Results tagged “data storage” from Lohrmann on Infrastructure

There have been quite a few headlines lately about the current challenges facing Virginia's government technology infrastructure. From this IEEE Spectrum article, to Computerworld in the USA to the United Kingdom's version of the Computerworld Magazine, the situation has been covered globally in the mainstream and technology press.  Virginia Governor Bob McDonnell has even announced an independent review of the recent "unacceptable" computer outage.   

For the past few weeks, many technology professionals around the country have quietly been watching and hoping for the best for our colleagues in Richmond, Virginia. Despite online criticism, technology leaders in other governments recognize the potential ramifications for all of us. Several of us believe that technology and security pros in government need to do some infrastructure-searching and ask: could a similar failure happen on my network? This is one of those "moments in time" when technology professionals need to take a step back and ponder those nebulous "what ifs."

Honest technology veterans not only recognize that such outages can happen, we have lived through several mini-crisis situations. Over the past two weeks, I've received calls and e-mails from respected colleagues around the country with comments such as: "We recently had a major outage as well... that almost caused a similar (widespread) impact. We were very fortunate that.... (some good thing happened)."  Somehow, in each case, they pulled through and stayed below the public radar.

Or, as the Washington Post stated in a quote of an Arizona technology analyst named Robin Harris: "People in the industry are watching ... as this unfolds. There's a lot of 'there but for the grace of God go I' kind of thinking."

No, we don't have insider details regarding what happened in VA.  In fact, as I write this blog, I know little more than what's available from public reports. (Our team will be getting briefings from related technology vendors this week, but those discussions will be under a non-disclosure.)

But before we get to potential action steps for the rest of us, let's put this situation into historical context.  From Y2K to 9/11 to the Northeast blackout of 2003 to spreading viruses to malware attacks to lost or stolen laptops, technology leaders are constantly being asked to prepare for and react to unexpected emergencies. Other times, the technology doesn't work as expected. Email fails - even for Google. Mission-critical systems can't communicate, or networks go down in strange ways. Tech leaders worry about losing backup tapes containing sensitive information. Insider threats, such as this incident in San Francisco in 2008, can get out of control.

No doubt, government technology shops know these things. We have onsite and offsite backups, DR plans, real-time redundancy, alternative systems, business recovery plans and more. We've dealt with weather emergencies and the aftermath of 9/11. We prepare with exercises like Cyberstorm I, II & III. We test our processes and procedures to prove we can respond and recover. 

We've all been audited, and we respond with new approaches that are foolproof - until the functions don't work as advertised in a crisis. Perhaps the scenario that was tested is not the one that occurs. Which leads us back to that tough question - what about my government's technology infrastructure? We think about vendors and products. Where are our biggest weaknesses? How can we mitigate those risks and/or prepare for the unknown?   

Don't get me wrong. Following ITIL and building good DR plans are very important and we can (and need to) continue to improve in these areas. And yet we still know that unexpected things do happen. How will your team respond? Who will they call? What is done in the first few minutes is often very important in how the recovery effort will proceed for the following days and/or weeks.

So here are five things to ponder before technology fails:

1)      Think people, process and technology. Are the DR plans workable? Has your staff been trained to execute quickly? We have found that people issues are the hardest to prepare for and resolve. In addition, emergencies generally go bad when two or three of these are involved in an incident - and not just a single failure of technology or a human error.

2)      Communication is the key in a crisis. Answer this: Who will your team members call and when? What will they say? Just like the fire department: How fast can the team respond? Also, proper expectations need to be set regarding recovery, or the trust will disappear between partners. Is the front-line ready?

3)      Look for the gray areas in DR and business continuity plans. In Michigan, we've found that technical staff are often uncomfortable making the call to go to backups or pull the trigger on major recovery efforts. Techies tend to try to fix the problem themselves and not tell anyone. If you get management involved to quickly escalate issues, additional resources with a wider view of the problem can often remediate the issue before it spreads. Looking back, gray areas in our plans have hurt us. After the fact, we play "Monday morning quarterback" and realize we should have brought in vendor expertise earlier or gone to "Plan B" faster.

4)      You can never outsource the responsibility. Where does the buck stop? No matter how good our vendor partners are, the government will always answer to the public when business functions are not available. Build a joint team and practice together with contract partners, but remember who will own the end-to-end result. Know the boundaries of contracts and test plans across those boundaries. Be accountable.

5)      Practice makes perfect - almost. Run drills, conduct tabletop exercises, talk about lessons learned from previous incidents, share stories, ask "what if" questions. Test scenarios. I like this quote from Vince Lombardi:  "Practice does not make perfect. Only perfect practice makes perfect."

Despite our best efforts, bad things will continue to happen to our technology infrastructures. It is part of our job to help staff prepare for those situations. Like a respected football coach with a talented team and a good game plan that goes bad for any number of reasons, we need to be flexible enough to adjust and still win the ballgame. Or perhaps, after a tough loss, we need to bounce back and salvage the season.  

Virginia's government technology team may have done everything properly and yet still be confronted with this difficult situation. We will know more details soon enough. And yet, they are known around the country as an excellent technology program with a respected reputation for excellence and leadership. This fact alone should cause each of us to pause and take notice.

