云计算项目知识和技能要点
世界技能大赛 云计算
1. Work orgnization and management 工作组织和管理(10%)
1.1 To know and understand 知识
The individual needs to know and understand:
每个人都需要知道并理解:
- The relationships between different technologies and areas of expertise used in a public cloud deployment.
- 应用于公共云部署的不同技术与专业领域二者之间的关系。
- Interoperability requirements for each aspect of a systems deployment within a public cloud provider.
- 在一个提供公共云提的平台内,一个系统部署的各个方面之间的互操作性需求。
- The requirements of each group of stakeholders in the design of an IT solution using public cloud services.
- 利用公共云服务进行 IT解决方案的设计中,各组利益相关者的需求。
- Methods of Integrating an organization’s best practices and public cloud offerings to create application-specific deployments.
- 结合组织最佳实践与公共云服务创建针对特定应用部署的方法。
- Methods of evaluating, comparing and contrasting the wide range of possible solutions for each IT implementation
- 大范围评估、比较和对比针对一个 IT 实施项目可能的解决方案的方法。
- Methods of determining which solution is optimal for each organization taking into account internal best practices, business requirements, existing infrastructure, and resource expertise.
- 基于组织内部最佳实践、事务需求、现有基础架构和资源相关专业知识,决定哪一个才是最优解决方案的方法。
1.2 To be able to 技能
The individual shall be able to:
每个人应该能够:
- Identify common deployment models with public cloud providers and how those models can apply to organization-specific requirements.
- 识别公共云提供商平台的通用部署模型和如何能够将这些模型应用于特定组织的需求。
- Identify opportunities and create migrations plans to phase-in public cloud deployments and reduce risks.
- 识别机会并创建迁移计划以逐步进行公共云部署和降低风险。
- Create highly available, scalable, and secure IT architectural designs specific to each application, taking into account compute, storage, networking, database management, and deployment requirements.
- 基于计算、存储、组网、数据库管理以及部署需求的考虑,针对特定应用,创建高度可用的、可伸缩的以及安全的 IT 架构设计。
- Take advantage of public cloud provider solutions to reduce operational burden associated with service deployments.
- 利用公共云提供商的解决方案以减少与服务部署相关的操作负担。
2. Communication and interpersonal skills 沟通与人际交往技巧(10%)
2.1 To know and understand 知识
The individual needs to know and understand:
每个人都需要知道并理解:
- How to communicate across organizational teams to identify infrastructure requirements and architectural opportunities.
- 如何与跨组织的团队沟通以识别基础设施需求和架构机会。
- How to engage with business units to identify best practices for deployment and create a migration path to the public cloud.
- 如何与业务部门合作以确定部署的最佳实践并创建到公共云的迁移路径
- Methods and techniques for working with business stakeholders in meeting organizational and compliance related goals.
- 与业务利益相关者合作以达到满足组织性和规范性相关目标的方法和技术
- The bases for creating department and team-specific infrastructure designs that take advantage of public cloud capabilities and value-add services.
- 利用公共云功能和增值服务,创建部门和团队特定的基础架构设计的基础知识
2.2 To be able to 技能
The individual shall be able to:
每个人应该能够:
- Discover and document key requirements and how they relate to public cloud offerings.
- 发现并记录关键需求以及它们如何与公共云平台产品相互关联。
- Discover and document technology-specific opportunities to leverage public cloud offerings.
- 发现并记录利用公共云产品的特定技术机会
- Translate business goals and objectives into briefs, designs, and plans, and present such documents to stakeholders and management teams.
- 将业务目标和目标转换为摘要,设计和计划,并向利益相关者和管理团队提供此类文档
- Clearly map departmental and technology-specific requirements and goals to public cloud solutions.
- 明确将部门的、特定技术的需求和目标映射到公共云解决方案
- Using project-specific migration plans, facilitate the implementation of an organizational transition to public cloud resources.
- 使用特定项目的迁移计划,促进实现向公共云资源的组织性过渡
3. Problem solving, innovation, and creativity 解决问题,创新和创造力(20%)
3.1 To know and understand 知识
The individual needs to know and understand:
每个人都需要知道并理解:
- The role and importance of each layer of infrastructure design including, compute, storage, networking, database, caching, and application.
- 每个基础架构设计层的角色和重要性,包括计算,存储,组网,数据库,缓存和应用程序
- Various technology solutions to meet business objectives (e.g. different relational database solutions as well the use of NoSQL technologies for transactional data workloads)
- 各种满足业务目标的技术解决方案(例如,不同的关系数据库解决方案以及NoSQL技术在事务数据工作负载中的使用)
- Various storage capabilities including block level replication, network block device sharing, shared/clustered file systems, object storage, and storage caching solutions.
- 各种存储能力,包括块级复制,网络块设备共享,共享/集群文件系统,对象存储和存储缓存解决方案
- Various network architectures to facilitate communication with existing/legacy applications and environments.
