UK Public Sector Cloud Marketplace

Chris Nesbitt-Smith

March 2024

Anecdata

Anecdotal evidence; information or evidence based on reports of individual cases rather than systematic research or analysis.

👴

🦍

💳🚫

🕹️

🗓️

(Arrhenius equation for activation energy)

AWSAzureGCPOther

🤒

    🚀 🌙    

(moonshot)
What if... 6-9 months could happen in an afternoon?

    🔋🔋🔋    

(batteries included)

🟰

👩‍💻

        🐘        

GOV.UK PaaS 2.0

⚔️
Call to arms

⚔️
Call to arms

Chris Nesbitt-Smith | cns.me

Hello I'm Chris Nesbitt-Smith, a consultant working with CDDO. I'm aware theres a drinking game, so to get my participation in that out the way here goes: artificial intelligence, transformation, cloud, Kubernetes, genAI, Containerization, DevSecOps , FinOps and agile.

A lot of my current work here is based on Anecdata and anecdotes, both my own and borrowed war stories from others in my echo chamber, I will get some details wrong, forgive me.

I've been in/around gov and public sector long enough to have experienced some of the issues in this presentation first hand, including being part of a skunkworks team creating what is still the Home Office AWS tenancy with one of the other contractors credit cards (it's not there anymore).

Gorilla activities aside, I'd like to think that commercial, governance and indeed threat actors have caught up with that and that wouldn't be possible in 2024.

And yet, we're still not fully at a point where cloud happens without credit cards leading to very sad commercial and compliance folk trying to catch up with what some well intentioned pesky technologists have gone and done.

after that has happened once, and everyones knuckles are rapped and commercial folk are wise to our game, we find ourselves with a single cloud vendor and unable to explore any other options with the same velocity.

Further cemented with an un-opinionated operating model from the cloud vendor, leaving departments and their integrators and partners re-inventing the wheel and developing a cottage industry of cloud operational teams, and struggling to keep on top of even basic cost/security/hygiene factors.

Case in point: Despite AI having a prime ministerial mandate, some departments despite having a relationship with Microsoft as many do, however without azure being their primary cloud, have been unable to safely utilize openAI in Azure many months after starting.

For a team to consume a non-incumbent cloud there is around a 6-9 commercial procurement process where all sorts of theatre is carried out to make the RDEL look like CDEL (or OPEX like CAPEX), agree MOUs, pick a framework, establish contracts.

Which takes a lots of activation energy to see that through. And that 6-9 month is just to get to the starting blocks, with some root credentials at the console, you've then got to figure out how to operate with identity, landing zones, governance, policy, guardrails, alerts and so on.

well the consequence is we have a split of spend that looks something like: 45% AWS, 45 Azure, 5 google, and 5% Other And without intervention, that is unlikely to dramatically change with the tail firmly wagging the dog

This results in a unhealthy market, with limited negotiating power and contractual commitments that are one sided and even medium term unsustainable growth expectations.

So heres the moonshot What if with the right people in the room 6-9 months could happen in an afternoon? What if we could treat cloud like a utility and buy at whole public sector spend levels?

What if we could use that well over a billion pounds a year to negotiate unheard of discounts? What if we could set some standards, and have the vendors provide a batteries included cloud? For example

What if a parish council could enjoy the same discount and benefits that the big five departments get? And anyone with a gov.uk email address could immediately get sanctioned generous self-destructing free tier access for learning and development and create proof of concepts in cutting edge cloud tech.

What if without a devOps in sight my cloudflare worker could securely talk to my openAI in azure, an amazon s3 bucket and my google big table all without any egress charges or secret stores.

to pre-empt what is probably on your minds by this point, no this absolutely not GOV.UK PaaS 2.0

So what do I want to get out of this? I'm going to be holding some in person sessions with the cloud vendors next month, I'd love to have some real projects and services in the room, to talk about the challenges you face.

So if you're a public sector organization that has some war stories, would like to get started in a public cloud, new to you public cloud, or get a better handle on what you've already got then please reach out, I'd love to hear from you.

I've got my conference trousers on to make me easy to spot and I'll be hanging around for a little while so if any of this sounds interesting or awful then please do come find me in person, otherwise I can be found in the cross government Slack in the hash cloud channel