagine this scenario:

Your cloud provider is going out of business due to financial difficulties and has given you two weeks’ time to vacate all your data.

What would you do in a situation like this? Even if you manage to restore all your data in time, would you be able to continue your business with some other cloud provider with the same level of confidence as you did the first time? Maybe not! 

Cloud computing is undoubtedly one of the best IT innovations in recent times, having redefined the way we operate today. Then again, it is not the solution to all our IT problems. Like every new technology, cloud too comes with its set of challenges. It is important to realize its benefits and challenges so as to leverage it in a way that would best suit your company’s needs.  

Storing data on Cloud might seem like the ideal disaster recovery plan in today’s age. There is no doubt that the process of backup and recovery of data is much simpler in cloud than the traditional methods of data storage. While this holds true for any kind of natural disaster, what does one do in case of a business disaster similar to the one in the scenario above? Is there a recovery plan in place for business disasters such as this?

A full-proof way to alleviate all cloud related concerns is to invest in a strategy that supports multiple cloud platforms. A hyperplatform that supports industry-leading cloud platforms through a single interface and enables you to switch between different clouds, add or remove clouds and change platforms smoothly as and when you require. Its ability to manage multiple Cloud platforms provides the flexibility to leverage multiple Cloud Platforms eliminating vendor lock-in. Not only does it help protect your previous IT investments, it also future-proofs your environment against challenges emerging from advancements in technology. 

From 12 Weeks to 39 Minutes: An Insurer Speeds IT Updates — and Strengthens its Business

Financial services companies routinely maintain hundreds of core applications and systems for everything from billing and claims to fraud detection. Upgrades can easily become overwhelming.

When a leading investment and insurance company found its application updates required a lengthy 12 weeks, slowing its ability to roll out new products, it looked to a software as a service solution. The insurer leveraged our Cloud360™ BusinessCloud solution to quickly shift its development and test environments to a public cloud. The shift automated the company’s project synchronization and brought new life to its development efforts. The time now required to update cloud-based applications? Thirty-nine minutes. 

The new environment, launched in the first quarter of 2013, is the insurer’s first foray into cloud-based technology. In addition to the speedy system updates, the insurer also gained consistency across all of its environments and greater insight into its operations, with the ability to track each business unit’s resource consumption.

After a week of planning and identifying the requirements, the team completed implementation in four weeks. Validation took four more weeks. Our team created a hybrid architecture that integrated the existing system’s components and migrated development, user acceptance testing, regression and performance testing to Amazon Web Services. 

Our Cloud360 solution monitors consumption across the environments and recommends optimized usage. By reducing the provisioning timelines from months to minutes and implementing usage metrics, the investment and insurance company gained a more adaptive and elastic business environment. It also enabled scalability, reduced costs and increased operational efficiencies, such as speeding batch application performance by 40%.

Today, the company builds more applications faster, and without the delays of unwieldy logistics and overly complex project management.

Cloud360 goes mobile. Manage your cloud environments…on the go

The Future of Work is all about going beyond the boundaries of space and time enforced on us by the older technologies.  It is about attuning ourselves to the workplace that is virtual, mobile, and constraint-free. Rapid advances in technology, ever-changing customer demands, and increasing competitive pressures are forcing enterprises to not only reformulate their strategies but also the technology base behind those strategies. To cater to this need of the time, Cognizant’s Cloud360 Mobile App is now available on iTunes. This is part of Cognizant's overall cloud strategy that revolves around helping clients to drive business agility by leveraging anything-as-a-service models available through the use of cloud technologies. 

As enterprises are increasingly adopting cloud computing, they are facing a lot of challenges in terms of management complexity and costs. Cognizant’s Cloud360 helps enterprises transform their traditional IT environment life cycles and gain greater control over their environment. Cloud360 is a Cloud management platform that abstracts, governs, and delivers the best service, and on-demand experience to enterprises. Cloud360 provides enterprises with provisioning, monitoring, automation and analytics capabilities to transform their current IT environments to cloud environment. It helps enterprises integrate with the existing infrastructure and manage applications across diverse clouds platforms.

Cloud360 ability to manage multiple Cloud platforms provides the flexibility to the enterprise to leverage multiple Cloud Platforms eliminating vendor lock-in. The rich self-service portal of Cloud360 enables the business users to provision applications on the cloud environment via the one-click provisioning feature using the standardized catalogs and workflows. Cloud360 Mobile provides an interface to manage all your applications on the go using your iPhone or iPod Touch. 

