Cloud managed services
Anticipate, innovate, deliver
For over 25 years, THIS has helped global organizations to overcome cloud complexities through cost effective and future-ready solutions. Our cloud managed services offer performance, scale, reliability, and security helping you to focus on business growth and innovation. With resilient cloud managed frameworks, industry agnostic toolkits and best-in class integration solutions, we can help streamline and expedite your cloud initiatives enabling quicker time-to-market outcomes.
How we help
Cloud managed services
- Cloud Monitoring
- Cloud Operations
- FinOps
- DevOps
- DevSecOps
- SRE
Cloud monitoring
Our expertise
- App Management Services: Drive operational efficiency with our app management Services for seamless deployment, scaling, and updating
- App Performance Management: Boost your application's reliability and user experience with deep diagnostics and actionable insights
- Risk Assessment: Minimize potential threats with our comprehensive risk assessments for precise vulnerability identification and mitigation
- System Observability: Gain end-to-end system visibility with real-time analysis and troubleshooting
- Service Monitoring: Ensure consistent service quality with our monitoring solutions, deploying real-time status updates, outage detection, and recovery
Tools & solutions
- Open Telemetry based monitoring, third-party tools – LogZ.io, Dynatrace, Prometheus, Grafana
- Distributed tracing to identify application performance bottlenecks using instrumentation with tools like Dynatrace
Cloud Operations
Our expertise
- FinOps: We help control, predict, and optimize cloud spend, accelerate improvements and promote efficient cloud application usage
- DevOps: We power your transformation and ensure business agility without compromising software stability or organizational cohesion
- DevSecOps: We work with your team to assess your DevSecOps maturity and provide a clear roadmap for your transformation journey
- SRE: Experience enhanced monitoring, performance evaluation, and engineering blueprints for reliable, efficient cloud operations with our SRE services
Tools & solutions
-
FinOps:
- Sentinel
- Ansible
- Terraform
-
DevOps:
- THIS DevOps roadmap templates
- Torry Harris DevOps Framework
- DevOps Toolkit (Curated list of third-party DevOps tools and frameworks)
- Torry Harris DevOps Reference Implementation
-
DevSecOps:
- Vulnerability scanning tools
- Container validation tools
- API security testing tools
- Application validation and code signing
- Software composition analysis
- Code Static Analysis tools
-
SRE:
- Packer (Infra as a code)
- Jenkins (CI/CD)
- Docker (Container & Virtualization)
- Kubernetes (Container & Virtualization)
- JIRA (Ticketing)
- BitBucket (Deployment)
- Cloud Formation (Deployment)
- Confluence (KMS)
- AWS Security (AI Ops & Security)
- Cloud Conformity (AI Ops & Security)
- AWS IAM (AI Ops & Security)
- Dynatrace (Monitoring & Alerting)
- ClouHealth (Monitoring & Alerting)
FinOps
Approach:
- Forecast: Create the necessary savings plan to reduce the total AWS/GCP/Azure cloud costs
- Plan: Work closely with the business to plan the monthly cost based on the launch events or any infrastructure upgrades
- Scale: Scale the infrastructure for stipulated time period based on inputs from business
- Audit: Monthly costs are reviewed in greater depth to identify the cost leakage
- Cleanup: Jenkins jobs are in place to continuously clean up the stale or orphan resources
DevOps
Approach:
-
Define Objectives and Scope:
- Understand the specific services you provide to clients and identify the pain points or areas for improvement
- Set clear objectives for DevOps implementation, such as improving service delivery speed, quality, customer satisfaction, and resource utilization
-
Customer Impact Analysis & Readiness
Assessment:
- Analyze how DevOps implementation will impact your customers' experience. Identify potential disruptions and plan strategies to minimize negative effects during the transition
- Evaluate your organization's existing processes, tools, and culture to determine readiness for DevOps adoption
- Identify gaps that need to be addressed before transitioning
-
Tool Selection and Integration:
- Select DevOps tools that align with your service offerings and cater to customer needs. Integrate these tools into your existing processes and infrastructure
-
Service-Specific CI/CD Implementation:
- Customize your CI/CD pipeline to accommodate the unique requirements of different services
- Implement automated testing, deployment, and monitoring tailored to each service
-
Pilot Service Rollout:
- Choose a specific service or a subset of customers to pilot the new DevOps processes
- Gather feedback, monitor performance, and make necessary adjustments
-
Scalable Infrastructure and Resource
Management:
- Implement Infrastructure as Code (IaC) and dynamic resource provisioning to efficiently handle varying customer demands
- Scale resources as needed to accommodate increased workloads
-
Continuous Monitoring, Improvement &
Support:
- Set up comprehensive monitoring and observability for both internal processes and customer services
- Provide timely support to customers, addressing issues and maintaining high service availability
- Well defined DR strategy for DevOps tools
-
Compliance and Security Integration:
- Ensure that DevOps practices adhere to any regulatory requirements or security standards relevant to your services
DevSecOps
Approach:
-
Security Assessment and Planning:
- Conduct a detailed assessment of current DevOps practices, process maturity and security posture
- Identify vulnerabilities, potential risks, and outcomes for improvement – Develop a customized DevSecOps strategy and roadmap
