Architecture
Multi-Cloud and Hybrid
Multi-cloud and hybrid architectures are expensive coordination tools. Use them when they solve a real business, regulatory, resilience, or integration requirement. Do not use them as default portability theater.
Good reasons
Valid drivers include:
- Regulatory or customer hosting requirements.
- Mergers, acquisitions, or inherited platforms.
- Latency requirements near existing data centers or regions.
- Disaster recovery requirements that cannot be met in one provider.
- Vendor concentration risk backed by executive risk appetite.
- Specialized services that materially improve product outcomes.
Weak reasons
Be skeptical of:
- Abstract portability goals with no funded migration plan.
- Fear of lock-in without identifying actual lock-in points.
- Duplicating every service across providers.
- Building lowest-common-denominator platforms that make every cloud worse.
Design boundaries
Define portability boundaries explicitly.
- Identity and access model.
- Network connectivity and DNS.
- Deployment and artifact promotion.
- Secrets and key management.
- Observability and incident response.
- Data replication, residency, and recovery.
- Policy, audit, and evidence collection.
Operating model
Multi-cloud requires operational ownership across providers.
- Keep account, subscription, and project structures consistent.
- Standardize tagging, logging, and alert routing.
- Use provider-native services intentionally, not accidentally.
- Avoid hiding provider differences behind leaky abstractions.
- Test failover, recovery, and access paths regularly.
Hybrid connectivity
Hybrid systems need clear network ownership.
Document routing, firewall rules, DNS, certificates, private endpoints, VPN or direct connectivity, latency expectations, and incident ownership for every cross-boundary dependency.