Click here to close now.


Microservices Expo Authors: Liz McMillan, Yeshim Deniz, Pat Romanski, Elizabeth White, Lori MacVittie

Related Topics: Government Cloud, Microservices Expo, Containers Expo Blog, Agile Computing, @CloudExpo, Cloud Security

Government Cloud: Blog Feed Post

Selling to Government (Especially DoD) – It’s Not All About YOU!

My job is all about finding commercial solutions that will solve government problems


My job is all about finding commercial solutions that will solve government problems. Some of my favorite work experiences have been when I can connect a new technology to an existing government problem! Talk about satisfying! Although every company is unique in what it offers, the process is often similar. First, I strive to understand what the company can do. Then, I translate that ability into something that is applicable to DoD. And finally, I look for the place within DoD where that solution is needed. That may sound obvious, but from the perspective of DoD, it’s 100% backwards. And that difference in perspective can often derail the process. So bear with me while I explain.

sellingDuring my years on Active Duty, I concentrated on requirements and capabilities. I knew that defining my requirements was the first essential step that would lead to my success as a war fighter. It was often tempting to jump ahead on the process and start listing the solutions I needed. But I knew that I would never get far that way.

First, I knew that I was usually several generations behind on what the “art of the possible” was. As much as the movies like to show DoD with up to date capabilities, what we actually had in the field was way behind. Given that DoD spends a fraction of what Industry spends on R&D, that makes sense. Keeping my requirements clear and factual ensured that I didn’t self-select a lower-grade solution.

Secondly, the acquisition folks would never let me get away with writing specifications based on anything but my basic, actual requirements. There are plenty of examples where military “requirements” went uncontested and after the acquisition process completed, the final purchase was for something MUCH more expensive than it needed to be. That’s a big NO-NO in DoD and there is lots of oversight to prevent that from happening. Now more than ever!

Linking these requirements to the resulting war fighting capability is the piece of the process that is most important when trying to get funding. As a C5ISR expert, I had to learn how to make my seemingly endless list of requirements make sense to the folks that had decision-making power over the funding. These folks are mostly interested in what these requirements bring to the fight: the capabilities that will be achieved. Getting my message across depended on linking my requirements to the capabilities that would enable success in a military mission.

Now, overlay on the above Company X, who is really good at making Widget Y. Widget Y does something really cool, and Company X wants to sell Widget Y to DoD. I learn about Company X and how to use Widget Y, and I find a place in DoD where they might need that capability. A meeting is set up, and Company X visits the warfighter and gets their chance to showcase Widget Y. But Company X can’t get the message across! Because Company X is so in love with Widget Y they can’t stop and look at the requirement objectively and offer their educated inputs on how to satisfy that requirement to achieve the capability that is needed.

Every parent that drops off their 5 year old on the first day of kindergarten truly believes that they have just done something really wonderful for that school. It’s not until the first parent-teacher conference that it even occurs to them that their child might not be a perfect, 100% value-added addition to the class! So it is for Company X. But unlike the parent, Company X is not guaranteed a seat in the class!

DoD really and truly wants to hear from Company X, because they know that Company X is smarter than they are about their particular type of technology. But DoD only wants to hear how that technology can apply to fulfilling their previously identified and prioritized existing requirements. DoD is NOT interested in helping Company X figure out where to stuff their solutions.

To make this type of interaction between DoD and Industry successful, the company needs to be prepared to do some homework BEFORE they go in. They need to understand, as much as they can, what DoD needs. They need to be prepared to really listen when DoD talks. And then they need to be ready to interact with DoD to brainstorm ideas and offer expert advice. Obviously, the desired outcome is that Widget Y might be a solution that can help. But that’s something that can only be determined by clearly addressing the requirements first!

Read the original blog entry...

More Stories By Bob Gourley

Bob Gourley, former CTO of the Defense Intelligence Agency (DIA), is Founder and CTO of Crucial Point LLC, a technology research and advisory firm providing fact based technology reviews in support of venture capital, private equity and emerging technology firms. He has extensive industry experience in intelligence and security and was awarded an intelligence community meritorious achievement award by AFCEA in 2008, and has also been recognized as an Infoworld Top 25 CTO and as one of the most fascinating communicators in Government IT by GovFresh.