Regardless of the outcome, they are also respected partners in government who have shared best practices with other states at National Association of CIOs (NASCIO) conferences. I am sure Virginia will bounce back and grow stronger through this.  

For the rest of us, as we get ready to come together for the annual NASCIO conference in Miami at the end of this month, many will be thinking about Virginia's experience. We have entered a new decade where hardware, software, security, centralized data centers, cloud computing, mobile devices and more must work together. The complexity will be a challenge for every state and local government as we strive for increased efficiency.

 Therefore, we need to be looking internally and asking (one more time): If technology fails, now what?

I'd appreciate hearing your views on this situation or on similar challenges in your government technology program.

Now that Oracle's acquisition of Sun has been approved by the European Commission, what's next? That is, what does this merger mean for government technology leaders around the country?

Some readers may be thinking that this is old news, but this major deal has been on hold since April 2009 due to competition concerns.  The merger now looks certain to go through in the next few months or sooner.  

This is a very important announcement for the technology industry since:

"Oracle chief executive Larry Ellison said in September that the delay was breeding customer uncertainty, causing Sun to lose $100 million a month as companies held off purchases. The panel had threatened to block the deal due to fears that Oracle might be able to eliminate MySQL as a competitor."

Going back to the analysis of the announcement last year, Oracle was deemed to be getting a bargain for $7.4 Billion. Experts reported that Oracle, "Ends up acquiring MySQL, the upstart database that has been viewed as Oracle's Achilles' heel." Now we know that Oracle will not only keep MySQL, but they will boost investment in MySQL's open-source licensing platform.

Om Malik, from gigaom.com, wrote this on the merger after to speaking to "inside" sources:

• "The deal could mean trouble for Sybase, which has a lot of customers on Solaris.
• It could prove challenging for non-database users of Solaris, for it's not clear how Oracle will treat Solaris.
• It's good news for Java, as two major corporate giants will be supporting it and will be forced to play nice with each other.
• Oracle will keep MySQL going mostly because it can act as a funnel for further business opportunities."

 Mr. Malik goes on to quote Miko Matsumura, VP and deputy CTO at Software AG, who had a contrarian take on the merger. He predicts it will be a disaster, with thousands of layoffs.

The Linux Journal posed an open-ended question to readers about the acquisition, and here's what they said about what's next back in April 2009.

Fast-forward back to today, and ask the same question. What are we likely to see as the 2010 progresses? Check out this internal Sun memo from their CEO that was obtained by CNET.com. The theme:  Beat IBM, which comes from the first letter from the first seven paragraphs.

Meanwhile, Oracle announced their plans for Sun last month, and here's a bit of what zdnet.com  reported:

"Ellison also gave some insight to his Sun strategy. In a nutshell, he's staying out of the high-volume, low margin game that IBM and HP play. Simply put, Ellison is taking Sun upmarket with hardware-software devices like the Exadata database machine. Exadata has been a hit, said Oracle executives, who noted that orders have tripled sequentially and the biggest problem right now is manufacturing enough systems.

The future of Sun will rest with high-value systems, said Ellison, who added the computer industry is focused on selling components instead of complete packages."

No doubt, these are interesting times. I can't help but think back to my earliest memories of Sun. I remember buying and playing with a Sun Sparcstation 1 when I was at NSA in the late 1980s.  Over the next decade, we configured hundreds of Sun boxes.

Now, as the Sun CEO stated to his employees:  "Sun is a brand, Oracle is your company."

I've never worked at Sun, but along with thousands of employees, I'll have a hard time getting used to that distinction.

What are your thoughts on this merger?

  EMC continues to lead IBM, Dell and HP in the external disk storage systems market, but worldwide revenue declined by 18.7% from the prior year's second quarter, according to the research firm IDC. eWeek.com broke down the storage sales by revenue percentage, with EMC grabbing 21.5% of the market, IBM had 14.9% and HP came in third with 11.4% of the market share. Dell and NetApp finished in a tie with under 10% of the market share each.     

  Here's an interesting quote:

"Liz Conner, an IDC research analyst in storage systems, said while the enterprise storage systems market continue to feel the impact of current economic conditions, posting its third straight year-over-year decline, certain "sweet spots" in the market continue to thrive. 'iSCSI SAN and FC SAN both showed strong year-over-year growth of 57.2 percent and 66.8 percent, respectively, in the entry level price bands ($0K-$14.99K) as customers continue to demand enterprise level network storage at a more economically friendly price point,' she noted."

  These latest statistics seem to confirm predicitions from earlier in the year (January) regarding a decline in the data-storage market. Back in May, vendors confirmed that weak sales were hitting revenues. And yet, the data storage market may be starting to see green-shoots.

 For government technology leaders, this is a great time to take a look at where you stand regarding your overall data storage situation. New technologies that use data deduplication can offer substantial benefit to your enterprise storage strategy. Each of the named vendors are rolling out new products and services that can help reduce cost. New products and pricing can be very attractive.

  In Michigan, we are looking at our overall data storage strategy and how we can move towards a new government cloud. We are virtualizing our servers, but also reducing the number of storage platforms with the use of data deduplication. We expect to save significant dollars over the coming year by taking a fresh look at our overall architecture and storage savings opportunities.

What are you doing regarding data storage?