So we have experience with AWS, we have experience with
Azure and we have some experience with Google Cloud
Platform.
It’s not that Mastercard isn’t in the cloud already, it is. But
when you start taking the entire plant and move it, we want
to make sure that the security controls, which CTP has been
helping ratify, get extended into the cloud — and where
appropriate, actually removed, because there are better
ones in the cloud today.
Now, the next phase is to start building out a cloud man-
agement office. Our cloud management office was created
early last year. It is now getting the appropriate checks and
audits from finance, the application teams, the architecture
team, security teams and so on.
18 | THE DOPPLER |
WINTER 2019
As that list of prioritized applications comes through, they
have the appropriate paved path, checks and balances. If
there are any exceptions, each gets fiercely debated and
will either get a pass or it will not. But even if it does not, it
can still sit within our on-premises version of the cloud, it’s
just more protected.
As we route all the traffic, that is where there are going to
be a lot of checks within the different network hops that it
has to take to prevent certain information from getting out-
side when it’s not appropriate.
Gardner: We hear folks like Paolo describe their vision of
what’s possible when you can use the cloud providers in an
orchestrated, concerted and value-added approach. Other
people in the market may not understand what is going on
across multi-cloud management requirements. What would
you want them to know, Robert?