Opening Keynote – Dr. Werner Vogels, Chief Technology Officer, Amazon.com and Customers
Ron Hose, Chief Executive Officer and Founder at CoinsPH.com
Ernest Cu, Chief Executive Officer at Globe Telecom
Robert San Juan, Vice President for Corporate Information Management at Jollibee Foods Corporation
Alfred Lo, Head of Product Engineering at Voyager Innovation
13. INNOVATION ACROSS VIRTUALLY EVERY INDUSTRY
98% REDUCTION IN TIME
FOR CLINICAL TRIALS
MILLIONS OF CONCURRENT
PLAYERS AT LAUNCH
PETABYTES OF REALTIME
DATA PER SEASON
REPLAY BILLIONS OF
TRADES INSTANTLY
19. 47%
30%23%
PHP 114Bn
(USD 2.4Bn)
Gross Service Revenues, 2015
53Mn
Mobile Customers, 4Q 2015
4Mn
Broadband Customers, 4Q 2015
29.1%
70.9%
MDS RMS
Investments in non-core telco
products
Strong partnerships with global players
Prepaid RMS
8.2%
22.4%
25.3%
18.6%
25.5%
Postpaid
RMS
17.4%
25.8%
56.9%
TMGlobe TNTSmart Sun
#1 Prepaid
Brand
#1 in
Mobile
Data
#1
Postpaid
Brand
Formidable telco backed by
two strong industry players
Passionate about innovation Market leader in Postpaid,
Prepaid, and Mobile Data
20. Globe leverages the best cloud services available.
Virtual servers Cloud storage Database-as-a-service
Big data Cloud security Auto-scaling Load balancing
Operations intelligence Direct Connect
21. Large AWS Footprint in the Philippines
• 100+ applications with 1100+
instances running on AWS
• 800 Terabyte total footprint
• Direct connection to the
AWS Data Center in
Singapore at 10Gbps
23. Virtualized Infrastructure
• Allows Globe to quickly create
instances to support infrastructure,
platform and applications.
• Hybrid IT Strategy for more flexibility.
• Most of our AWS footprint are in the
lower level (IaaS). As our cloud strategy
matures, we will explore higher levels
of cloud computing to maximize its full
potential.
Infrastructure
Platform
Software
24. Software-Defined Network as our Next Bold Step
SDN decouples services from the underlying
physical infrastructure:
• Evolution of network technologies, standards
and services have made them complex,
costly and inflexible. Moving IT and network
physical infrastructure into SDN allows
Globe to start simplifying.
• SDN also enables completely new ways of
building services, capabilities, and new
business models, with better time-to-market
and scaling.
25. Strengths of AWS
• Large community of IT practitioners globally who support other users
• Allows Globe to give more value to customers through consistent
AWS price reductions
• Enables Globe to optimize costs. USD 3M worth of savings for 2015
projects
• Customer-centric approach. AWS is a partner, more than a vendor.
• Imparted Globe best practices in Cloud computing, allowing us to
establish our own Cloud Center of Excellence
42. TWO NEW EBS VOLUME TYPES BUILT FOR THROUGHPUT
THROUGHPUT
OPTIMIZED HDD
(ST1)
UP TO 500MB/S
$0.045 PER GB/MONTH
COLD HDD
(SC1)
UP TO 250MB/S
$0.025 PER GB/MONTH
43. THE INDUSTRY’S BEST PRICE/PERFORMANCE
BLOCK STORAGE FOR BIG DATA WORKLOADS
PROCESSING
LOGS
STREAMING
DATA PROCESSING
DATA ANALYTICS
WITH MAP/REDUCE
DATA
WAREHOUSING
LESS FREQUENTLY
ACCESSED
48. Started Using AWS since Q1 2012
Elastic Load
Balancing
Amazon
EC2
Amazon
S3
Amazon