- 各种网络架构,以促进与现有/遗留应用程序和环境的通信
- Automation methodologies and opportunities commonly used throughout the technical community.
- 整个技术社区中常用的自动化方法和机会
3.2 To be able to 技能
The individual shall be able to:
每个人应该能够:
- Evaluate, select and implement foundational cloud computing services such as compute, network, and storage.
- 评估,选择和实施基础云计算服务,例如计算,网络和存储
- Evaluate, select and implement advanced cloud computing services such as managed data services, caching services, and automated scaling and availability features.
- 评估,选择和实施高级云计算服务,例如托管数据服务,缓存服务以及自动扩展和可用性功能
- Evaluate, select and implement various network-related technologies to infrastructure design such as network communication protocols, sub netting, NAT, DNS, VPN, broadcast networking, and dynamic routing protocols.
- 评估,选择和实施各种与网络相关的技术,用于基础设施设计,如网络通信协议,子网,NAT,DNS,VPN,广播网络和动态路由协议
- Automate infrastructure creation and modification through the use of scripting or programming, and the use of infrastructure templates.
- 通过使用脚本或编程以及基础架构模板的使用来自动化基础架构创建和修改
4. Security 安全(20%)
4.1 To know and understand 知识
The individual needs to know and understand:
每个人都需要知道并理解:
- Best practices for securing systems and networks using authorizations, authentications, and accounting.
- 使用授权,身份验证和记帐来保护系统和网络的最佳实践
- Best practices for developing secure deployment and the ongoing monitoring of traffic and assets.
- 开发安全部署以及持续监控流量和资产的最佳实践
- Best practices for deploying, monitoring, and maintaining secure infrastructure.
- 部署,监控和维护安全基础架构的最佳实践
- Best practices for the creation and deployment of secure application designs for public cloud infrastructure.
- 为公共云基础架构创建和部署安全应用程序的方案设计的最佳实践
- The demarcation of responsibility for security between the cloud provider and the public cloud customer.
- 云提供商与公共云客户之间的安全责任划分
- The importance and intent of network traffic and resource isolation.
- 网络流量和资源隔离的重要性和意图
4.2 To be able to 技能
The individual shall be able to:
每个人应该能够:
- Design and implement authentication processes at a departmental and organizational level, controlling access to public cloud administrative capabilities and system access.
- 在部门和组织级别设计和实施身份验证过程,控制对公共云管理的能力和对系统的访问
- Develop policies and procedures for systems and application access to public cloud interfaces and services.
- 制定系统和应用程序访问公共云接口和服务的策略和过程
- Implement policies and procedures for auditing of public cloud activities and access.
- 实施审计公共云活动和访问的策略和程序
- Create internal prescriptive guidance and requirements for procedures necessary to create, update, remove and access public cloud infrastructure and resources.
- 为创建,更新,删除和访问公共云基础架构和资源所需的过程创建内部说明性指导和要求
- Implement service and technology specific security controls on resources running within a public cloud environment as well as utilization of services provided by an IaaS vendor.
- 对公共云环境中运行的资源实施服务和特定技术的安全控制,以及利用IaaS供应商提供的服务
- Engage with business, development, and leadership staff to identify, recommend, and implement security best practices while ensuring an efficient user experience.
- 与业务,开发和领导人员交流,以确定,推荐和实施安全最佳实践,同时确保有效的用户体验
5. Reliability, scalability, and elasticity 可靠性,可扩展性和弹性(20%)
5.1 To know and understand 知识
The individual needs to know and understand:
每个人都需要知道并理解:
- How business requirements translate to operational objectives in relation to resource constraints addressed by the use of public cloud features and services.
- 业务需求如何转化为与使用公共云功能和服务解决的资源约束相关的运营目标
- The principles and architectures for different availability/deployment models such as disaster recovery, high availability, blue-green deployments, global load balancing, and pilot light deployments.
- 不同可用性/部署模型的原则和体系结构,例如灾难恢复,高可用性,蓝绿部署,全局负载平衡和试验灯部署
- Application and service-specific availability requirements and nuances as they relate to systems and application availability.
- 与系统和应用程序可用性相关的应用程序和特定于服务的可用性要求和细微差别
- Network data flow and the corresponding relationship to systems availability.
- 网络数据流和系统可用性的对应关系
- Organizational and departmental business and technology goals related to system survivability and data durability in the event of different failure scenarios.
- 在不同故障情况下,与系统生存性和数据持久性相关的组织和部门的业务和技术目标
- How application, system, and network metrics can be used to define the implementation of available, scalable, and elastic architectures.
- 应用程序,系统和网络指标如何用于定义可用,可扩展和弹性体系结构的实现
- Different applications, systems, and protocol nuances and requirements necessary to automate the scaling, durability, and availability of infrastructure.