With the Cloud360 Mobile App you can:

• View applications that are deployed in your cloud
• Deploy new applications with a single click using application profiles
• Start, stop, or de-provision your applications
• Switch seamlessly across clouds if you have access to multiple clouds

Hyperplatform Solution Briefing Center… now in Bangalore

As enterprises are increasingly adopting cloud computing, they are facing a lot of challenges in terms of management complexity and costs. Cognizant’s Cloud360 helps enterprises transform their traditional IT environment life cycles and gain greater control over their environment. The key transformational Goals for Cloud Services that Cloud360 addresses are

• Empowering People for Greater Efficiencies
• Rapid Launch of New Business Applications
• Variable Economics for Variable Business Models

Cloud360 hyperplatform is a manager of cloud services that abstracts, governs and delivers the best service, and on-demand experience to enterprises. Its approach of “Application first” across Public, Private and Hybrid cloud has created a niche market segment. Along with its policy-driven automation, integration with current enterprise IT environments and right sizing of the application, Cloud360 has brought IT closer to Business.

Cloud360 ability to manage multiple Cloud platforms provides the flexibility to the enterprise to leverage multiple Cloud Platforms eliminating vendor lock-in. The rich self-service portal of Cloud360 enables the business users to provision applications on the cloud environment via the one-click provisioning feature using the standardized catalogs and workflows.

Cloud360 does provisioning, monitoring, metering and analyzes virtual machine platforms and integrates with dozens of products in the market cutting across Directory Service, Service Management System, Approval Work Flow, Application Deployment and Orchestration and Monitoring tools. With its innovative features and technology, Cloud360 is making deep inroads in Cognizant’s customers’ portfolio. Customers are appreciating the value that Cloud360 is bringing to the table by being a Vendor-neutral Cloud management platform and adhering to the Enterprise-class IT standards. With its growing popularity in the Cloud market, more and more customers looking to transform their environment are getting interested in Cloud360.

To gain a further foothold in our client portfolio and ensure that potential customers get a feel of the product and are made aware of the key benefits of Cloud360, a briefing center has been launched in Bangalore, on the second floor of Cognizant’s Manyata Embassy Business Park office. The state-of-the-art solution briefing center is perfectly suitable to provide customers with a walk-through of Cloud360 and showcase the unique features of Cloud360 that would help customers gain the combined benefits of a powerful cloud infrastructure with a robust set of hyper platform services.

Cloud security conversations: Interview with Wolfgang Kandek, CTO at Qualys

While enterprise IT is constantly being pushed by customers who expect demand based cloud services, the cloud security is moving from “mystery and hype” to “secure and move-on". The traditional security solutions are becoming inadequate as customers want to inspect more varied and voluminous data streams in the cloud world today. A well-rounded security intelligence and governance are the key factors to detect advanced threats as we shift from traditional static compute environments to dynamic IT services.

I had a chance to discuss with Wolfgang Kandek, CTO at Qualys, about some of the challenges expressed by our clients and industry experts, and the potential solutions in this space.

Here is a brief bio of Wolfgang:

Wolfgang Kandek is responsible for product direction and all operational aspects of the QualysGuard platform and its infrastructure. Wolfgang has over 20 years of experience in developing and managing information systems. His focus has been on Unix-based server architectures and application delivery through the Internet. He is a frequent speaker at security events and forums including Black Hat, RSA Conference, InfoSecurity UK and The Open Group.

 

Are the security challenges different in context of cloud computing and multi-tenant systems, compared to dedicated or private environments?
The basic security challenges are the same in cloud computing and private environments. In implementing security, cloud computing environments frequently have an advantage. They are often built from the ground up, presenting the opportunity to engineer the necessary security into the environment.

What is your take on hybrid cloud infrastructures and the underlying security protection in case of cloud bursting or applications moving across?

Hybrid cloud infrastructures will be used by many organizations to be able to extend their general computing capacities. The capability of extending the same security controls that are used internally to the hybrid cloud will be an important differentiator for hybrid cloud providers, especially as the cloud computing further matures and becomes a dependable building block for IT architectures.

If we consider security, compliance and governance as 3 different business needs – how dependent are these on one another? Which is the least common denominator and the most important?

Security is a component of compliance and governance. Security should be driven by an understanding of the risks facing IT resources, prioritized by the value, sensitivity, or importance of the IT asset. Compliance is driven by external requirements that the organization must meet, and if these requirements are not met, the organization will face some type of consequence (loss of business, financial penalty etc).  Organizations with mature risk management programs view compliance program requirements as a risk that must be managed. Governance is the overarching program that ensures that the organization is doing what it needs to do to manage risk properly, ensuring appropriate levels of security and meeting compliance requirements.