RDS
Amazon
EBS
49. Old
- Large upfront CAPEX
- Fixed investment
- Lengthy process
- Expensive failure
New
- Minimal CAPEX / OPEX only
- Pay as you use
- Immediately available
- Fail fast, Fail cheap
59. BROADEST SET OF ACCREDITATIONS & CERTIFICATIONS
GLACIER VAULT LOCK
& SEC RULE 17A-4(F)
27018
60. BROADEST SERVICES TO SECURE APPLICATIONS
NETWORKING
VIRTUAL
PRIVATE
CLOUD
WEB
APPLICATION
FIREWALL
61. BROADEST SERVICES TO SECURE APPLICATIONS
NETWORKING
VIRTUAL
PRIVATE
CLOUD
WEB
APPLICATION
FIREWALL
IDENTITY
IAM ACTIVE
DIRECTORY
INTEGRATION
SAML
FEDERATION
62. BROADEST SERVICES TO SECURE APPLICATIONS
NETWORKING
VIRTUAL
PRIVATE
CLOUD
WEB
APPLICATION
FIREWALL
ENCRYPTION
KEY
MANAGE-
MENT
SERVICE
CLOUDHSM SERVER-
SIDE
ENCRYPTION
ENCRYPTION
SDK
IDENTITY
IAM ACTIVE
DIRECTORY
INTEGRATION
SAML
FEDERATION
63. BROADEST SERVICES TO SECURE APPLICATIONS
COMPLIANCE
CONFIGCLOUD
TRAIL
SERVICE
CATALOG
CONFIG
RULES
INSPECTOR
NETWORKING
VIRTUAL
PRIVATE
CLOUD
WEB
APPLICATION
FIREWALL
ENCRYPTION
KEY
MANAGE-
MENT
SERVICE
CLOUDHSM SERVER-
SIDE
ENCRYPTION
ENCRYPTION
SDK
IDENTITY
IAM ACTIVE
DIRECTORY
INTEGRATION
SAML
FEDERATION
64. BROADEST SERVICES TO SECURE APPLICATIONS
AMAZON INSPECTOR: NOW GENERALLY AVAILABLE
COMPLIANCE
CONFIGCLOUD
TRAIL
SERVICE
CATALOG
CONFIG
RULES
INSPECTOR
NETWORKING
VIRTUAL
PRIVATE
CLOUD
WEB
APPLICATION
FIREWALL
ENCRYPTION
CLOUDHSM SERVER-
SIDE
ENCRYPTION
ENCRYPTION
SDK
IDENTITY
IAM ACTIVE
DIRECTORY
INTEGRATION
SAML
FEDERATION
KEY
MANAGE-
MENT
SERVICE
66. WHAT’S BEING
ASSESSED?
NETWORK, VMS, OS
& APPLICATION
CONFIGURATIONS
BUILT-IN
CONTENT LIBRARY
CHECK COMMON
SECURITY
STANDARDS &
VULNERABILITIES
DETECT & REMEDIATE SECURITY ISSUES EARLY & OFTEN
WITH AMAZON INSPECTOR
67. WHAT’S BEING
ASSESSED?
NETWORK, VMS, OS
& APPLICATION
CONFIGURATIONS
BUILT-IN
CONTENT LIBRARY
CHECK COMMON
SECURITY
STANDARDS &
VULNERABILITIES
DETAILED
LISTS
DETAILED
DASHBOARD
DETECT & REMEDIATE SECURITY ISSUES EARLY & OFTEN
WITH AMAZON INSPECTOR
68. WHAT’S BEING
ASSESSED?
NETWORK, VMS, OS
& APPLICATION
CONFIGURATIONS
BUILT-IN
CONTENT LIBRARY
CHECK COMMON
SECURITY
STANDARDS &
VULNERABILITIES
DETAILED
LISTS
DETAILED
DASHBOARD
FULL AUDIT
TRAILS
TRACK WHAT TESTS
WERE PERFORMED
WHEN AND THEIR
RESULTS
DETECT & REMEDIATE SECURITY ISSUES EARLY & OFTEN
WITH AMAZON INSPECTOR
73. END TO END CONTINUOUS DELIVERY WITH ELASTIC BEANSTALK
SPIN UP
ENVIRONMENT
QA
ENVIRONMENT
DEPLOY
APP
BUILD
APP
TEST
APP
QA
APP
74. APP
JAVA, .NET, PHP,
NODE.JS, PYTHON,
RUBY, GO
CONTAINER
DOCKER,
MULTI-
CONTAINER
COMPONENTS OF APPS & ELASTIC BEANSTALK
75. APP
JAVA, .NET, PHP,
NODE.JS, PYTHON,
RUBY, GO
CONTAINER
DOCKER,
MULTI-
CONTAINER
AMI,
APP SERVER,
WEB SERVER
PLATFORM
COMPONENTS OF APPS & ELASTIC BEANSTALK
76. APP
JAVA, .NET, PHP,
NODE.JS, PYTHON,
RUBY, GO
INSTANCES AUTO-
SCALING
CONTAINER
DOCKER,
MULTI-
CONTAINER
LOAD
BALANCING
AMI,
APP SERVER,
WEB SERVER
HEALTH
CHECKS
PLATFORM
COMPONENTS OF APPS & ELASTIC BEANSTALK
77. PLATFORM UPDATES: A SHARED RESPONSIBILITY
JAVA, .NET, PHP,
NODE.JS, PYTHON,
RUBY, GO
INSTANCES AUTO-
SCALING
CONTAINER
DOCKER,
MULTI-
CONTAINER
LOAD
BALANCING
AMI,
APP SERVER,
WEB SERVER
HEALTH
CHECKS
PLATFORMAPP
78. CAN WE REMOVE MORE OF THE
MAINTENANCE BURDEN FOR WEB APPS?
