Roadmap to SOA Governance

Report
Roadmap to SOA Governance
Saeed Abu Elnaj
Chief Technologist
Algorizm Technologies
7/17/2015
1
Agenda







7/17/2015
What is governance
A look at IT Governance
IT and SOA Governance
SOA Governance Arrangement Matrix
SOA Lifecycle and Governance
SOA Governance Pyramid
Steps Towards SOA Governance
2
SOA Governance Misconceptions


Misconceptions:
 SOA governance is governance of SOA, as if it is an IT asset
that requires governance
 SOA Governance = A Registry
 SOA Governance = A Set of Tools
SOA governance is
 An extension of IT governance
 IT governance in the context of SOA rather than the
governance of SOA
7/17/2015
3
Roadmap to SOA Governance





Start with understanding what governance is
Examine what IT governance is
Investigate IT and SOA Governance
Define the components of SOA governance
Develop a roadmap to SOA governance
7/17/2015
4
What Does Governance Mean
 The act, process, or power of governing
 Thefreedictionary.com
 Exercise of authority or control; a method or
system of government or management
 Dictionary.com
 The act, manner, functions, or power of
government
 Webster’s New World Dictionary
7/17/2015
5
Definitions Common Themes








Power
Act (action)
Authority
Control
System
Method
Process
Functions
7/17/2015

Clustering produces two
dimensions:
 Power, authority and control
 System, method, processes
and functions
6
“Anthropology” of Governance
Historical Anthropology and the forming of first government structures and empires
The triangle of power:
Economic
7/17/2015
Military
Religion or
Ideology
7
The Cornerstones of Governance
7/17/2015
9
A Take at Governance Definition



The empowerment of individuals, committees and organizational
entities to act, make decisions, and manage to achieve a desired
outcome
Empowerment comes from
 Organizational structure, business role and responsibility
 Business processes, business rules and policies
 Funding and incentives
 Infrastructure enablement (IT and otherwise)
To achieve a desired outcome we need to have:
 Measurements
 Control mechanism
7/17/2015
10
Why Governance
 Poor corporate governance led to Enron and


WorldCom’s failures and Tyco crises
Firms with good governance could expect an
increase of 10%-12% in market value
Professional investors are welling to pay 13%
to 25% more for stocks of firms with good
governance

7/17/2015
(McKinsey study)
11
The Need for SOA Governance


Without SOA governance you get a chaotic
situation:
 It is hard to find out what services are out there, where are
they deployed, how many are they, what do they do, and
who owns them
 Developers attempt to publish software modules as Web
services without instituted processes, structure, and
centralized registry
 The reuse essence of SOA cannot be possibly achieved
“SOA Governance isn’t optional—it’s imperative”
(Gartner)
7/17/2015
12
The ITGI IT Governance Definition
“IT governance is the responsibility of the board of directors and
executive management. It is an integral part of enterprise
governance and consists of the leadership and organizational
structures and processes that ensure that the organization’s IT
sustains and extends the organization’s strategies and
objectives”
“IT governance is concerned about two things: IT’s delivery of
value to the business and mitigation of risk”
The IT Governance Institute (ITGI)
http://www.itgi.org/
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
13
The IT Governance Questions
Any effective IT governance must address the following four
questions:
1. What decisions must be made to ensure effective management
and use of IT?
2. Who should make these decisions?
3. How will these decisions be made?
4. With what resources these decisions will be made? (Money and
technology)
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
14
What IT Decision Must Be Made
When clustering and aggregating IT decisions, IT governance must
address the following:
 IT principles
 IT architecture
 IT infrastructure
 Business application needs
 IT investment and prioritization
Source: “IT Governance” Peter Weill and Jeanne Ross
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
15
Who Can Make IT Decisions
 Business Monarchy
 IT Monarchy
 Duopoly
 Feudal
 Federal
 Anarchy
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
16
IT Governance Mechanisms
 Decision-making structures
 Org units and roles: Executive teams, committees, etc
 Alignment processes
 IT investment and evaluation process
 Architectural exception process
 SLA process, chargeback, and metrics
 Communication approaches




7/17/2015
Knowledge transfers
Information exchanges and dissemination
Announcements
Portal
Roadmap to SOA Governance; © Algorizm Technologies LLC
17
SOA and IT Governance



SOA is not an IT asset that needs
governance
SOA Governance is an extension of IT
governance
SOA governance is IT governance in the
context of SOA
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
18
SOA Governance Questions
Similar to IT governance questions that must be
addressed
1. What SOA decision must be made to ensure
effective management and use of SOA artifacts?
2. Who should make these decisions?
3. How will these decisions be made?
4. With what resources SOA governance will be
accomplished?
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
19
What SOA Decisions Must be Made





SOA architectural principals
 how do we go about deploying SOA artifacts
SOA Infrastructure
 where do we deploy SOA artifacts and what tools are
need to host and manage its artifacts
Services lifecycle management
 how do we manage SOA artifacts
The business needs for services
 who and how are SOA needs initiated
SOA investment and prioritization
 who pays for what and what should be done first
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
20
Who Should Make SOA Decisions


Business line:

Business executives

Business units stakeholders

Business services analysts

Domain owners
IT:

IT executives

SOA architect/enterprise architect

Data/information architect

System analyst

Security manager

Services architects

Process flow designer

Services assemblers

Services developers

Interoperability tester

Deployment manager

Services registrar (Registry and tools administrator)
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
21
SOA Governance Arrangement Matrix
SOA
Principles
SOA
Architecture
SOA
Infrastructure
Business
Services
Needs
SOA
Investment &
Prioritization
Business
Executives
IT
Eexcutives
Architects &
Designers
Assemblers &
Developers
Testers &
Deployers
Admins and
Monitors
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
22
Examples of SOA Architectural Principles
 Business drives services and services drive




technology
Reuse services before buy, buy before build
Services must have enterprise measures
Use coarse grain business services vs. too
granular
Use de jour/industry standards
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
23
The SOA Lifecycle and Governance
Design
Plan
Develop/Assemble
Run & Monitor
Test &
Deploy
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
24
Well, SOA Governance is Actually Not a Matrix,
It’s a Pyramid
Roadmap to SOA Governance; © Algorizm Technologies LLC
Roadmap to SOA Governance; © Algorizm Technologies LLC
Roadmap to SOA Governance; © Algorizm Technologies LLC
The “Who” Questions
Who Initiates &
Who Approves
Services
Design
Plan
Who Designs,
Architects &
Discovers Services
Run & Monitor
Who Develops, Integrates,
Assembles and
Orchestrates Services
Who Tests for Interoperability
and Deploys Business Services
Who develops SLAs with whom
Who Administers and Monitors Business Services
Who Assures Compliance with Standards
And Who assures adherence to SLAs
Roadmap to SOA Governance; © Algorizm Technologies LLC
Develop/Assemble
Test &
Deploy
Roadmap to SOA Governance; © Algorizm Technologies LLC
The “How” Questions
How to
Initiate Services
How Design, Architecture
& Discovering will be
conducted
Design
Plan
(Methodology)
How Development,
Integration, Assembly
and Orchestration Will
be Conducted
(Methodology)
Run & Monitor
How Interoperability
Testing and Deployment
Will be Conducted
(Methodology)
How Services Administration and Monitoring Will be
Conducted
How to Test for Compliance with Standards
And How to Assure Adherence to SLAs
Roadmap to SOA Governance; © Algorizm Technologies LLC
Develop/Assemble
Test &
Deploy
Roadmap to SOA Governance; © Algorizm Technologies LLC
“With What Resources”
Questions
Budget &
Prioritization
Funding for Development and/or
assembly of Business Services
Incentives and Disincentives in
SOA governance compliance
Design
Plan
Funding The Planning
& Requirements
Gathering For
Business Services
Run & Monitor
Funding for Testing and
Deployment of Services Incentives
and Disincentives in SOA
governance compliance
Funding for Running and Monitoring SOA Services
Roadmap to SOA Governance; © Algorizm Technologies LLC
Develop/Assemble
Test &
Deploy
Roadmap to SOA Governance; © Algorizm Technologies LLC
“With What Resources”
Questions
Strategic
Tools
Design, Architecture
and Discovery tools
Define Acceptable
Industry Standards
Development,
Integration, Assembly
and Orchestration Tools
Apply Defined Standards
Budgeting, planning,
performance and
financial monitoring and
reporting, and
requirements
management tools
Run & Monitor
Interoperability Testing and
Deployment Tools
Hardware and Software Infrastructure
e.g., application server
Services Administration, Monitoring, and Provisioning Tools
UDDI/SOA Registry and SOA Repository
Roadmap to SOA Governance; © Algorizm Technologies LLC
Design
Plan
Develop/Assemble
Test &
Deploy
A Note on SOA Industry Standards and
SOA Governance



Over 115 Standards related to SOA (Forrester Research)
Consider standards and specs in the context of your SOA
suite of products
The ones that are gaining traction in the industry








7/17/2015
SOAP 1.1
WSDL 1.1
WS-I Basic Profile 1.0 and 1.1
UDDI 3.0.2
WS-Security 1.0 or 1.1, WS-Coordination, WS-AtomicTransaction
WS-BPEL 2.0 or BPEL4WS
WSRP 1.0
WS-Policy, WS-PolicyAssertion, WS-PolicyAttachment
Roadmap to SOA Governance; © Algorizm Technologies LLC
35
SOA Governance Org Structure



The need for a new organizational unit



SOA Center of Excellence (IBM’s favorite term)
SOA Competency Center
SOA Governance Board
This Competency Center is the spine of the SOA
governance
Who should be in this competency center



7/17/2015
Business and IT executives
Business stakeholders and domain owners
IT SOA roles: Architects and designers, business analysts, services
assemblers, services developers, interoperability testers, deployment
manager, services registrar
Roadmap to SOA Governance; © Algorizm Technologies LLC
36
What SOA Competency Center Does
 Conducts SOA architectural reviews
 Establishes decision rights
 Coordinates SOA efforts and initiatives to ensure maximum




reusability
Manages the lifecycle of SOA artifacts
Monitors and measures the performance and utilization of
SOA artifacts
Establishes SOA best practices
Evaluates, recommends, and/or selects products and tools to
support the lifecycle of SOA artifacts
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
37
Examples of Specific Governance SOA
Registry Policy Questions






Restrict which services can be published
Who may publish services
With whose approval publishing is conducted
Under what conditions publishing can be
conducted
Who may access the registry
What service attributes are exposed
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
38
Steps Towards SOA Governance
 Develop SOA strategy and goals
 Develop SOA principals and policies
 Define SOA organizational structure
 Identify and define SOA business roles tailored to your





enterprise
Define responsibilities for above roles
Define governance processes (mechanisms)
Define behavior and reinforcement policies
Evaluate, select and deploy SOA technologies including SOA
repository and registry
Develop metrics to monitor and manage performance of SOA
artifacts
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
39
Q&A
7/17/2015
Roadmap to SOA Governance; © Algorizm Technologies LLC
40

similar documents