(lightbulb) Readme

* Required information

Project details

Phase

  • Envision
  • Strategize

Status

   

Start Date

Enter the starting date of your initiative, by clicking on the calendar icon bellow - when you started to work on different step of the initiative

 

Initiative name

ID Provided by DT PMO

12261: Labware Composite upgrade

Description of the initiative

The upgrade of Labware Composite project is required in 2023 to be aligned with NIST/CMMC (The Cybersecurity Maturity Model Certification) standards.

The current Composite Labware environment is running software that is outdated and does not meet the requirements put in place for CMMC.

  • The current version of Citrix support Composite Labware  
    • Outdated and no longer supported by the vendor. 
      • CMMC requires that we are running supported version of vendor software that includes receiving security patching
    • Does not support the level of encryption required by CMMC standards
      • The new version of Citrix supports the level of encryption required by CMMC standards
    • There is a known issue on the Citrix server for this version which causes the servers to hang 
      • This issue requires a restart to the Citrix environment at least 2-3 a month and causes downtime to the users 
      • This issues occurred several times during off hours impacting users for entire shifts
    • There has been an ongoing issue with the Citrix client that causes issues for users to connect
      • This issue impacts 5-10 users a week causing downtime for 2-5  days
      • The fix requires Uninstall and Reinstall of Citrix client software
      • At times it requires Deletion of Windows Profile on shared PCs
  • The current version of Windows and SQL Server being used to support Composite Labware 
    • Windows 2012 R2 will reach end of support on October 10, 2023
    • SQL Server 2012 R2  has reached end of support on July 12, 2022


The project will also include the assessment of a future upgrade of the Labware software from version 7 to version 8. 

421K Pre-Cost Analysis 

Domain & Product

Requested Domain Journey / Platform

  • Platf1- Data & Analytics & AI Platform
  • Platf2 A- Develop, Test & Deploy Platform
  • Platf2 B- Multi experience Platform
  • Platf2 C- Ent. Business Systems Platform
  • Platf3 A- Ecosystem Platform
  • Platf3 B- Hybrid & Cloud Platform
  • Platf3 C- Intelligent Asset Platform
  • Platf4- Info Security and Compliance Platform
  • Platf5- Workplace Platform
  • Journ1- Digital Customer Journey
  • Journ2- Digital Ops & Corporate Enablement Journey
  • Journ3- Digital Employee Journey
  • Journ4- Prepare the Future & Connected Research Journey
  • DTmng3- DT Enablement & Transformation
Involved Domain Journey/ Platform
  • Platf1- Data & Analytics & AI Platform
  • Platf2 A- Develop, Test & Deploy Platform
  • Platf2 B- Multi experience Platform
  • Platf2 C- Ent. Business Systems Platform
  • Platf3 A- Ecosystem Platform
  • Platf3 B- Hybrid & Cloud Platform
  • Platf3 C- Intelligent Asset Platform
  • Platf4- Info Security and Compliance Platform
  • Platf5- Workplace Platform
  • Journ1- Digital Customer Journey
  • Journ2- Digital Ops & Corporate Enablement Journey
  • Journ3- Digital Employee Journey
  • Journ4- Prepare the Future & Connected Research Journey
  • DTmng3- DT Enablement & Transformation

Initiative Ownership

Digital Technology Partner

Enter the Digital Technology Partner, using « @ » for user attribution (if not known refer to the DT Playbook in "Relation with GBU & BSA" chapter)

@

Product Manager / Service Delivery

@Martina Gatti + @Jean-Pierre Genet (PM), @Pedro Falcao (SDM)

Roadmap & Key objectives

Roadmap

Upgrade the Windows OS, SQL Server and Citrix versions to the latest versions supported within Solvay standards. 

Implement encryption from Citrix client to server that meets CMMS requirements.

Stabilize environment by reducing the downtime caused by Citrix connectivity issues

Improve performance of the Labware application and make key new features available for the business.


2023 Digital Technology Key objective


Priority

P1 to required to be aligned with NIST/CMMC (The Cybersecurity Maturity Model Certification) standards.

Phase 1: Envision - High level initiatives

Understand: Why is this initiative proposed? What are the consequences if not done? What are the new capabilities expected?