79. PLATFORM UPDATES FOR ELASTIC BEANSTALK
SAFELY AND AUTOMATICALLY KEEP YOUR WEB APP PLATFORM UP TO DATE
80. KEEP YOUR APPLICATION PLATFORM UP-TO-DATE, AUTOMATICALLY
STAY IN CONTROL OF PLATFORM UPDATES
SAFELY PERFORM UPDATES WHILE MAINTAINING AVAILABILITY
MANAGED PLATFORM UPDATES FOR ELASTIC BEANSTALK
93. AWS LAMBDA: INTERNET-SCALE COMPUTE PLATFORM
DEPLOY YOUR CODE IN SECONDS
SUB-SECOND METERING
NO SERVERS TO PROCURE, PROVISION OR MANAGE
94. MOBILE
CHAT APP
AD DATA ANALYTICS
AND ROUTING
MOBILE APP
ANALYTICS
IMAGE CONTENT
FILTERING
REAL-TIME VIDEO
AD BIDDING
NEWS CONTENT
PROCESSING
GENE SEQUENCE
SEARCH
CLOUD
TELEPHONY
DATA
PROCESSING
WEB
APPLICATIONS
WEB APPLICATIONSTHREAT INTELLIGENCE
AND ANALYTICS
NEWS CONTENT
PROCESSING
GAME METRICS ANALYTICS
SERVERLESS WEB APPLICATIONS
96. NODE.JS
WEB APP
SERVER-SENT EVENT
STREAMING RESPONSE
QUER
Y
S
3
LAMBDA
CASCADE
FUNCTION N
LAMBDA
CASCADE
FUNCTION 0 LAMBDA
COUNTING
FUNCTION 0
USER
LAMBDA
COUNTING
FUNCTION 0
LAMBDA
COUNTING
FUNCTION 0
LAMBDA
COUNTING
FUNCTION 0
WEB UI CASCADE PROCESS
SERVERLESS WEB APPLICATIONS
101. OVER 200 MILLION USERSOVER 4 BILLION ITEMS STORED
MILLIONS OF ADS
PER MONTH
130+ MILLION NEW
USERS IN 1 YEAR
150+ MILLION
MESSAGES PER
MONTH
STATCAST USES BURST SCALABILITY
FOR MANY GAMES ON A SINGLE DAY
OVER 5 BILLION ITEMS OVER 200 MILLION MESSAGES
PROCESSED DAILY
COGNITIVE TRAINING 5+ MILLION
REGISTERED USERS
WEARABLE AND
IOT SOLUTIONS
170,000 CONCURRENT
PLAYERS
102. APIS EMAIL MESSAGING
NOTIFICATION MONITORING ENCRYPTION
SERVICES NOT SERVERS: A BROAD SERVERLESS PLATFORM
AMAZON S3
STORAGE
AWS LAMBDA
FUNCTIONS
AMAZON DYNAMODB
DATA STORE
105. CORE COMPONENTS FOR BIG DATA WORKLOADS
DATA STORE
OF RECORD
S3
HIGH PERFORMANCE
DATABASES
RDS
DYNAMODB
ANALYTICS
CLUSTERS
HADOOP ON EMR
SPARK ON EMR
PREDICTIVE
ANALYTICS
MACHINE LEARNINGELASTICSEARCH
SERVICE
ELASTICSEARCH DATA
WAREHOUSE
REDSHIFT
STREAMING
DATA
KINESIS STREAMS
107. Coins.ph - Background
● Founded in 2014 and operating from Manila, Philippines
● Leading mobile wallet providing financial services with a social element
→ there are more Facebook accounts than bank accounts!
