Implementing stringent security and compliance controls, like GxP, across your enterprise cloud ecosystem, while ensuring the agility of the DevSecOps process requires significant expertise and a lot of time to design, build, and maintain custom operations tooling. In this session, you learn how Turbot used AWS services to simplify IT operations to provide continuous compliance to major life sciences customers. You also hear how life sciences companies like Novartis Institutes for Biomedical Research (NIBR) have become agile, ensured control, and automated best practices using automated policy controls to configure, monitor, and maintain their cloud resources. By doing this, they became more supportive of their researchers' application stack. You also learn how data scientists and core researchers can take advantage of the power of DevOps and cloud computing without compromising enterprise security or data protection requirements.
3. Novartis Institutes for BioMedical Research
Novartis Institutes for BioMedical Research (NIBR)
Drug discovery and early development
~6,000 Scientists
~90
New Molecular Entities
~400
Research projects
Immuno-Oncology
Oncology
Ophthalmology
Respiratory Diseases
Neuroscience
Autoimmunity, Transplantation & Inflammation
Cardiovascular & Metabolism
Infectious Diseases
Musculoskeletal
4. Novartis Institutes for BioMedical Research
Our technical ecosystem
40 PB
↗ 30% YOY
300 engineers 400 informaticians
Many apps
under-the-radar
400 supported apps
Bleeding edge + legacy
5. Novartis Institutes for BioMedical Research
How can we achieve agility and velocity
across a broad range of needs
while ensuring control?
6. Novartis Institutes for BioMedical Research
Unique needs for each use case
Distributed
Computing
Big cloud
compute jobs
External Cloud
Services
SaaS/PaaS
vendor services
Applications
and Services
Where
applications live
External Partner
Collaboration
Secure
rendezvous
Informatics
Labs
Data science &
informatics
Tech Labs
Cloud sandboxes
Distributed
Computing
Big cloud
compute jobs
External Cloud
Services
SaaS/PaaS
vendor services
Applications
and Services
Where
applications live
External Partner
Collaboration
Secure
rendezvous
Informatics
Labs
Data science &
informatics
Tech Labs
Cloud sandboxes
8. Novartis Institutes for BioMedical Research
Multi-account model
Diversity Autonomy
Unique
limits
Access
control
Limited
blast
radius
Cost
Mgmt
WiNG (https://commons.wikimedia.org/wiki/File:The_Venetian_Macao_Food_Court.jpg)
“The Venetian Macao Food Court”, https://creativecommons.org/licenses/by-sa/3.0/legalcode
9. Novartis Institutes for BioMedical Research
Template based on function/control needs
Distributed
Computing
Big cloud
compute jobs
External Cloud
Services
SaaS/PaaS
vendor services
Applications
and Services
Where
applications live
External Partner
Collaboration
Secure
rendezvous
Informatics
Labs
Data science &
informatics
Tech Labs
Cloud sandboxes
10. Novartis Institutes for BioMedical Research
Multi-account model at Novartis
Common
Services
Partner
Collaboration
Product A
(test)
Product B
(dev/prod)
Product A
(prod)
Product A
(dev)
Applications and Services
Informatics
Lab
Distributed
Computing
Tech
Lab
Consolidated
Billing $Automated
Guardrails
Networking
Partner
Collaboration
Informatics
Lab
Distributed
Computing
Tech
Lab
Product A
(test)
Product B
(dev/prod)
Product A
(prod)
Product A
(dev)
Applications and Services
Consolidated
Billing $Automated
Guardrails
Networking
11. Novartis Institutes for BioMedical Research
Automation unlocks benefits
Multiple
accounts
Autonomy
Agility and
innovation
Automation
Enables
30. Novartis Institutes for BioMedical Research
Tech Labs
Distributed
Computing
External Partner
Collaboration
External Cloud
Services
Applications and
Services
Informatics
Labs
Cloud sandboxes
Big cloud
compute jobs
Data science &
informatics
SaaS/PaaS
vendor services
Secure
rendezvous
Where
applications live
Where is NIBR now?
170 accounts
+ 10/month
Represents new work per our “cloud first for new” strategy
(migrations to follow later)
400 w/console access
31. Novartis Institutes for BioMedical Research
Up to 1000 plates 1536 wells/plate 1k to 5k cells/well
200 to 2000 features/cell
Per screen
• 100-1000 billion observations
• 5-50 TB data
Occasionally up to
• 15 trillion observations
• 1 PB data
1 screen
*Multi-Parametric Data Analysis
MPDA*–one of many big data problems
32. Novartis Institutes for BioMedical Research
Transformed our species’ first population-scale medical genomics effort into actionable data for drug discovery in weeks
September October 2017
PublicNIBR
July: UK Biobank data available:
nearly half a million genomes with health records
9 days
October 15th: Im lab transcriptome association ties Neale lab
GWAS results to putatively causal genes; result deposited in S3
Credit:HaeKyungIm
http://hakyimlab.org/
August 20th: Neale lab “rapid GWAS” released.
Genome-wide mapping of >2,000 traits by 10M
genetic sites 26 billion linear regressions
Credit:ClaireChurchhouse
andBenNeale
http://www.nealelab.is/
October 25th: putative gene targets for over a dozen
diseases distributed to NIBR drug discovery teams
Credit:BrantPeterson
(Novartis)
October 16th: transcriptome association data available
within a NIBR AWS account
October 18th: preliminary analyses of transcriptome data
complete (5 billion QC runs in 2 days in Spark on EC2)
October 19th: EC2/S3/Spark internal data
browser app published to informaticians
33. Novartis Institutes for BioMedical Research
What people think
… hard to
explain just
how excited …
Thanks for bringing the
AWS console safely into
developer’s hands
… awesome it is to
have autonomy! … control our own
environments was an
extreme enabler …
34. Novartis Institutes for BioMedical Research
Automation drives high productivity
Succeeding with a very small (and amazing!) team
TBH
35. Novartis Institutes for BioMedical Research
Tips and lessons learned
Transformation
• Separate use cases
• Tech Lab
• Console access
• Inclusive team
Multi-account
• Essential for diversity
• Automation required
• API access important
Networking
• Networking is hard
• VIF limits
• IP allocation
kenrobbins.link/reinvent
36. Novartis Institutes for BioMedical Research
Summary
👉 Use multi-account if you have any appreciable variety and agility needs
👉 Account-as-a-container enables rapid org transformation to cloud
👉 Multi-account requires automation
👉 Software-defined operations enables agility and control
37. Novartis Institutes for BioMedical Research
• NIBR
– Cloud Team
– Network Operations
– Cyber Security
– Information Security & Risk Management
– Research Computing Platforms
– Multi-Parametric Data Analysis (MPDA) team
– Core Data & Analytics team
– Scientific Data Analysis team
– Our entire user community
• Turbot
– Support
– Product Management
– Executive team
• AWS
– Solution Architects
– Enterprise support team
– Account management
Acknowledgements