Industry Insights from Our Experts

Tag Archives: Cloud

Cloud Storage Solutions

Comments Off
Filed under Productivity

Outside of Azure storage requirements for Windows Azure projects, I use cloud storage for two things: syncing photos to all my devices and sending large files to other people. Getting files out into the cloud isn’t even half the battle: it’s all about the OS / device integration.

Read More »

LightSwitch Apps for SharePoint 2013 Rollup

Comments Off
Filed under Cloud Practice, LightSwitch, Productivity, SharePoint

Hey, I may be all about cloud computing these days, but my heart is still anchored in all that is LightSwitch. With the new Visual Studio 2013 Preview out, I’ve been a busy little beaver (okay, a busy big ol’ bear) with all that interesting LightSwitch stuff.


(image courtesy of Microsoft)

For what it’s worth, here is a bit of a web content rollup about creating LightSwitch applications in SharePoint (yes, most are from Microsoft):

Building Modern, HTML5-based Business Apps for SharePoint 2013 with Visual Studio LightSwitch

Building Modern, HTML5-based Business Apps for SharePoint 2013 with Visual Studio LightSwitch (same presentation, different presenter at TechEd 2013 Europe)

Walkthrough: Creating an App for SharePoint by Using LightSwitch

Walkthrough: Accessing a SharePoint Workflow from a LightSwitch Mobile App

Get Started Building SharePoint Apps in Minutes with LightSwitch

Sending Email from a LightSwitch SharePoint App using Exchange Online

Theming a LightSwitch SharePoint App with ThemeRoller (way cool!)

Publishing LightSwitch apps for SharePoint to the Catalog 

Survey App Tutorial: Developing a SharePoint Application Using LightSwitch

More to come I’m sure.

Hey, if you’re curious to learn more about LightSwitch, I’m your guy. Contact me and I’d more than happy to chat with you about how using LightSwitch can shave weeks, if not months, of your next line of business software project.


Paul P

Creating a Governance Model for Public Cloud Security

Comments Off
Filed under Cloud Practice

(re-post from the blog of PaulSPatterson.com)

What does public cloud governance mean to you?

Their are obvious opportunities that the public cloud offers, and while the rewards far outweigh the risks, there are still risks. Applying governance to your cloud strategy will set you in a better position to realize value, within the levels of risk that you are willing to accept.

The flexibility of today’s cloud services, especially public cloud services, provides for very convenient and easy ways of “spinning up” services on demand. Just like the way grocery store candy and magazine stands serve customer impulse buying tendencies, so do the offerings of some public cloud services. It is very easy to provision a new service in the public cloud. With Windows Azure for example, I can fire up a full blown 8 server infrastructure, complete with networking and integrated services, in a matter of twenty minutes. That simple convenience makes it easy to cater to impulse tendencies.

Policies and procedures are meant to ensure that activities are executed in way that are in the best interest of the organization. Additional governance processes specifically for cloud services ensures that those services are used in a controlled way, so that the interests of the organization are maintained. Creating and deploying a cloud based server farm that includes virtual networking connected to your on-premise infrastructure, for example, presents risks. With a set of governed practices, that cloud based deployment will meet the expectations of the organization, and thus make your CIO sleep better at night.

Is governance for cloud services needed? Well, let’s try and answer the questions that help determine if your use of cloud services should be governed in some what or another.

What returns do you expect to receive from public cloud services? What opportunities will be lost of you don’t adopt a cloud strategy?

Again, the risk of using public cloud services are likely insignificant compared to the opportunities that will be lost.  Operational efficiencies. Improved customer service and satisfaction. Sales and revenue. There are plenty of opportunities in adopting a public cloud strategy. Planning and executing on a sound cloud strategy can enabled an organization to realize a return from new opportunities.

Policies and practices will typically guide how public cloud services will provide value.  Governed cloud services are expected meet organizational expectations, with goal being that the services used will return value and  realize new opportunities.

If you used a cloud service today, is there clear direction and does that direction align with strategic objectives?

Cloud services are not the means to an end. Cloud services are simply another mechanism for enabling and delivering business value. Your current internal data center, or your “private cloud”, was created for a reason; to deliver value to the organization.  Decisions on IT spending are ultimately measured against strategic objectives. The decisions made to use cloud services should be traced back to clearly defined, accepted, and measured organizational priorities.