Our challenges as financial services provider:
❏ Data integrity and compliance
❏ Uptime and consistent performance
❏ Agility, speed and innovation
108. Why AWS? 99.98% Uptime
● As a fast-moving startup, we
chose AWS for the breadth of
services and quick time to market.
● Value of AWS Cloud in its
responsiveness, reliability and
security features ensuring the
confidentiality of customer
information
AWS enables a micro-architecture built
on top of fault tolerant services
109. Results
⇒ Coins.ph launched in 2 days by plugging into AWS, compared to months
building out infrastructure
⇒ Cost savings of $15,000 per month.
⇒ Start-up cost savings of $50,000(e)
⇒ 99.98% uptime
⇒ Our team aggregates and analyses data on demand, pivots and tries different
solutions for customers rapidly without committing resources
110. Next steps with AWS
Amazon Redshift and Hadoop
- Improving our marketing efforts by effectively creating new user clusters
and spotting new trends
- Processing historical data at several levels to identify and analyse key
data characteristics: SQL queries, new algorithms
⇒ Loaded 48 million records in 8 minutes on Amazon Redshift
116. KINESIS STREAMS
BUILD CUSTOM APPLICATIONS TO
COLLECT & ANALYZE STREAMING DATA
REAL TIME STREAMING DATA WITH AMAZON KINESIS
117. KINESIS STREAMS
BUILD CUSTOM APPLICATIONS TO
COLLECT & ANALYZE STREAMING DATA
KINESIS FIREHOSE
EASILY LOAD STREAMING
DATA INTO AWS
REAL TIME STREAMING DATA WITH AMAZON KINESIS
118. KINESIS STREAMS
BUILD CUSTOM APPLICATIONS TO
COLLECT & ANALYZE STREAMING DATA
KINESIS FIREHOSE
EASILY LOAD STREAMING
DATA INTO AWS
ELASTICSEARCH INTEGRATION
REAL TIME STREAMING DATA WITH AMAZON KINESIS
119. KINESIS ANALYTICS
RUN STANDARD SQL QUERIES
OVER STREAMING DATA
KINESIS STREAMS
BUILD CUSTOM APPLICATIONS TO
COLLECT & ANALYZE STREAMING DATA
REAL TIME STREAMING DATA WITH AMAZON KINESIS
KINESIS FIREHOSE
EASILY LOAD STREAMING
DATA INTO AWS
ELASTICSEARCH INTEGRATION
139. S3DYNAMODB
MOBILE ANALYT ICS
SNS
AMAZON COGNIT O
API GAT EW AY
LAMBDA
LAMBDA
LAMBDA NOTIFICATIONS
MOBILE DEVICE MOBILE BACKEND
RDS
DATA AND
CONTENT
ANALYTICS
THE DUALITY OF DEVICES
140. S T O R E & S Y N C
D A T A
S A F E G U A R D
A W S C R E D E N T I A L S
G U E S T
A C C E S S
S O C I A L I D E N T I T Y
& L O G I N
AMAZON COGNITO: A HIDDEN GEM
141. Y O U R I D E N T I T Y
P O O L
S T O R E & S Y N C
D A T A
S A F E G U A R D
A W S C R E D E N T I A L S
G U E S T
A C C E S S
S O C I A L I D E N T I T Y &
L O G I N
AMAZON COGNITO: A HIDDEN GEM
142. EASY USER MANAGEMENT
LAMBDA DRIVEN WORKFLOWS
MULTI-FACTOR AUTHENTICATION
EMAIL AND PHONE NUMBER VERIFICATION
FULLY MANAGED IDENTITY POOLS WITH AMAZON COGNITO
145. Extract value from
device data
Augment devices’
constrained onboard
resources
Augment devices’
constrained
environments
compute
storage
Big Data
Shadow
State
Apps
offline
WHY CONNECT DEVICES TO THE CLOUD?
146. Run code in the cloud,
and update it without
deploying firmware
updates
Run code in the cloud, and
take action in physical space
through one or more devices
Secure device data, even
when the device operates
in unsecured physical
space.
bidirectional
policy
WHY CONNECT DEVICES TO THE CLOUD?