What are the top vulnerabilities that you commonly see from enterprise applications? Where do things normally go wrong?

Enterprise Applications commonly suffer from three different types of vulnerabilities: type one is caused by programming, and can be fixed by code updates or temporarily remediated by security systems such as IPS and Web Application Firewalls; type two is configuration related, where systems are deployed with non-hardened settings, allowing default passwords and remote system administration without scrutiny; and type three refers to the underlying infrastructure - the operating system and networking.

How important are standardized application deployments, say Application Profiles in Cloud360, to reduce the configuration vulnerabilities? Is this a common source of security vulnerabilities in enterprise applications?

Standardized application deployments can play an enormous role in improving security.  They make it easier to deploy an updated version of the application in question and ensure that the configuration files are in accordance with approved internal standards. This avoids many of the common weaknesses plaguing enterprise applications. Industry reports, such as the Verizon Data Breach Report show the main problems to be configuration related and easily avoded such as default passwords, open admin services and outdated applications.

Very interesting thoughts and continuing on the previous question, what are the common layers in an application stack that we need to consider for guarding? Since hackers usually combine 2 or 3 vulnerabilities to make a penetration – is there any specific recommendation from you?

That is correct, the entire stack can be attacked and often more than one element is involved. So for example, in a SQL injection vulnerability the application is failing to perform the required sanity check on the input, the database access layer allows for dynamic SQL interpretation, and the database is not configured to only return data pertinent to the account in question. To be on top of these weaknesses, it is crucial to have an accurate map of the installed infrastructure, operating systems, network paths and applications, both standard and developed in-house. For example, knowing that a database is directly connected to a web server exposed to the Internet, rather than a database server that is used for an internal application and has no web access at all, helps to prioritize patching and configuration checking.

How critical is to do life-cycle management of virtual infrastructure, to protect from dormant/aged VMs, snapshots and residual data? Is that a common sprawl related problem in the cloud world?

VM sprawl is a common occurrence and can cause security issues. Often machines that are brought up only on demand will miss patch cycles and can be critically out of date even after a few short weeks. Knowing what machines are present in the environment and being able to “predict” vulnerabilities even only with the inventory data is quickly becoming the way to deal with this frequent problem.

What do you try to do differently at Qualys to protect your customers compared to other providers?

Qualys’ main difference is that we bring the vulnerability, configuration and web application audit functionality to our customers as a service. Customers do not have to worry about running the infrastructure necessary to operate this functionality, i.e. hardware, operating systems, databases, signature updates, backups, high-availability, etc., but can instead focus on making best use of the data provided. This is a tremendous advantage for small and medium sized customers, but even our large enterprise customers acknowledge that QualysGuard is extremely fast to implement on a global scale. As long as Internet connectivity is available, the product will work and there is no need to reconfigure enterprise firewalls to assure that all required network connections are possible and in place.

How important is ‘on-demand’ aspect from a security protection viewpoint?
On-demand functionality is important from a business standpoint. It enables us to adapt quickly to new initiatives or unexpected growth. I believe ‘on-demand’ will soon become a requirement for almost all technology related functions, be it in the infrastructure provisioning, security auditing or enterprise application capacity area. 

Given that security protection is an on-going activity, in context of ‘Security is the New Arms Race’, what are your important advises to our enterprise customers?

Overall, exercise control over your infrastructure and be aware of what systems and hardware you are running and their criticality for the business. Often existing tools can provide the data that is necessary to form a complete picture: your user directory, software licensing system, anti-virus consoles and log management system are some of the best initial data sources. Invest in people and develop the capability to pull that data together and produce meaningful reporting and metrics. As you look at new initiatives and include cloud computing into your infrastructure, evaluate the management functionality that the external companies are providing and assure it is adequate for the intended purpose of the system.

I thank Wolfgang on behalf of Cognizant Cloud360 team!

- Ramesh Panuganty.

 

Portability, compatibility & standards across cloud platforms

There is always a question on the portability & interoperability across various cloud platforms during the customer conversations. While the definition of 'cloud' and 'platform' varies across every provider - there is never going to be a common standard for OS images or even the access APIs, understandably for locking in customers. 

While there are standards bodies like ODCA, we are far away from any two of the leading providers agreeing on a common standard. While most providers support 'import' of images from other formats, the application performance after an import is questionable. One may be better of to recreate the image, with installers, rather than importing of images.