  • Create Envision brief if the initiative is part of the validated roadmap

  • Highlight roadmap value
  • Request a budget for Strategize if you need one
  • Security scoring 
  • RADAR/SENTRI
  • Request platform resources if the business capability is already identified and clear
  • Write portfolio epics, epics and user stories

  • Identify squad resources

First, let´s start with the Problem space

1.1. Reason

* Why is this initiative proposed today?

Explain what are the motivations and the expected objective behind this initiative/ what are the consequences if not done?

Currently the Composites Labware environment is running outdated and unsupported server software which creates a major risk and does not meet NIST/CMMC (The Cybersecurity Maturity Model Certification) standards. The goal is to upgrade the software to the latest and fully supported versions.

1.2. Benefits

What are the new capabilities expected?

The Labware environment will be running on up to date and supported Windows OS, Citrix and SQL Server which is align with NIST/CMMC (The Cybersecurity Maturity Model Certification) standards, as well as improves the stability and performance of the servers.


What will it replace? Is it a new solution or an existing one?

This is an upgrade to an existing environment within the Solvay Landscape

1.3. Target users

Who are the future users?

Identify the future users (BU, sites...) and population concerned

The user population will stay the same which includes the Quality Labs and Shop floor across all sites of Composites GBU


What is the number of users impacted?

900 Users across all sites of Composites GBU


What about the Business Needs?

1.4. Value proposition

What is the value of the initiative?

Financial Business expectation (ROI, benefits, savings,...) + Qualitative Business expectation (business value, market fit, visibility,...)

Limit the exposure / risk of outdated non supported software.

Alignment with NIST/CMMC standards 


1.5. Business goals

How does the product / deliverable align with the business goals?

Alignment with NIST/CMMC standards which is required by key customers (ITAR)

1.6. Challenges

Are there any challenges in developing the product?

Resource availability and constraints based on conflicts with PO2

1.7. Business metrics

How will we measure success?

Performance improvements, reduce server down time and aligned with NIST/CMMC standards.

1.8. Cybersecurity

Please duplicate this template iand contact the SIP teaùm in order to get your corresponding folder. Then, for the envision phase, answer to the initiative card tab and  to the 7 high-level questions in the "Security Scoring" tab. These questions will help the SIP team to determine the level of cybersecurity & compliance support you will need. Please contact the team by email: @SIP_team@solvay.com

If not able to answer yet, explain it at the Envision gate and it will be the DTLT to decide if green light or not considering with the high level of uncertainty 

1.9- Involvment of Data Domains

If your initiative is working with data, please select the domain which is impacted:

  • Marketing & Sales (Customer & Market segment / Price conditions & CMIR)
  • Supply Chain Management (Routes & Rates)
  • Procurement (Master data: Vendors, Contracts, Material (Group)/ Reference Data: Payment terms, Structures)
  • Finance (Management (MAC)/ Financial (FAC)/ Treasury)
  • HR (HR Master Data (Employee, Personal, Identity))
  • Industrial (BOM, Asset Hierarchy, MES Tag, Process Batch)
  • R&I (Products, Equipments/ Projects)
  • Structures & shared referential (Structures/ Shared referential data/ Finished goods)
  • Sustainability

1.10. Up to investment


What is the coherent time to commit on the initiative?*

Estimated Delivery phase start date*

 

Estimated Delivered end Quarter*

Q4 2023


What is the coherent money to commit on the initiative?*


2023 (in K€)* 2024 (in K€)* 2025 (in K€)

Estimated size of investment (high level)

 391K




What is the coherent run and build commit on the initiative?

Only run cost impact - TCO over 10Y will be finalized during the strategize phase

Estimated run costs (estimation high level) per year on xxYear (xx= duration of the contract if known)

Current recurring cost for servers is  $13.5K a month (162K annually). The new server environment will increase to  $19.9K a month(238.8K annually).   

Type of savings expected /year for DT (Ex: Contracts, FTE, ...)  

  • maintenance
  • infrastructure
  • FTE
  • Sales provider
  • licences
  • other: please explain


Please add here the required envelop needed to work on the strategize phase - if needed (maximum 40k€) :


1.11. Resources

What skills and talents do we need? 

Here kind of skills required in order to start to fill the Capacity Planning.  If name already available please write the name

Jose Carreira (25%), Harrison Blackwelder (25%), Mark Reece (15%),  Michael Manuelle (15%),  Loic Romagny 
(10%), Cedric Armand (10%)


1.12. Methodology to apply (refer for Accolade)

Do you think if your initiative is compatible with a waterfall approachor with an agile approach?

