Skip to content

GoogleCloudPlatform/cdmc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

104 Commits

dashboard

dashboard

 
 

data-ingestion

data-ingestion

 
 

data-quality

data-quality

 
 

data-scanning

data-scanning

 
 

report-engine

report-engine

 
 

support_functions

support_functions

 
 

tagging

tagging

 
 

.gitignore

.gitignore

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

LICENSE.md

LICENSE.md

 
 

README.md

README.md

 
 

environment-variables.example

environment-variables.example

 
 

setup.sh

setup.sh

 
 

Repository files navigation

Google Cloud CDMC Reference Architecture

This repository contains the CDMC reference architecture for Google Cloud. This guide provides the detailed instructions and technical artefacts required to stand up a Google Cloud architecture compliant with the 14 Controls of the EDMCouncil Cloud Data Management Capabilities (CDMC).

This architecture has been tested for compliance against the controls by an indipendent third party, and has achieved compliance on the controls.

This architecture should be seen as an example guide. Each user who wishes to work towards CDMC compliance for their organisation will need to customise the architecture to their needs and undergo a separate CDMC assessment on their solution.

Prerequisites

GCP Setup

Obtain application default credentials (ADC)

In order to run the scripts in the repositories, you will need to set up the application default credentials for any machine used to run the script.

gcloud auth application-default login

You will be asked to login and enter an authorization code.

This command will place the credentials file in the following location:

  • Linux, macOS: $HOME/.config/gcloud/application_default_credentials.json
  • Windows: %APPDATA%\gcloud\application_default_credentials.json

Infrastructure creation

The CDMC architecture relies on a number of GCP component which need to be provisioned.

  • Optional: create a GCP Folder:

      gcloud resource-manager folders create --display-name=CDMC-LABS
GCP Projects setup

This guide relies on two projects being available:

  • A project to store the data, and run the controls against. For example cdmc-confdata. You can create the data project with this command:

      gcloud projects create cdmc-confdata --folder [FOLDER_ID]

  • A project to act as your data governance one. For example cdmc-gov. You can create the data governance project with this command:

      gcloud projects create cdmc-gov --folder [FOLDER_ID]
Infrastructure configuration

The setup.sh script creates the necessary GCP components in the Data and Gov projects created above.

Before running the setup.sh script, make sure you have created and customised your environment-variables.sh file, using environment-variables.example as a template.

cp environment-variables.example environment-variables.sh

Once you have customised the environment-variables.sh, make sure to execute it:

source environment-variables.sh

Then create the infrastructure using the setup.sh convenience script.

source setup.sh

Virtual Environment

It is advisable to create a virtual environment to install the required python dependencies in the machine you are running any script from.

# Install virtual environment and activate
python3 -m venv .venv
source .venv/bin/activate

Deployment Guide

Each component of the reference architecture has its own deployment guide. To deploy the entire reference architecture, follow the steps in each of the guides. There are 7 guides in total listed below:

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

21 stars

Watchers

19 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 7

Languages