This article was written by Clay Goldwein and John Nemoto of CGI Federal.
Yesterday, we outlined some of U.S. Customs and Border Protectionâs (CBP) challenges to their upcoming IT modernization project; today weâd like to suggest some steps that will help ease CBPâs transition to aÂ secureÂ hybrid cloud services model.
While CBP has a requirement forÂ secureÂ cloud adoptionâand implementing this strategy will help the agency reduce costs while gaining unprecedented agility and flexibilityâany shift to a new IT architecture is difficult. The move to the cloud will certainly facilitate the continued adoption of a SecDevOps-focused operational model, however, this shift requires significant effort and planning.Â Furthermore, the migration may be extra challenging to CBP given the vast number of legacy processes and services it must reconcile/reposition across multiple cloud environments, not to mention the logistics of trying to serve officers at 328 ports of entry and agents who safeguard 7,000 miles of land border, 95,000 miles of shoreline and patrol associated air and maritime spaces.
Obstacles to cloud adoption may arise in various forms. On the frontlines, agents and officers may need new or standardized applications to better perform their missions, while new back-office functions may require the introduction of multiple tools, processes and service providers. While no single tool, solution or service can address all of CBPâs challenges, a holistic approach to transformation that incorporates three primary phases can help grease the skids for the agencyâs transition:
1.)Â Assess:Â A successful switch to a cloud environment starts with CBP leaders defining the governance framework, identifying the stakeholders and building consensus around its goals and objectives. This information establishes a baseline for the current and future states of its security, financial, technical and operational models. It will also drive adoption by CBPâs 60,000-person staff and maximize service capability while ensuring the security and compliance of workloads and data.
2.)Â Transform:Â CBPâs future state governance model, modernization strategy and schedule should drive individual migration projects.Â Enterprise security, compliance and operational models must be instituted to manage new hybrid cloud technical and business processes. Transformation of traditional development, security and operational processes to a streamlined SecDevOps model that leverages cloud-native features like Infrastructure as Code to drive automation, reduce operational costs, and increase speed to delivery of new and innovative features.
3.)Â Manage:Â A secure, centralized hybrid IT management platform can deliver the needed governance and transparency for CBPâscloudenvironment as well as lead to continuous optimization and improvement. It also helps achieve operational efficiencies through the automated requisitioning, provisioning and billing/chargeback of cloud workloads and data.
Addressing CBPâs hybrid cloud challenges with this comprehensive enterprise/hybrid cloud strategy and operational framework can not only drive the success of the agencyâs hybrid cloud migration but also provide additional opportunities for modernization and transformation including successful implementation of SecDevOps processes.
(Clay Goldwein is a vice president at CGI Federal and serves as the companyâs DHS sector lead, and John Nemoto, also a vice president, leads the product management and business engineering practices for CGI Federalâs cloud and cybersecurity offerings and services)