Specifications include, but are not limited to: Public Cloud Brokerage Service DAS OIT is leading the effort to transform how IT services are delivered, maintained, and consumed in the State. A key outcome of this digital transformation is the development of cloud-based capabilities that will improve the quality of services, agility, and foster a culture of collaboration, accountability, and innovation. Within the Public Cloud Brokerage Service model, DAS OIT offers IaaS, PaaS, and vendor managed frameworks. These services are available on multiple public clouds: Microsoft Azure, Amazon Web Services, Oracle Cloud Infrastructure, Google Cloud Platform and IBM Cloud. The Cloud Smart Strategy requires any proposed customized applications[footnoteRef:4] running on an IaaS or PaaS public cloud from any of these providers to reside in the Brokerage Service. [4: Customized Applications: In terms of this Supplement, this term refers to applications that are specifically written, modified, or adapted for the State of Ohio.] IaaS Cloud Brokerage Service IaaS is the capability to provision processing, storage, networks, and other fundamental computing resources to deploy and run software, which can include operating systems and applications. The Customer does not manage or control the underlying cloud infrastructure but has control over the applications and databases. Depending on the domain, there could be limited control over selecting certain networking components (e.g., host firewalls). The goal of the IaaS Cloud Brokerage Service is to evaluate and provide the most optimal hosting environment in the State’s public and/or private clouds. In an IaaS scenario, the State would provision infrastructure assets, such as virtual servers, that are hosted in the State’s private or public cloud tenants. The Customer would then install operating systems and application software on that infrastructure and use it. IaaS Cloud Brokerage Service offers: Configuring network security groups and backups; Performing restores; Storage; Providing a direct network connection to the State of Ohio Computer Center from public cloud vendor locations; Managing and monitoring using the same tools as the private cloud; Patching of the operating system; Cloud utilization / cost analysis; Design consultation; Education; and Offering specific cloud expertise, when needed. Any activity at or above the middleware layer, including the application layer, is the responsibility of the Customer and is not covered under IaaS Cloud Brokerage Service. Please refer to the Cloud Services Responsibility Matrix above on page 6 for further details. PaaS Cloud Brokerage Service PaaS is an offering where a cloud service provider maintains the operating system and hosts a software platform (i.e., software that can be used to build and run applications). The Customer installs or creates applications on that platform, maintains the data, and uses the application. The capability provided by PaaS is the ability to deploy Customer-created or acquired applications onto the cloud infrastructure using programming languages and tools supported by the cloud service provider. In a PaaS scenario, the State would not manage or control the underlying cloud infrastructure including network, servers, operating systems, or storage. The Customer has control over the deployed applications, application data, and possibly application hosting environment configurations. PaaS Cloud Brokerage Service offers: Vendor management of cloud service provider, who is responsible for all layers of the technology stack through middleware (refer to the Cloud Services Responsibility Matrix above on page 6 for further details); Providing the initial framework for build and configuration; Service provisioning, implementation, monitoring and alerting; Role-based access control security; Enforcing base compliance policies; Active directory account integration, when appropriate; Assistance in service request resolution via the native cloud portal and the DAS OIT Customer Service Center; Cloud utilization / cost analysis; Design consultation; Education; and Offering specific cloud expertise, when needed. Any activity at or above the database layer is the responsibility of the Customer and not covered under the PaaS Cloud Brokerage Services. Please refer to the Cloud Services Responsibility Matrix above on page 6 for further details.
