{"id":833,"date":"2026-04-16T08:13:56","date_gmt":"2026-04-16T08:13:56","guid":{"rendered":"https:\/\/www.devopsschool.com\/tutorials\/oracle-cloud-ai-data-platform-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-analytics-and-ai\/"},"modified":"2026-04-16T08:13:56","modified_gmt":"2026-04-16T08:13:56","slug":"oracle-cloud-ai-data-platform-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-analytics-and-ai","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/tutorials\/oracle-cloud-ai-data-platform-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-analytics-and-ai\/","title":{"rendered":"Oracle Cloud AI Data Platform Tutorial: Architecture, Pricing, Use Cases, and Hands-On Guide for Analytics and AI"},"content":{"rendered":"\n

Category<\/h2>\n\n\n\n

Analytics and AI<\/p>\n\n\n\n

1. Introduction<\/h2>\n\n\n\n

What this service is<\/h3>\n\n\n\n

AI Data Platform<\/strong> in Oracle Cloud<\/strong> is best understood as a platform capability<\/em>\u2014a set of OCI services and reference patterns used together to ingest, store, govern, transform, and serve data for analytics and AI\/ML workloads.<\/p>\n\n\n\n

One-paragraph simple explanation<\/h3>\n\n\n\n

If you want to build AI features (recommendations, forecasting, anomaly detection, copilots, RAG, etc.), you first need reliable data pipelines, secure storage, governance, and a way to train and deploy models. An AI Data Platform<\/strong> on Oracle Cloud<\/strong> combines OCI data services (storage, databases, data integration) with AI services (Data Science, AI Services\/Generative AI where applicable) so teams can deliver production AI faster and more safely.<\/p>\n\n\n\n

One-paragraph technical explanation<\/h3>\n\n\n\n

Technically, an AI Data Platform on OCI typically includes: ingestion into Object Storage<\/strong> and\/or OCI databases, transformation with Data Integration<\/strong>, Data Flow<\/strong> (Spark), or SQL engines, governance with Data Catalog<\/strong>, IAM policies and tagging, and model development\/deployment with OCI Data Science<\/strong>. Observability is provided by OCI Logging<\/strong>, Monitoring<\/strong>, Audit<\/strong>, and security by Vault<\/strong>, KMS, private networking, and least-privilege IAM. The \u201cplatform\u201d is the architecture plus operating model, not just a single API endpoint.<\/p>\n\n\n\n

What problem it solves<\/h3>\n\n\n\n

Teams often struggle with:\n– Data scattered across systems with inconsistent governance and lineage\n– Slow, fragile ETL\/ELT pipelines that break ML training\n– Difficulty moving models from notebooks to secure, scalable deployments\n– Cost surprises from unmanaged compute\/storage growth\n– Security\/compliance gaps (PII exposure, weak access controls, missing auditability)<\/p>\n\n\n\n

An AI Data Platform on Oracle Cloud addresses these gaps by standardizing how data is collected, curated, secured, and operationalized for analytics and AI.<\/p>\n\n\n\n

\n

Important naming note (verify in official docs):<\/strong> \u201cAI Data Platform\u201d is widely used as a solution term<\/em> across the industry. In OCI, the exact product SKUs are typically the underlying services (for example, OCI Data Science<\/strong>, Object Storage<\/strong>, Data Integration<\/strong>, Data Catalog<\/strong>, Autonomous Database<\/strong>, etc.). If Oracle Cloud has introduced an explicitly named service \u201cAI Data Platform\u201d in your tenancy\/region, verify its current official definition and scope in the Oracle documentation and console. This tutorial remains strictly aligned to OCI\u2019s currently documented building blocks used to implement an AI data platform.<\/p>\n<\/blockquote>\n\n\n\n

\n\n\n\n

2. What is AI Data Platform?<\/h2>\n\n\n\n

Official purpose<\/h3>\n\n\n\n

On Oracle Cloud<\/strong>, AI Data Platform<\/strong> refers to the end-to-end capability to:\n– Collect and store data for analytics and AI\n– Curate and govern data assets\n– Transform data into features and training datasets\n– Train, evaluate, and deploy ML models\n– Operate data and ML workloads securely at scale<\/p>\n\n\n\n

