One ‘gotcha’ I’ve experienced when discussing cloud ecosystems is that the term ‘managed services’ has drastically different meanings depending on the context. This is unfortunate as it adds extra effort to get to truly valuable conversations around the power of cloud. Below I’ll spell out some of these different meanings in the context of Amazon Web Services (AWS) by answering three questions:
A: AWS is offering to serve as your outsourced I.T. Infrastructure Team (no DevOps).
AWS itself offers to be an outsourced team for the same services offered above, however they usually stay out of the DevOps business. This means you'll need another vendor to manage application development and the usual capabilities of DevOps (automation, some aspects of provisioning, builds and deployment, etc). AWS will maintain the:
From a security standpoint relationship is called the AWS Shared Responsibility model, and is described visually below:
A: They are offering to serve as your outsourced I.T. Infrastructure Team and your DevOps Team.
When your company does not have a dedicated capability in cloud infrastructure and DevOps, you’ll lean into an AWS Managed Services vendor to fill the gap. Generally speaking, the vendor always offers:
One important element that may be absent here is application feature and security support. While this is a service that can be procured from certain AWS managed service providers, the majority of managed services contracts assume that you have an internal software development team that is focused on those facets of your application. Even if feature development is not taking place, security updates and updates to keep up with changing devices (new versions of phones, etc.) are an important consideration.
When it comes to security, returning to the AWS shared responsibility model above, the consulting partner should take on a number of activities (described visually below):
Importantly, none of these activities should be taken for granted; this is what Metal Toad provides and some other AWS cloud consulting partners may have different exclusions or fees for service. However, this can provide a jumping off point or talking point where you can achieve clarity around who does what.
A: The product abstracts away the underlying infrastructure so your developers can solely focus on application development.
Most cloud services can be broken up into a rule of thirds as so:
When talking about products that are ‘fully managed service’, we are mostly talking about the ‘Application’ services above. In some cases, ‘Platform’ services fit in this category as well.
Let us know if you’d like to learn more about cloud services, and the complex approaches to achieving a right-sized outsourcing model for your I.T. teams when the capabilities are not available in house.