Do you have a cloud strategy for your organization? If so, does that strategy include plans to meet enterprise goals and objectives?

Are you ready for the cloud? How do you feel when someone starts talking to you about public cloud services?

Some organizations are not ready for the public cloud, or cloud computing in general for that matter. There is a lot of publicized hype and marketing about cloud services. The cloud computing landscape can be confusing and intimidating at best. Being ready for the public cloud means being comfortable about what the public cloud offers, and what risks are, and are not.

An organizations’ readiness for public cloud services can be gauged by the following:

  • The amount of public cloud knowledge in the enterprise.
  • Organizational attitude towards the public cloud, and does the organizations’ culture support public cloud opportunities.
  • Existing strategies conflict with using public cloud services.
  • What does your gut say?

Determining an organizations readiness for adopting a Public Cloud strategy is critical in identifying adoption pressure points. Rather than brute force the implementation of a strategy, due diligence will hash out and prioritize the opportunities that will bring the organization to a state of Public Cloud readiness. Risks should be identified with existing organizational culture, knowledge, and policies and practices. A readiness assessment can then created and vetted.

What else?

Some resource that I have found of interest (so far)…

Hey, this is just one of many topics I am discovering  in my never ending public cloud security journey. I likely just touched the surface on this particular topic and if you have any insight, opinions, or whatever, please let me know. The more discussion the better.


Organizations Struggle with SharePoint Data Security Governance

Comments Off
Filed under Cloud Practice, SharePoint

(re-post from the blog of PaulSPatterson.com)

This article is not quite specific to my cloud security bandwagon context, however I was just reading an interesting report from Aberdeen Group. The report, titled SharePoint Collaboration Secure and Mobile, talks to a couple of SharePoint data security concerns that I found interesting. Most notably, how organizations are not performing well at data governance with their SharePoint environments.

Data Security and the Cloud Sprawl

Keeping track of corporate data is harder today than it ever has been. Introduce the use of cloud services for data management, and now your looking at whole different dimension end-points to worry about.  Adding the elastic and organic nature of the cloud, specifically in how cloud services are used to host data, seems to only compound security and privacy concerns.

And it’s tough to keep up. As quickly as we move to adjust and implement governance models, a new way of doing something in the cloud is made available. SharePoint is arguably the most commonly used collaboration software used today. Consider the massive amount of documents, lists, and knowledge that is managed by today’s enterprise SharePoint environments, and the number of users that have access to those environments. Those same users are also accessing elastic cloud services and social networks that when combined, represent a sprawl of new risks that are sometimes impossible to map and keep track of.

SharePoint Concerns

Coming back to SharePoint, Aberdeen presents some points about what organizations are performing well at with SharePoint, and what they are not doing well at. Two pieces of insight are presented in the report; how well are organizations doing when they use complementary security technologies for SharePoint, and how they are struggling with SharePoint data governance.

The use of complementary security technologies seems to be what most are doing well at. Measurements of security-related incidents, non-compliance incidents, and human related errors, were each used to determine how organizations fared.  Strategies such as; disk encryption, data classification, data loss prevention, and rights management are used. According to the report, best-in-class users of SharePoint are leaders in the use of disk encryption and data classification, while the lagging performers seem to have more issues due to data loss, and rights management security.

Clearly understanding expectations of how data is accessed and used seems to be a challenge for most organizations using SharePoint. SharePoint empowers users with the ability to do a lot of things, including the ability to define very granular security permissions. Without a clear and defined expectation of what users should or should not do, users can wreak havoc with the data. Organizations, according to the report, are struggling with data governance.

What Can Be Done?

As per the report, there are some steps that can be taken to mitigate a more secure SharePoint environment.

  • Data Classification. Taking an inward-out strategy by putting controls on the data. The idea that information about the data follows the data wherever it goes, even it happens to go outside of the SharePoint environment – such as into the cloud sprawl.
  • Prioritize Security Objectives. Create, or apply existing, data security and compliance protocols to SharePoint data.
  • Policies and Procedures. Especially important for publicly traded companies, data in SharePoint needs to meet legislated compliance regulations, as well as organizations guidelines.
  • Knowledge and Training. Teach users how to do things right the first time.
  • Best Practices. Using security best practices will scaffold the privacy and protection of the data.
  • Complementary Tools. There are many complementary data protection tools for SharePoint. Use them.