- 自动化基础架构的扩展,持久性和可用性所需的不同应用程序,系统和协议的细微差别和要求
5.2 To be able to 技能
The individual shall be able to:
每个人应该能够:
- Record, analyse, and interpret application, system, and network data to facilitate the recommendation of an appropriate architecture that sufficiently utilizes scalability and elasticity to meet the variable demands of internal and external users and systems.
- 记录,分析和解释应用程序,系统和网络数据,以促进适当架构的推荐,充分利用可扩展性和弹性来满足内部和外部用户和系统的可变需求
- Implement different availability, scalability, and durability models in accordance with application and system design requirements.
- 根据应用程序和系统设计要求实现不同的可用性,可伸缩性和持久性模型
- Design availability models that meet the business requirements of an organization, taking into account allowed recovery time and allowable service interruption parameters.
- 设计可用性模型,满足组织的业务需求,同时考虑允许的恢复时间和允许的服务中断参数
- Utilize public cloud services and features to aid the design and deployment of availability, durability, and scalability requirements.
- 利用公共云服务和功能来帮助设计和部署可用性,持久性和可扩展性要求
- Implement protocol, application, and system-specific designs to meet the performance and availability requirements of organizational units.
- 实施协议,应用程序和特定于系统的设计,以满足组织单位的性能和可用性要求
6.1 To know and understand 知识
The individual needs to know and understand:
每个人都需要知道并理解:
- Different infrastructure performance opportunities available through solutions such as caching, resource right-sizing, and vendor-provided services.
- 通过缓存,资源调整大小和供应商提供的服务等解决方案提供不同的基础架构性能机会
- Performance requirements and possible bottlenecks with infrastructure design.
- 基础架构设计的性能要求和可能的瓶颈
- Vendor-specific pricing opportunities as they relate to different public cloud offerings for optimizing costs.
- 特定供应商的定价机会,因为它们与不同的公共云产品相关,以优化成本
- Opportunities available during the creation of new applications or redesign of existing applications to take advantage of public cloud offerings such as server-less computing and microservice orchestration.
- 在利用公共云产品,如无服务器计算和微服务编排创建新应用程序或重新设计现有应用程序期间可用的时机
6.2 To be able to 技能
The individual shall be able to:
每个人应该能够:
- Analyse and interpret performance metrics from compute, storage, network, and application levels for use in public cloud infrastructure design objectives.
- 分析和解释计算,存储,网络和应用程序级别的性能指标,以用于公共云基础架构设计目标
- Utilize performance tuning techniques and packages to ensure optimal resource utilization.
- 利用性能调优技术和包来确保最佳的资源利用率
- Implement a microservice strategy to capitalize on technology advances in areas like container development.
- 实施微服务战略,以利用容器开发等领域的技术进步
- Pursue the decoupling of services to allow the separation of application components to facilitate a service-oriented architecture.
- 追求服务的分离以允许应用程序组件的分离,以促进面向服务的体系结构
- Recommend and implement database and storage solutions that best fit the needs of an application.
- 推荐并实施最适合应用程序需求的数据库和存储解决方案
7. Operational considerations 运营考虑因素(10%)
7.1 To know and understand 知识
The individual needs to know and understand:
每个人都需要知道并理解:
- The requirements of systems and applications in order to maintain functionality and availability.
- 系统和应用程序的要求,以保持功能和可用性
- System, network, and application metrics and how they apply to infrastructure durability, availability, and performance.
- 系统,网络和应用程序指标以及它们如何应用于基础架构的持久性,可用性和性能
- Response requirements, protocols, and procedures for various incidents including, security, availability, and performance-related incidents.
- 各种事件的响应要求,协议和过程,包括安全性,可用性和与性能相关的事件
7.2 To be able to 技能
The individual shall be able to:
每个人应该能够:
- Implement monitoring solutions to generate alerts and automate responses to various incidents.
- 实施监控解决方案以生成警报并自动响应各种事件
- Implement centralized metric collection and analysis for systems, network, and application information.
- 实施系统,网络和应用程序信息的集中度量收集和分析
- Implement a process to continually improve architectural designs by automating infrastructure configuration updates.
- 通过自动化基础架构配置更新,实施流程以持续改进架构设计
- Continuously monitor and review systems and applications for design improvement opportunities.
- 持续监控和审查系统和应用程序,以获得设计改进机会
- Continuously test for failure and design for resiliency.
- 持续测试故障和弹性设计
- Ensure cloud configurations are kept current and versioned.
- 将配置版本化并确保云配置保持最新
- Keep up to date with new services, procedures, and technology solutions offered by public cloud providers in order to optimize current and future deployments with the latest technology opportunities and best practices.
- 随时了解公共云提供商提供的新服务,程序和技术解决方案,以便利用最新技术机会和最佳实践优化当前和未来的部署