-
Secure Architecture Design & Coding
Practices:
- Collaborate with development and operations teams to design secure software architectures with tools
- Scanning of source code and artefacts to check for vulnerabilities, bring in solution for managing the secrets if exposed in source code
- Integrating the security scans in each stage of the pipeline to reduce the time of security check
- Conduct code reviews and static analysis to identify and remediate vulnerabilities in each stage of the CI/CD pipeline
-
Continuous Security Testing:
- Implement automated security testing, including static analysis, dynamic analysis, and interactive application security testing (IAST)
- Integrate security testing into the CI/CD pipeline to identify and address vulnerabilities in the codebase
- Automate the security checks in each stage of a pipeline using tools which can support the developer to act and action immediately
-
Infrastructure Security:
- Implement Infrastructure as Code (IaC) security best practices
- Offer expertise in configuring and securing cloud environments and container orchestration platforms
-
Threat Modeling:
- Work with development teams to conduct threat modeling exercises to identify potential attack vectors
- Provide recommendations for mitigating identified risks
-
Identity and Access Management (IAM):
- Assist in designing and implementing robust IAM policies and controls
- Ensure proper authentication, authorization, and least privilege access
-
Compliance and Regulatory Support:
- Help clients align their DevSecOps practices with relevant compliance standards (e.g., GDPR, HIPAA)
- Provide guidance on implementing security controls to meet regulatory requirements
-
Incident Response Planning:
- Develop and document an incident response plan specific to DevSecOps environments
- Provide guidance on how to detect, respond to, and recover from security incidents
-
Security Monitoring and Automation:
- Set up continuous monitoring and alerting for security events and anomalies
- Implement security automation for tasks like vulnerability scanning, patch management, and configuration drift detection
-
DevSecOps Toolchain Integration:
- Assist in selecting and integrating security tools into the DevOps toolchain
- Ensure seamless communication and data flow between security and development tools
-
Compliance Auditing and Reporting:
- Conduct regular security audits to assess adherence to security practices
- Provide detailed reports and recommendations for improving security posture
SRE
Approach:
- Determine :Determine core values, responsibilities, and service levels, and obtain buy-in from stakeholders
- Define :Identify and determine maturity levels, tools and frameworks, benchmarks, skills coverage, and monitoring solutions
- Build :Create a roadmap with broad SRE skills coverage and assign SMEs for each service
- Introduce :Evaluate the existing technology, conduct an architectural review to sign off on proposed services, and automate the deployment pipeline
- Structure :Embed SRE engineers in cross-functional teams that own the end-to-end product lifecycle
- Deploy :Eliminate toil and shift to a more traditional SRE model encompassing production activities
- Continuous Improvements :Introduce accelerators and frameworks for proactive improvements, service improvements, and cost optimizations
Torry Harris built an innovative Digital Cloud Services Platform (DCSP) for BT to enable new, agile squads to support customer-facing colleagues.
Torry Harris leveraged PaaS cloud-native, open-source technologies to create a scalable and distributed platform that allows a high degree of autonomy and innovation.
- Overall time to market for cloud-based services optimized by 40%
- Onboarding of BT squad members reduced from two weeks to three hours
- Cut API deviation by 90% thereby saving millions in reworking costs
- 704 developers were onboarded to use BT’s DCSP within six months
- A production version of GitLab was delivered in five days instead of 60-90 days
- Automation and GitOps eliminated 100% of human errors
On the client front there were quite a few challenges in terms of rolling out new features and bug fixes while maintaining high availability and reliability. The client was looking for an efficient way to publish the change events on AWS. The key requirement was “quick to the market” with minimum delays from the platforms & applications teams by reducing technical complexity, cloud sprawl & the other associated costs.
Torry Harris deployed a centralized SRE team that can act as a shared service for the client’s domain. The team was self-sufficient and was able to identify and work on the backlog of reliability, costs and security improvements. Their involvement was valued across the board from the project design to CAB planning meetings, their moto was/is to automate the end-to-end journeys by introducing tools & technologies.
- 60% faster rollouts with better accuracy
- 60% flexible rollout frequency
- 95% automation on resource utilization
- 60% automation in software patching (ongoing)
- High costs of running EKS
- Need to centralize UI to monitor & control the pods
- Need to scale number of pods without ops intervention
- Need to streamline services
- THIS initiative to reduce the cost of running EKS
- Centralized UI to monitor & control the pods
- Low-cost bespoke solution implemented for pods management
- Grouped services and restricted instance size on custom criteria with ability to manage these independently
- Provided a resource utilization road map that helps deliver more value at optimal cost
- 45% reduction in maintenance costs
- £171K savings in 2022
- £94K savings in 2023