Blog Posts Business Management

COVID’s ‘Next Normal’ Fuelling Cloud Migration: The 7 Steps Guide

Blog: NASSCOM Official Blog

The COVID-19 pandemic is accelerating the Digital Transformation journey of enterprises, both large and small. Fundamental to this transformation will be three main technologies: cloud computing, big data analytics and cyber security.

@NASSCOMR recently published a report “SMB Cloud Adoption in India: Towards a Digital First Nation” that analyses the interest in cloud, adoption and maturity levels for SMB users and non-users.

The report was released at a webinar on COVID’s ‘Next Normal’ Fuelling Cloud Migration – an important theme that resonates very well with the report findings.

Based on the panel discussion on the cloud migration journey and the best practices that SMBs can follow, I have attempted to capture the key points below.

Note: This article does not cover all aspects of cloud migration, but will serve as a guideline. While I have attempted to categorise the migration journey into specific buckets, it is by no means linear; many of these steps would need to be carried out in parallel.


    • Vital to understand interconnects & interdependencies of application-server mesh; also interdependencies with multiple layers of an application – so you know which servers have to move to cloud as well
    • There may be servers that are end-of-life and so you may need upgrades (green field) or legacy machines
    • Automation would help standardise configurations for multiple servers
    • Anticipate hiccups – compatibility issues with software esp. operating systems; outdated OS that you may need to upgrade; modernization of software for the applications, new requirements, etc.
    • Understand Cloud Adoption Frameworks of various cloud service providers
    • Depending on the type of applications to move to cloud & the kinds of workload – compute, storage, network – decide on the type of service – IaaS, SaaS or PaaS

Not all workloads/applications need to move to the cloud. The 7 Rs approach will help you decide if a particular application is/isn’t suitable for cloud environment:

    • Ensure applications get very secure and flexible connectivity (public & private) and are available to the users all the time – direct impact on UX
    • Operational consistency: Lack of a vertical-specific, standard framework for security & compliance
    • Advanced threats:
      • User access: Decide on who can access; how do you give access; what is the level of access; authentication, etc.
      • Application access: Malware threat. There are tools and services available with cloud providers that restrict unauthorised access/usage
      • Data leak: Most important. Where the IP or data exchanged mechanism that is not proper, you can use DLP (Data Loss Prevention) software
    • Information visibility: Mobile devices & edge computing is leading to information being widely dispersed. You will need policies to decide where to supply information, what information is given to what kind of an authorised user, etc.
    • Compliance: Ensure standards like ISO27001, FEDRAM, PCI, HIPAA, SOX, etc. are in place
      • Data: Three kinds of checks: Data localization policies (country-specific); Data sovereignty (data is subject to the laws of the country where it is located); Information access

          Security & Compliance is the joint responsibility of three stakeholders – the customer implementing cloud; SaaS provider; and Cloud providers


Phase I: Do a lift & shift of applications with minimal changes to ensure that the team is comfortable with the new environment

Phase 2:

          Have a good migration strategy: A good team with right skills, cloud architects, security skills, get management buy-in & ownership

          Ensure that you are following DevOps Automation practices and using Infrastructure-as-a-Code while executing the migration

    • Cost control & optimization:
      • Very crucial to understand cost attributes of cloud platform – how costs change from one instance site to another. Invest in training and learning about the cost attributes
      • Lack of visibility on cost:
        • Every application on cloud has to have a person/team owning it, even if it is PoC or shared service. Cost has to be shared/divided across different BUs or attributed to an IT services team. Do not leave anything untagged
        • Publish dashboards and make the information available on real-time basis; have alerts when costs deviate too much

Ensure that you train your resources for cloud environment; it is not same as on-prem. Budget for training resources so you can make the best use of cloud functionalities

You can access the webinar recording at: and the report at:


* There are variations in the number of Rs: 5 Rs (Gartner), 6/7 Rs (AWS). I have retained 7 as this is what was discussed in the webinar


Please share your feedback at:

The post COVID’s ‘Next Normal’ Fuelling Cloud Migration: The 7 Steps Guide appeared first on NASSCOM Community |The Official Community of Indian IT Industry.

Leave a Comment

Get the BPI Web Feed

Using the HTML code below, you can display this Business Process Incubator page content with the current filter and sorting inside your web site for FREE.

Copy/Paste this code in your website html code:

<iframe src="" frameborder="0" scrolling="auto" width="100%" height="700">

Customizing your BPI Web Feed

You can click on the Get the BPI Web Feed link on any of our page to create the best possible feed for your site. Here are a few tips to customize your BPI Web Feed.

Customizing the Content Filter
On any page, you can add filter criteria using the MORE FILTERS interface:

Customizing the Content Filter

Customizing the Content Sorting
Clicking on the sorting options will also change the way your BPI Web Feed will be ordered on your site:

Get the BPI Web Feed

Some integration examples