Professional Documents
Culture Documents
Advantage
Six Reasons Power Leaders
Are Moving to Cloud
GE Power
10%
5%
Enterprise Software
IT Services
0%
-5%
-10%
2014
2015
2016
2017
2018
2019
Source: Gartner webinar: Living in a World of Hybrid IT, Ed Anderson, September 24, 2015
Public
Cloud
32.5%
On
Premises
28%
Private Cloud
39.5%
According to Gartner
Analyst David Mitchell
Smith, To date, there
have been very few
security breaches in the
public cloud most
breaches continue to
involve on-premises data
center environments.5
The Cloud Advantage
Urgency driven
by Board of
Directors
Make it their
#1 Priority
Gartner, The Top Ten Cloud Myths, David Mitchel Smith, October 1, 2014, Gartner Foundational June 30, 2015
Traditional
On-Premise Approach
Cloud
Approach
Positive
Cloud Impacts
Architecture
Design and
Implementation
Code Development/
Testing/
Deployment
Cloud-based microservices
encourage code reuse. Provisioning
a new application environment
by making a call to a cloud service
API is faster than a form-based
manual process by several orders
of magnitude. Deploying code to
that new environment via another
API call adds more speed. Adding
self-service and hooks to teams
continuous integration/build server
environments adds even more
speed.7
Security
Capabilities
Infrastructure
Maintenance
and Support
Asset Connectivity
and Management
Identification
Inspection
Monitoring
Continuous
Monitoring
Developers
Design, Develop
& Deploy
Connectivity
Assets
Analytics
Industries
Access
Authorization
Data
Lifecycle
Predix Machine
Software /
Analytics
Platform
Hardening
Services
Services
Enterprise
Systems
Energy
Operations
UI / Mobile
Applications
Cloud Foundry
Healthcare
Data Infrastructure
Transportation
Industry
Platform
Asset Optimization
Governance
& Certification
Vetting
Segmentation
Isolation
Resilience
The PredixTM cloud solution is projected to extend the life of RasGas assets,
as well as lower operating costs through greater efficiencies. This Software
Defined Operations will provide RasGas with deeper insights into their plant
operations to enable more forward looking decisions, in turn providing inputs
for how to manage their business operations.
RasGas Company Limited, one of the worlds premier integrated Liquefied Natural Gas (LNG) enterprises, established in 1993
The Cloud Security Alliance Cloud Controls Matrix (CCM) is specifically designed to provide fundamental security
principles to guide cloud vendors and to assist prospective cloud customers in assessing the overall security
risk of a cloud provider (GE Digital - Predix PaaS). The CCM provides a controls framework that gives detailed
understanding of security concepts and principles that are aligned to the Cloud Security Alliance guidance in 16
domains. CCM also provides a customized relationship to other industry-accepted security standards, regulations,
and controls frameworks such as the ISO 27001/27002, ISACA COBIT, PCI, NIST, PCI and NERC CIP.
Developed by the International Service Organization for Standards (ISO), this specifies the requirements for
establishing, implementing, maintaining and continually improving information security within the organization.
Once certification is attained, it provides users of the service comfort that security standards are being followed,
thereby reducing time and resources needed to address customer-mandated audits/reviews.
SOC 2 Type 1
Developed by The American Institute of Certified Public Accountants (AICPA), a Service Organization Control
(SOC) report provides insight on internal controls and risks to Users for services provided by a third party service
organization (GE Digital - Predix PaaS). SOC Type 1 reports is point in time assessment and reports on fairness of
managements description on the processes and design of the controls.
SOC 2 Type 2
Developed by AICPA, a Service Organization Control (SOC) report provides insight on internal controls and risks
to Users for services provided by a third party service organization (GE Digital - Predix PaaS). SOC Type 2 reports
on fairness of managements description on the processes and design of the controls (test of effectiveness of
controls) throughout a specified period.
FedRAMP
Administered by US General Services Administration (GSA), Federal Risk and Authorization Management Program
(FedRAMP) is a government-wide program that provides a standardized approach to security assessment,
authorization, and continuous monitoring for cloud products and services. Once certified, it would provide
government agencies greater confidence in using the GE Digital - Predix PaaS.
HIPAA
Enforced by The Office for Civil Rights, Health Insurance Portability and Accountability Act (HIPAA) protects the
privacy of individually identifiable health information. This certification would provide Predix customers that store
and manage patient health information greater confidence in using the GE Digital - Predix PaaS.
The U.S. government regulates the transfer of information, commodities, technology, and software considered to
be strategically important to the U.S. in the interest of national security, economic and/or foreign policy concerns.
Non-compliance with export controls can result in severe monetary and criminal penalties on both an individual
and corporations, including the loss of government contracts and inability to export items.
PCI
Compliance with the Payment Card Industrys Data Security Standard (PCI DSS), means that your systems are
secure, and customers can trust the service provider with their sensitive payment card information.
50 million
data elements
GE monitors daily for
our customers fleets
of GE and non-GE
equipment toward no
unplanned downtime
Network
Infrastructure
Zone Committed
Zone Planned
$1 Trillion
industrial assets
GE secures and
monitors continuously
Predix Machine:
Integrating On-Premise Needs with Cloud Computing
The vision of the Industrial Internet is to
connect brilliant machines, analytics and
people in a way that enables both asset
and operations optimization with benefits
ranging from improved fuel utilization to
pushing the performance of individual assets
through predictive analytics that can learn
how equipment degrades more accurately.
Due to the demands of storage and compute
requirements, most of this will occur in
the cloud.
However, there are control systems and
software required to be on-premise to
consolidate data with machine sensors and
On Controllers
Cloud
Predix
Predix Cloud
On Sensor Nodes
Predix Cloud
oud
On Cl
emise
On Pr
Direct to Cloud
Gateway
Gateway
Gateway
IT / OT
Protocols
Sensor/
Device 1
Sensor/
Device n
Machine Controller
Enables industrial and commercial assets that
previously operated stand-alone to be connected
to the cloud for data collection and analytics.
Sensor Nodes
10
11