On-Premises vs. in the Cloud: Making the Switch
November 30, 2015 No CommentsFeatured article by Greg Keller, JumpCloud’s Chief Product Officer
The cloud. IT professionals hold differing opinions on it. Regardless of how they feel about it, the cloud is undeniably changing the way organizations operate and the trend is only gaining momentum. There is an appropriate amount of uncertainty as companies make the switch away from on-premises operations, especially by larger organizations that maintain the on-premises tradition in the supposed interest of keeping everything under their direct control. These same organizations often believe the many myths that surround the benefits of keeping everything on-premises. In this article, we’ll debunk some of those myths, including control, security, and cost-effectiveness.
One of the biggest concerns for organizations considering making the transition to the cloud is control. For companies that have largely managed ‘traditional’ on-premises software and infrastructure, there is a myth that cloud-based systems lack control the organization needs; for many companies, that’s a very scary thought. While there are some legitimate concerns with respect to control, they predominantly apply only to the largest organizations in the world. For a company maintaining its own datacenter and server farm, there still is an ongoing cost center including time and effort to keep it operational. Ultimately, using the cloud the company can deeply control the various components. For some organizations that is critical, if not a mandate (think government or heavily regulated organizations).
Related to considerations of control, some organizations are still interested in building their own software solutions. While bespoke applications may continue to be required to solve edge-case needs and extremely proprietary business problems, SaaS vendors have largely eradicated this need. The advantages to “build vs SaaS” relate to control needs. For instance, IT organizations often cannot specify the exact hardware combinations needed for cloud servers. With SaaS-based applications, you’re at the mercy of the available APIs or what software is being used. Many cloud providers are deepening their levels of control, but it still isn’t complete. The good news is that for most organizations, cloud providers are working hard to give their customers deeper control over their platforms, allowing a much wider array of trusted, specified software components.
Security is perhaps the quickest justification for companies wanting to maintain on-premises infrastructure. The cloud has been notoriously targeted for a lack of security. Startups are building incredible applications but aren’t yet focused on protecting the holes left as a result of continuous deployment of features to customers. The thinking is that if the service and its underlying software, servers and infrastructure are directly accessed via the open Internet, they must be more vulnerable. Having infrastructure behind a personal firewall is better, right? The answer isn’t as clear cut as it might seem, and in many cases security is likely to be better in the cloud where it is supported by a trusted hosting provider who, in many cases, will be more adept at securing infrastructures than an organization.
Most cloud providers spend extensive amounts of time and resources securing their infrastructure, and are often forced into deeper practices for regulatory compliance needs. From the server security to data security to application level security, cloud providers are building layers of security that IT or development organizations oftentimes don’t have the time to develop. There’s more good news: Cloud providers have the benefit of amortizing the cost of their security program across all customers, and further they often have the advantage of being able to recruit topnotch security experts because of the increased challenges, resources and infrastructure available. Unless an organization can match the level of effort that a cloud provider can expend against the security problem, it’s best to stick with the cloud.
Finally, there’s the matter of cost: Are organizations better off financially owning their own infrastructure, or having it hosted or SaaS-based? The common thought process is that cloud infrastructure is less cost-effective than on-premises solutions. This is based on the historical thinking that a capital purchase can be amortized over a long period of time as servers and applications could be used over multiple years in the past. The challenge now is that with growing computer and application demands, IT organizations are upgrading their solutions faster than ever. When upgrades and the quest for additional functionality is factored in, the costs quickly escalate. IT organizations also need to factor in maintenance and management efforts, and production-level staffing needs to ensure uptime and availability.
Comparatively, cloud providers have complex monitoring systems and, arguably, some of the most sophisticated recovery, failover, elasticity, performance and availability mechanisms in place. Internal efforts to maintain this level of constant support are often cost or manpower prohibitive. There is also the literal ‘cost of money’ as a further argument for the benefits of cloud services. Paying-as-you-go versus paying up-front enables organizations to put that money to work rather than tie it up in infrastructure. If all costs are calculated, it is likely that cloud infrastructure will turn out to be more cost effective.
For IT organizations and their executives, the process of moving to the cloud can be challenging, but the outcome is worthwhile. There are a number of variables to consider. While control, security and costs are generally at the top of the list, each organization is different. Each scenario is unique, but there is a very strong case to move to the cloud that will only continue to get stronger.
Greg is JumpCloud’s Chief Product Officer, overseeing the product management team, product vision and go-to-market execution for the company’s Directory-as-a-Service (DaaS) offering. The SaaS-based platform re-imagines Active Directory and LDAP for the cloud era, securely connecting and managing employees, their devices and IT applications.