147. Many SDKs &
Tools
Alternate Protocols Scalability Security &
Management
Integration with Cloud and
Mobile Applications
CONNECTING DEVICES TO CLOUD APPLICATIONS REQUIRES
UNDIFFERENTIATED HEAVY LIFTING.
148. AWS IOT
Securely connect one or one-billion devices to AWS, so they can
interact with applications and other devices
149. AWS IOT
DEVICE SDK
Set of client libraries to
connect, authenticate and
exchange messages
DEVICE GATEWAY
Communicate with devices via
MQTT and HTTP
AUTHENTICATION
AUTHORIZATION
Secure with mutual
authentication and encryption
RULES ENGINE
Transform messages
based on rules and
route to AWS Services
AWS Services
- - - - -
3P Services
DEVICE SHADOW
Persistent thing state
during intermittent
connections
APPLICATIONS
AWS IoT API
DEVICE REGISTRY
Identity and Management of
your things
151. Statcast Personal Finances
Healthcare
Digital
Web E-commerce
App Platform
Digital Content
Media Web SitesWeb CRM
Digital Media
Digital Services
Education Analytics
FROM EXPERIMENTS TO DIGITAL TRANSFORMATION
152.
153. THE JOURNEY TO AWS IS A WELL TRODDEN PATH
DEVELOPMENT
& TEST
ALL TOGETHER NEW
APPLICATIONS
DIGITAL
ANALYTICS
MOBILE
DC MIGRATION
MISSION
CRITICAL APPS
ALL IN
1 2 3 4
155. HYBRID AS A STEPPING STONE
Integrated networking
Hybrid app deployments
Integrated networking
Hybrid app deployment
Integrated DevOps Management
Integrated DevOps Management
Realtime data integration
integrated resource management
Integrated networking
Integrated DevOps Management
Integrated networking
Data integration
Hybrid app deployment Integrated networkingIntegrated networking
Integrated security
data integration
Integrated Networking
Automated and integrated back-ups
156. ON-
PREMISES
AWS
BROAD SERVICES FOR HYBRID APPLICATIONS
Single-Tenant
Compute
Bring Your Own
Image/License
Simultaneous, Self-Service
Provisioning of Many VMs
Integration with Existing
Management Tools
Massive Scale
Import / Export
Isolated Network
Across Regions
Fully Isolated
Network Posture
DNS-Based Global
Load Balancing
Network Forensic
Tools
Web Application
Firewall
Isolated Network
within Region
Private Connections from
Your DC to AWS
Network
Performance Tiers
Global Content
Delivery Network
Security Info & Event
Management (SIEM) Integration
Provider-Enabled
Encryption Services
Centralized Key
Management
Automated Security
Assessment
Rich, Role-Based
Access Controls
Hardware Security
Module (HSM) Support
Active Directory (AD)
Integration / AD-aaS
Track Resource
Inventory and Changes
Bulk Object Delete and
Data Lifecycle Mgmt Policies
Customer Ownership
Of Data
Many Scalable
Database Engines
Data
Archival
Simple Import of
Massive Data Amounts
Customer Control
Over Data Locale
Elastic File
System
Database Migration
and Conversion Tools
Gateway – Cached
Volumes
Create and Standardize
on Best Practices
Automate Operations
Management
Release Software
Using Continuous Delivery
Monitor Resources
And Applications
Centralize and Simplify
Software Deployments
Build, Publish
and Manage APIs
Managed Source
Control
Integration with Existing
Management Tools
Data
Warehouse
Integrated
Compute
Integrated
Networking
Integrated
Security & Access
Data Integration &
Lifecycle Mgmt
Resource and
Deployment Mgmt
157. A STRATEGIC,
PHASED MIGRATION
2014 2015 2016
E.G. INNOVATION LABS, MOBILE APP PILOTS, HACKATHONS
E.G. ONLINE BANKING, STREAM DATA PROCESSING
E.G. MOBILE BANKING APP
EXPERIMENTATION
DEVELOP & TEST
PRODUCTION
171. V
“VMoney subscribes to Amazon’s standard cloud
infrastructure service as it offers the robustness, reliability,
stability, global redundancy, cost efficiency and most
importantly, world-class security on which VMoney’s
solutions are predicted, the standards of which no local
data center can even attempt to match.”
Ralph Santos
President and CEO, VMoney