@MicroservicesExpo Stories
Containers are changing the security landscape for software development and deployment. As with any security solutions, security approaches that work for developers, operations personnel and security professionals is a requirement. In his session at @DevOpsSummit, Kevin Gilpin, CTO and Co-Founder of Conjur, will discuss various security considerations for container-based infrastructure and related DevOps workflows.
Manufacturing has widely adopted standardized and automated processes to create designs, build them, and maintain them through their life cycle. However, many modern manufacturing systems go beyond mechanized workflows to introduce empowered workers, flexible collaboration, and rapid iteration. Such behaviors also characterize open source software development and are at the heart of DevOps culture, processes, and tooling.
Between the compelling mockups and specs produced by analysts, and resulting applications built by developers, there exists a gulf where projects fail, costs spiral, and applications disappoint. Methodologies like Agile attempt to address this with intensified communication, with partial success but many limitations. In his session at DevOps Summit, Charles Kendrick, CTO and Chief Architect at Isomorphic Software, will present a revolutionary model enabled by new technologies. Learn how busine...
The APN DevOps Competency highlights APN Partners who demonstrate deep capabilities delivering continuous integration, continuous delivery, and configuration management. They help customers transform their business to be more efficient and agile by leveraging the AWS platform and DevOps principles.
Containers are revolutionizing the way we deploy and maintain our infrastructures, but monitoring and troubleshooting in a containerized environment can still be painful and impractical. Understanding even basic resource usage is difficult - let alone tracking network connections or malicious activity. In his session at DevOps Summit, Gianluca Borello, Sr. Software Engineer at Sysdig, will cover the current state of the art for container monitoring and visibility, including pros / cons and li...
IT data is typically silo'd by the various tools in place. Unifying all the log, metric and event data in one analytics platform stops finger pointing and provides the end-to-end correlation. Logs, metrics and custom event data can be joined to tell the holistic story of your software and operations. For example, users can correlate code deploys to system performance to application error codes.
Any Ops team trying to support a company in today’s cloud-connected world knows that a new way of thinking is required – one just as dramatic than the shift from Ops to DevOps. The diversity of modern operations requires teams to focus their impact on breadth vs. depth. In his session at DevOps Summit, Adam Serediuk, Director of Operations at xMatters, Inc., will discuss the strategic requirements of evolving from Ops to DevOps, and why modern Operations has begun leveraging the “NoOps” approa...
Internet of Things (IoT) will be a hybrid ecosystem of diverse devices and sensors collaborating with operational and enterprise systems to create the next big application. In their session at @ThingsExpo, Bramh Gupta, founder and CEO of, and Fred Yatzeck, principal architect leading product development at, discussed how choosing the right middleware and integration strategy from the get-go will enable IoT solution developers to adapt and grow with the industry, while at th...
With containerization using Docker, the orchestration of containers using Kubernetes, the self-service model for provisioning your projects and applications and the workflows we built in OpenShift is the best in class Platform as a Service that enables introducing DevOps into your organization with ease. In his session at DevOps Summit, Veer Muchandi, PaaS evangelist with RedHat, will provide a deep dive overview of OpenShift v3 and demonstrate how it helps with DevOps.
The web app is agile. The REST API is agile. The testing and planning are agile. But alas, data infrastructures certainly are not. Once an application matures, changing the shape or indexing scheme of data often forces at best a top down planning exercise and at worst includes schema changes that force downtime. The time has come for a new approach that fundamentally advances the agility of distributed data infrastructures. Come learn about a new solution to the problems faced by software organ...
The last decade was about virtual machines, but the next one is about containers. Containers enable a service to run on any host at any time. Traditional tools are starting to show cracks because they were not designed for this level of application portability. Now is the time to look at new ways to deploy and manage applications at scale. In his session at @DevOpsSummit, Brian “Redbeard” Harrington, a principal architect at CoreOS, will examine how CoreOS helps teams run in production. Attende...
“All our customers are looking at the cloud ecosystem as an important part of their overall product strategy. Some see it evolve as a multi-cloud / hybrid cloud strategy, while others are embracing all forms of cloud offerings like PaaS, IaaS and SaaS in their solutions,” noted Suhas Joshi, Vice President – Technology, at Harbinger Group, in this exclusive Q&A with Cloud Expo Conference Chair Roger Strukhoff.
In their session at DevOps Summit, Asaf Yigal, co-founder and the VP of Product at, and Tomer Levy, co-founder and CEO of, will explore the entire process that they have undergone – through research, benchmarking, implementation, optimization, and customer success – in developing a processing engine that can handle petabytes of data. They will also discuss the requirements of such an engine in terms of scalability, resilience, security, and availability along with how the archi...
DevOps has often been described in terms of CAMS: Culture, Automation, Measuring, Sharing. While we’ve seen a lot of focus on the “A” and even on the “M”, there are very few examples of why the “C" is equally important in the DevOps equation. In her session at @DevOps Summit, Lori MacVittie, of F5 Networks, will explore HTTP/1 and HTTP/2 along with Microservices to illustrate why a collaborative culture between Dev, Ops, and the Network is critical to ensuring success.
Application availability is not just the measure of “being up”. Many apps can claim that status. Technically they are running and responding to requests, but at a rate which users would certainly interpret as being down. That’s because excessive load times can (and will be) interpreted as “not available.” That’s why it’s important to view ensuring application availability as requiring attention to all its composite parts: scalability, performance, and security.
Saviynt Inc. has announced the availability of the next release of Saviynt for AWS. The comprehensive security and compliance solution provides a Command-and-Control center to gain visibility into risks in AWS, enforce real-time protection of critical workloads as well as data and automate access life-cycle governance. The solution enables AWS customers to meet their compliance mandates such as ITAR, SOX, PCI, etc. by including an extensive risk and controls library to detect known threats and b...
Clearly the way forward is to move to cloud be it bare metal, VMs or containers. One aspect of the current public clouds that is slowing this cloud migration is cloud lock-in. Every cloud vendor is trying to make it very difficult to move out once a customer has chosen their cloud. In his session at 17th Cloud Expo, Naveen Nimmu, CEO of Clouber, Inc., will advocate that making the inter-cloud migration as simple as changing airlines would help the entire industry to quickly adopt the cloud wit...
Overgrown applications have given way to modular applications, driven by the need to break larger problems into smaller problems. Similarly large monolithic development processes have been forced to be broken into smaller agile development cycles. Looking at trends in software development, microservices architectures meet the same demands. Additional benefits of microservices architectures are compartmentalization and a limited impact of service failure versus a complete software malfunction....
At DevOps Summit NY there’s been a whole lot of talk about not just DevOps, but containers, IoT, and microservices. Sessions focused not just on the cultural shift needed to grow at scale with a DevOps approach, but also made sure to include the network ”plumbing” needed to ensure success as applications decompose into the microservice architectures enabling rapid growth and support for the Internet of (Every)Things.
Our guest on the podcast this week is Jason Bloomberg, President at Intellyx. When we build services we want them to be lightweight, stateless and scalable while doing one thing really well. In today's cloud world, we're revisiting what to takes to make a good service in the first place. Listen in to learn why following "the book" doesn't necessarily mean that you're solving key business problems.