I can see much of the above being applied to pretty much any other internal, and external cloud-based, environment. What attracted me to this report were data security concerns, and how poorly many organizations are doing with data governance.

Do you see any of this being a concern? How about in your own organization?

Organizational Control and Public Cloud Services

Comments Off
Filed under Cloud Practice

(…a re-post from PaulSPatterson.com)

In my journey of public cloud security enlightenment, I’ve been hording a wealth of reference material. One of the things I’ve found is a terrific article titled, “Cloud Computing Security in the Enterprise”  by Dan Blum, a former VP Distinguished Analyst at Gartner. In it is a section that talks about how new security management  thinking must take place when an organization looks at public cloud services.

It is important that organizations understand the risks in adopting the use of public cloud services. Legislation, regulatory requirements, and organization policies and procedures will not change as quickly as the cloud evolves. Embarking on a cloud strategy means an organization is subject to threats above and beyond what it is already exposed to. Organizations need to understand how risks transfer to the cloud when investigating cloud service arrangements.

The more an organization leverages public cloud services, the more control shifts from the organization, to the cloud service provider. For example, a solution architecture that is completely deployed on premise means the organization has, for the most part, complete control of the deployment. At the other extreme is an solution that is entirely hosted by an external service provider, whereby the control of the deployment is mostly, of not entirely, controlled by the service provider.

The following diagram illustrates the comparative control models that is typical of a organizations cloud environment, moving from a on premise scenario, to a public cloud services scenario.

When it comes to the service provider having all the control, the organization takes on more of a monitoring and feedback focus. What does this mean in terms of public cloud governance? I don’t know yet – that something I’m still learning about. However I find this information about how the security control model changes the more a cloud architecture moves from a on premise cloud scenario to a public cloud.

Are you considering cloud services? Let us know, we can help.

Use the Cloud to Transform, not Migrate

Comments Off
Filed under Cloud Practice

What is the cloud, and why should I move my application to the Cloud?

Misconceptions about cloud-computing skew the perceptions that most people have about cloud services today. These misconceptions are due to the way we adopt technology today.

The consumerization of technology products has generalized our perceptions and expectations of cloud-based services. Picking up your smart phone, for example, you just expect it to work. Even more so, those apps you have installed on that phone, you also just expect to work.  Why would you really care what that app is really doing behind the scenes.  As long as that device or app is giving you the value that you expect, then why care.

So what does this consumerization really mean to our knowledge of cloud-computing? Read More »

Windows Azure Event – Friday November 9th 2012

Comments Off
Filed under Cloud Practice

On Friday morning, November 9th  Quercus Solutions is hosting a free Microsoft Windows Azure event. The event will include presentations, including technical demontrations, of Microsoft’s cloud-computing services called Windows Azure.

This event is an excellent opportunity to learn about Windows Azure cloud-computing services. Representatives from the both the Quercus Cloud Practice team and Microsoft will be available to answer all your cloud-computing questions.

We have some seats available and if you are interested in attending, please let us know immediately because the seats are filling up quickly.

If interested, you can call Paul Patterson at 780 784-1010, or email him at Paul.Patterson@QuercusSolutions.com for more information.

Economies of Scale and Cloud Computing

Comments Off
Filed under Cloud Practice, Growth & Development, Software Architecture

Many of the conversations I have are with business executives who ask: “What value will I see from using the cloud?”

Measuring the Value of IT

According to a 2011 Gartner report, 66 percent of IT spending was used to sustain existing products and services. 1 The report also indicates that 20 percent of IT spending was used for improving on existing products and services, and 14 percent on introducing new ones. The report also shows that these numbers have not changed much over the last 6 years.

As mentioned in the report, there are three core activities that every business tries to achieve. The first is to sustain existing products and services. The second is to improve on existing products and services, and the third is to introduce new ones. These activities, which are also known as: “run, grow, and transform” are each activities that business invest into for IT. Read More »

Copyright 2017 by Quercus Solutions