Box distributes the world’s leading cloud content management (CCM) platform that powers 70% of 95K + businesses and Fortune 500 companies. Our platform enables customers to safely manage their content, automate predictable and repetitive tasks, and build workflows to collaborate across both internal and external teams.
In addition, it enables customers to meet with data privacy, security, regulatory, data residency and specific requirements of other countries such as Box Zone, Box Governance and Box KeySafe.
To deliver all these amazing capabilities, we created a set of CCM Platform Services using a hybrid, multi-cloud architecture. This means that we strategically consume and manage cloud infrastructure resources in both cloud data centers and the public cloud. It presents many operational challenges for secure access to our infrastructure, provides efficient cloud resource management operations, ensures our cloud infrastructure is in a healthy state, monitoring and validating access, and analysis of costs and Performs adaptation.
Addressing these challenges holistically is key to ensuring that we have secure and compliant cloud environments that are operationally efficient.
This will be the first in a series of posts that will describe our journey to deliver a box cloud management platform (CMP) to tackle these operational challenges. Before you dive into the details, first define some words and concepts.
What is a Cloud Management Platform (CMP)?
The exact definition of CMP depends largely on who you talk to. We have defined it as an integrated product or software that provides for the management of one or more capabilities required to provide visibility and control of public, private and or hybrid cloud environments. Capacities between CMPs can also vary, so we have defined the five key capabilities that are required based on our hybrid, multi-cloud architecture and the operational challenges that they require:
Multi-Cloud Identity and Access Management defines how we securely enable single sign-on and role-based access control for console and API access key management. For secure access to our cloud infrastructure resources, we must reach the right resource, right resource at the right time.
Capacity lifecycle management defines core orchestration and automation of capacity in bare metal, OpenStack, Kubernetes and supported cloud provider resources. This capability enables an efficient and expandable way to securely, reliably provision, repurchase, irrevocably update, and decommission resources in any supported private and public cloud providers.
It provides audible records to perform appropriate change control processes, including validation of cloud infrastructure and resources used to support our CCM platform services.
Platform Health consists of 3 major areas:
Proactive Monitoring: First, we continuously monitor real-time and non-real-time outages, health and safety-related events during our cloud infrastructure.
Visibility: Secondly, visibility into the customer experience so that we can detect and mitigate issues affecting specific enterprises / users.
Infrastructure Control: and last, providing control over our infrastructure to facilitate capacity expansion / contraction, updates, and recovery from disasters or outages. This capability provides the delivery of instant notifications or alerts and most importantly is the ability to recover outages, degraded services or planned maintenance windows for any of the cloud infrastructure platforms we use.
Compliance and security define how we continuously monitor, validate and reevaluate our implementation of the “Monitor of List Privileges”, support our compliance requirements, and ensure that our cloud resources define our The security policies are configured accordingly. Box is committed to providing the best in class compliance, security and data protection for our customers (see Box compliance details). This capability ensures that we are reaching that commitment.
Cost and capacity management defines
Cost and capacity management defines how we properly track, budget and forecast consumption of cloud infrastructure resources. This capability assures that all of our supported cloud providers have sufficient visibility to enable forecasting, budgeting and forecasting of infrastructure and services consumed in production, staging, and development environments, and at the project, service, and platform level But tracks the realities.
the journey begins.