  • Agile model
  • Waterfall model
  • I do not know at this stage

If the initiative will be done in Agile methodology, please contact during the strategize phase Nicolas LOVAGNINI

Phase 2: Strategize

Understand: How this bring value? Which pain points will it removes? Will it be delivered in Agile or Waterfall?

  • Identify portfolio epics and epics within each portfolio epics
  • Create a document / slide / spreadsheet to build your epics and put a link in the bief
  • Estimate experts and budget by portfolio epics or by increment
  • Show SMART KPI (Specific, Measureable, Archievable, Relevant, and Time-Bound)
  • Evaluate the impact on Solvay One Planet objectives
  • Identify squad resources (naming)
  • Write user stories


Now, we can move on to the Solution space

2.0 Scope / Deliverables

What is your list of scope if waterfall initiatives (technical, functional & organizational) / deliverables foreseen? What are your list of Epics if Agile initiatives?


2.1. Actions to complete 

Mandatory actions (please contact them together if possible)

Description of the action / task

Contact

Document & examples (please make your own copy and insert new link here)

Contact each relevant pool lead to book resources in the capacity planning tool

  • check once done to inform the contact       ARPIN, Florine  

ARPIN, Florine 

Complete Capacity planning tool

Complete Accolade

  • check once done to inform the contact       Claire Bazin   
Claire Bazin Complete Accolade

Review with Enterprise Architect the actual solution answering the objective

Florent Thivin (Structure)

Complete Architecture Impact Analysis (AIA)

ARB & AIA

Check you have confirmed the involvement of each platform


Revert to SDM of each Platform

Identify security needs (Confidentiality, Integrity, Availability) and define security measures to be implemented by the initiative team

  • check once done to inform the contact user-57b8e  

user-57b8e 

Complete the security questionnaire in “SIP Support tool

Support for budget estimation (via the Workload & Cost), Financial evaluation (Total Cost of Ownership over 10Y), saving validation

Thomas Varchmin 

W&C: to be filled in to Accolade in preparation phase

TCO over 10Y: 

xxxx - Business Case/Financial evaluation 10Y

If Data Governance is required: identify the business objects

Philippa de Glanville 

Data Governance Strategise for Initiative Briefs
Optional

If any relation needed with a supplier

BLANCHER, Alexis 


If it concerns a key supplier, a sourcing strategy has to be defined

Isabelle Auboeuf 


If conformity by design is required

Emmanuelle Bureau 

GMP (pharma), ISO

2.2. Users needs

What do users dislike about the current solution?

Applicable when a new solution is developed

Not applicable - no product development 


What tools or features do your users wish to have?

Not applicable - no product development 


What value will it add to the user´s lives?

The upgrade of Labware Composite is required in 2023 to reduce security risk and vulnerabilities that comes with running unsupported server software and to be aligned with NIST/CMMC (The Cybersecurity Maturity Model Certification) standards.  


What alternative do we have?

None

2.3. Overall Service Delivery Management for a project (if applicable)

A standardised process for creating and introducing services. It may sound basic, but Service Design and Introduction should be considered at the very beginning of the project.

  • Moving through the various project stages from Envision, strategize (requirements gathering) to planning, delivering value and testing before deploying the service. 
  • Embedding service introduction activities into project delivery, with defined success criteria at each stage avoids a re-work which can negatively impact the project in terms of time, cost and quality.


Who is the service owner?


What is the target?


Which platform will maintain the new service?


2.4. Risk Analysis

What are the risks (refer to Risk analysis matrix in Accolade)?

Are there any internal / external constraints and what are the preventive actions associated?

Identify risks and mitigation plans

Possible Resource constraint of DT Project Team members based on conflicts with PO2 

Business user availability during testing phases

2.5. Solvay One Planet Objectives

What is the qualitative assessment of Hardware/ Data processing/ Project’s contribution to Solvay One Planet?

- Is the business ambition you will support improving or not sustainability?

- Will you increase or decrease the number of hardware we need to operate? How much ?

- Will you generate or transfer an important amount of data, especially videos? How much?

My tasks

  • Enter your task here, using « @ » to assign it to a user and « // » to select a due date
  • Enter your task here, using « @ » to assign it to a user and « // » to select a due date
  • Enter your task here, using « @ » to assign it to a user and « // » to select a due date