The global and independent platform for the SAP community.

Cloud or not cloud - this is often not a question...

In Germany, we pride ourselves on our caution; disparagingly also called "German Angst". Take cloud computing, for example: some companies see the "private cloud" in their own data center as the only way forward - despite possible economies of scale.
E-3 Magazine
March 3, 2016
Security
avatar
This text has been automatically translated from German to English.

Some even compare the hybrid cloud as a transition technology from one's own data center to the public cloud to drugs - the "first shot" being free...

Accordingly, security concepts and solutions that secure on-premises and cloud-stored workloads (or transition) are dismissed.

Of course, there are use cases in which legal reasons prohibit the outsourcing of data and processes to third parties. Nevertheless, many overlook a crucial aspect: not every company has the necessary size at which it is possible or economical to operate IT in its own data center.

Smaller companies cannot choose whether to vote for or against "the cloud" - many services are now effectively only available as a subscription model in the cloud (SaaS): from such simple things as e-mail, calendars and contacts on laptops and cell phones, to file-sharing and office software, to travel expenses or vacation plans.

Even in the operation of own applications, the trend is moving away from own static to PaaS or IaaS offerings. Especially if the web offering is business-critical, the effort and knowledge required for the highly available operation of root servers is often not affordable.

With PaaS or IaaS offerings, on the other hand, this is often just a checkmark in the configuration interface....

One thing must not be forgotten under any circumstances: The majority of German companies are "hidden champions" in the SME sector. Those companies that are not in the luxury situation of being able to keep everything in-house must also be listened to - and given tools to use the services securely.

Large companies often have their own IT, possibly in their own data center. The path to the cloud leads from hardware via virtualization to IaaS offerings, a classic hybrid cloud scenario. You replace your own hardware in the data center, but retain the operating model.

Some services, especially those developed in-house or internal, may be outsourced to PaaS providers or purchased as SaaS services. From an IT security perspective, solutions that can enforce security measures transparently and independently of the infrastructure are an option here.

Smaller companies often take the opposite approach. The services initially deployed are often found in the SaaS area. As they grow in size, demand increases, and requirements become more specific, individual services may migrate first to PaaS and then to IaaS platforms.

In the case of critical data and processes, the last step that is sometimes conceivable is to move from public IaaS offerings to the company's own virtualized hardware. In this path, the hybrid cloud is something positive even for opponents of the public cloud; namely, the possibility of bringing data and processes back into one's own data center.

Here, too, security solutions that cover all stations play a crucial role. They allow proven security policies and mechanisms to be "carried over" regardless of the underlying platform. One can certainly be divided on the security level of the public cloud.

However, a blanket rejection of the cloud and the demonization of transitional technologies are neither sensible nor effective. After all, many companies simply have no choice!

The use of the hybrid cloud allows the "smooth transition" in both directions - which security solutions and concepts should not stand in the way of, but rather migrate along with. For large companies it is the transition from their own IT to the cloud, for many smaller ones it is the possibility of transitioning from the cloud to their own IT.

Every security manager is well advised not to blindly submit to dogma, but to make an informed decision in the context of "his" company. In addition to the required level of security and the size of the company, this also includes economic framework conditions, both in the present and for the future on the way to the cloud - or from the cloud.

avatar
E-3 Magazine

Information and educational outreach by and for the SAP community.


Write a comment

Working on the SAP basis is crucial for successful S/4 conversion. 

This gives the Competence Center strategic importance for existing SAP customers. Regardless of the S/4 Hana operating model, topics such as Automation, Monitoring, Security, Application Lifecycle Management and Data Management the basis for S/4 operations.

For the second time, E3 magazine is organizing a summit for the SAP community in Salzburg to provide comprehensive information on all aspects of S/4 Hana groundwork.

Venue

More information will follow shortly.

Event date

Wednesday, May 21, and
Thursday, May 22, 2025

Early Bird Ticket

Available until Friday, January 24, 2025
EUR 390 excl. VAT

Regular ticket

EUR 590 excl. VAT

Venue

Hotel Hilton Heidelberg
Kurfürstenanlage 1
D-69115 Heidelberg

Event date

Wednesday, March 5, and
Thursday, March 6, 2025

Tickets

Regular ticket
EUR 590 excl. VAT
Early Bird Ticket

Available until December 24, 2024

EUR 390 excl. VAT
The event is organized by the E3 magazine of the publishing house B4Bmedia.net AG. The presentations will be accompanied by an exhibition of selected SAP partners. The ticket price includes attendance at all presentations of the Steampunk and BTP Summit 2025, a visit to the exhibition area, participation in the evening event and catering during the official program. The lecture program and the list of exhibitors and sponsors (SAP partners) will be published on this website in due course.