Some of the API standards like RefStack don't have any updates in the past 2 months and becomes questionable on the commitments. I had seen Eucalyptus trying to support multiple APIs, including AWS', but then eventually it fizzles out as AWS continues to innovate and adds features.

I came across this article in Forbes which talks about the discussions & conversations on a OpenStack forum recently - and it is interesting to note the offerings and interests of various entities involved in OpenStack. 

http://www.forbes.com/sites/reuvencohen/2013/04/26/cloud-interoperability-and-the-battle-for-the-open-cloud/2/

RedHat seems to have setup a great trend on supporting open-source components, and now we have multiple different open-source stacks here - including KVM, Xen, OpenStack, CloudStack. While it is going to be a competitive as well as difficult times for everyone involved in the eco-system, due to the non-standards. It is an opportunity for some of the players, just to solve this particular problem.

Enterprise IT still slow to embrace automation and cloud management solutions

Enterpries still haven't fully started embracing cloud  management solutions, in spite of the growth & maturity in the market - partly because of the failure to take advantage of cloud in the first place. The value proposition needs to be understood and the integrated approach is the key for the transformation. Businesses need to understand that the cloud is different from traditional environments. 

Private cloud computing expert Doug Jarvis told Network World that business IT directors want the same type of management tools for cloud services that they used in their data centers.  

Carl Lehmann, an analyst with the 451 Group, says that cloud governance is lagging behind data orchestration in general as there are no specific suites of tools that specifically target this area of cloud management. "But you can see the underpinnings of cloud governance being laid down in part by tools that can track authentication processes, access controls and key management in the cloud," Lehmann says. 



http://www.networkworld.com/supp/2013/enterprise2/040813-ecs-cloud-tools-268089.html?page=4
 

Google IaaS now available without invitation

You can now access Google's Compute Engine without the need to talk to sales or an invitation, by subscribing to Google’s starting at $400 per month Gold Support package. 

Google also added a set of interesting new features like diskless instances. And of course, a set of price drops - heating up the industry even further.

Considerations to choose cloud providers

Several times our customers ask us for the assessments to select an infrastructure provider for the given application set. Most of the times the discussions revolve around the security considerations and license agreements, but here are some of the parameters that I normally include in my considerations:

• Existing data center, support and depreciation
• Vendor relationships, and partnerships
• License agreements on software components
• Compliance
• Geo-location aspects, data residency considerations
• Security
• Performance, and application affinity
• Overall cost & TCO for the given years

Top 10 Laws for Cloud Computing

Here is an interesting article on the economics of cloud computing and the top 10 laws...

SaaS has led the market to date with the largest market size, highest gross margins, and highest per-seat pricing. Recently, however, we’ve seen the rapid emergence of hyper-growth businesses in the PaaS and IaaS markets demonstrating that these will soon be independent, multibillion-dollar segments in their own rights with the potential for massive sales volume and attractive cash flow characteristics.

The cloud computing and the platforms are expected to dynamically perform intelligent provisioning, services, and applications management.

 

BESSEMER CLOUD COMPUTING LAW #1: Less is more!

BESSEMER CLOUD COMPUTING LAW #2: Get instrument rated, and trust the 6C’s of Cloud Finance

BESSEMER CLOUD COMPUTING LAW #3: Study the sales learning curve and only invest behind success

BESSEMER CLOUD COMPUTING LAW #4: Forget everything you learned about software channels.

BESSEMER CLOUD COMPUTING LAW #5: Build Employee Software. Employees are now powerful customers, not just their managers! We’re witnessing the “Consumerization of Software” so focus on ease of use.

BESSEMER CLOUD COMPUTING LAW #6: By definition, your sales prospects are online – Savvy online marketing is a core competence (sometimes the only one) of every successful cloud business.

BESSEMER CLOUD COMPUTING LAW #7: The most important part of Software-as-a-Service isn’t “Software” it’s “Service”! Support, support, support!

BESSEMER CLOUD COMPUTING LAW #8: Leverage and monetize the data asset.

BESSEMER CLOUD COMPUTING LAW #9: Mind the GAAP!

BESSEMER CLOUD COMPUTING LAW #10: Cloudonomics requires that you plan your fuel stops very carefully. 

http://www.bvp.com/sites/default/files/bvps_10_laws_of_cloud_saas_winter_2010_release.pdf
 

Enterprise Cloud Migration Strategies

Thought this one was very appropriate to what I see in the industry everyday!