What is GCP?
Google Cloud Platform (aka. GCP), offered by Google, is a suite of cloud computing services that run on the same infrastructure that Google uses internally for its end-user products, such as Google Search, Gmail and YouTube.
If you are new to cloud, Getting Started with Google Cloud Platform is a great place to go. For quick product reference, please leverage the GCP Product List Brief.If you have previously used AWS, please check out Google Cloud for AWS Professionals for a quick start. For more training and resources, please leverage the Learning GCP section of this page.
GCP Resource Hierarchy and Project
GCP Overview is designed to help you understand the overall landscape of Google Cloud Platform (GCP) and key terminologies such as regions, zones, projects, resources, etc. GCP Resource Hierarchy describes how cloud resources can be organized and managed using Resource Manager.
At Stanford, organization, folders, and billing are managed by UIT, and most of the time you will be working in the scope of projects. A GCP project can map to one or multiple projects in real life, you can provision resources such as Virtual Machine, storage, network, etc as needed within a project, click here for more details.
If you would like to request a folder for your group or lab, please submit your request via this ServiceNow request form.
How to manage your GCP Project
You can choose the school or department that will manage your project while filling the project creation request form. All projects need to follow Stanford minimum security guidelines for IaaS for day-to-day operation and management, most of them are already enforced during the provisioning process. If you have any questions around security, data risk classification, support agreement with another groups at Stanford, you may want to check out University IT's Cardinal Cloud site.
Plan for compliance
Compliance requirements vary based on the types of data you will be using or storing in your GCP project. Stanford has authorized GCP for use with High Risk Data and Protected Health Information (PHI) ONLY when the GCP project is in compliance with the Minimum Security Standards for Infrastructure-as-a-Service (IaaS) and Containerized Solutions and the Administrative Guide Section 6.3.1: Information Security as well as other regulatory requirements. If you are using High Risk Data or PHI, you must complete a Data Risk Assessment and have one of the following groups manage your project:
Stanford Research Computing Center
UIT Technology Consulting Group (TCG)
Research IT-School of Medicine
From within GCP Compliance Resource Center, you can easily find cloud services that are HIPAA-Compliant, as well as guidelines on how to protect your PHI data in the cloud.
Familiarize Yourself with GCP cost estimation
In GCP, you only pay for what you use. A common practice is to first figure out how you want to run your application in Cloud, then use the GCP Price Calculator to understand estimated cost. Note that the university discount negotiated between Google and Stanford is not applied in this calculator.
If you have any questions around architecturing in GCP or cost estimation for your project, please reach out to the Google Cloud account team via firstname.lastname@example.org for assistance.
GCP project naming conventions
A naming convention is followed for GCP project names. When you fill the project creation form, it will automatically present a prefix for your project and you can choose the remainder of the project name.
Get PTA Approval
Before you place your request for a new GCP project, you MUST obtain authorization from a valid approver for each Stanford Project-Task-Award (PTA) you plan to use.
While we will not hold the provisioning of the project for PTA approval, the approver you select will be required to confirm their approval once the request is submitted.The PTA approver(s) must agree to accept all charges incurred until such time as the PTA approver terminates approval, the service has been cancelled, or the PTA has been removed from the service. Check valid approvers for a PTA you are planning to use prior to submitting your request.
Submit Your Project Creation Form
Now let’s set up your new GCP project via this project creation request form! Upon completion of the form, typically it takes 1-2 business days for project provisioning. Please continue with the next section to get started with your first GCP project!