Because \u201cAI Data Platform\u201d may not appear as a single standalone OCI product page in all accounts, treat it as a platform architecture<\/strong> implemented with OCI services. Verify in official docs<\/strong> if your organization has access to a specific OCI product branded \u201cAI Data Platform.\u201d<\/p>\n\n\n\n

Core capabilities (platform-level)<\/h3>\n\n\n\n
    \n
  • Data ingestion<\/strong>: batch and streaming ingestion from apps, SaaS, and databases<\/li>\n
  • Data storage<\/strong>: data lake patterns on Object Storage; warehouse\/lakehouse patterns using databases and SQL engines<\/li>\n
  • Data processing<\/strong>: ETL\/ELT, Spark, SQL transformations, data quality checks<\/li>\n
  • Governance<\/strong>: cataloging, discovery, tags, access control, audit<\/li>\n
  • AI\/ML lifecycle<\/strong>: notebooks, training, experiment tracking (capabilities vary), model registry, deployment endpoints<\/li>\n
  • Operations<\/strong>: monitoring, logging, CI\/CD integration, cost controls<\/li>\n<\/ul>\n\n\n\n

    Major components (typical OCI services used)<\/h3>\n\n\n\n

    Common OCI services in an AI Data Platform architecture include:<\/p>\n\n\n\n

      \n
    • OCI Object Storage<\/strong>: data lake storage for raw\/curated data and model artifacts\n Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Object\/home.htm<\/li>\n
    • OCI Data Integration<\/strong>: managed data integration (ETL\/ELT) and pipeline orchestration\n Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/data-integration\/using\/home.htm<\/li>\n
    • OCI Data Catalog<\/strong>: metadata management and data discovery\n Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/data-catalog\/using\/home.htm<\/li>\n
    • OCI Data Flow<\/strong>: serverless Apache Spark for large-scale transformation (where used)\n Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/data-flow\/using\/home.htm<\/li>\n
    • Oracle Autonomous Database (ADW\/ATP)<\/strong>: governed analytics and app data store (optional)\n Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/autonomous-database\/index.html<\/li>\n
    • OCI Data Science<\/strong>: ML development, training, and model deployment\n Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/data-science\/using\/home.htm<\/li>\n
    • Observability & Security<\/strong>: Logging, Monitoring, Audit, Vault, IAM, Cloud Guard (as applicable)\n Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Security\/home.htm<\/li>\n<\/ul>\n\n\n\n

      Service type<\/h3>\n\n\n\n
        \n
      • AI Data Platform<\/strong> (as used here) is a solution architecture \/ platform pattern<\/strong> built from multiple managed OCI services.<\/li>\n
      • Individual components are regional OCI services<\/strong> in specific OCI regions (availability varies by region and tenancy; verify in official docs and the OCI console<\/strong>).<\/li>\n<\/ul>\n\n\n\n

        Scope: regional\/global\/project\/account<\/h3>\n\n\n\n

        Because the \u201cplatform\u201d spans services:\n– IAM<\/strong> and compartments apply tenancy-wide<\/strong>.\n– Most data\/AI services are regional<\/strong> and deployed into a compartment<\/strong>.\n– Networking is regional<\/strong> (VCNs, subnets, private endpoints).\n– Governance and logging can be configured across compartments and regions.<\/p>\n\n\n\n

        How it fits into the Oracle Cloud ecosystem<\/h3>\n\n\n\n

        An AI Data Platform on OCI typically sits between:\n– Source systems<\/strong> (apps, databases, SaaS, logs, IoT, clickstreams)\n– OCI data services<\/strong> (Object Storage, Autonomous Database, MySQL HeatWave where applicable, etc.)\n– OCI AI services<\/strong> (Data Science, AI Services, Generative AI\u2014availability varies)\n– Downstream consumers<\/strong> (Oracle Analytics Cloud, BI tools, APIs, microservices, data sharing)<\/p>\n\n\n\n

        \n\n\n\n

        3. Why use AI Data Platform?<\/h2>\n\n\n\n

        Business reasons<\/h3>\n\n\n\n
          \n
        • Faster time-to-value<\/strong>: standard ingestion \u2192 curated datasets \u2192 models \u2192 deployment<\/li>\n
        • Consistency<\/strong>: one platform operating model across teams reduces duplication<\/li>\n
        • Risk reduction<\/strong>: governance, audit, and least-privilege access are built into the platform<\/li>\n
        • Better customer experiences<\/strong>: personalization, automation, forecasting become feasible with reliable data<\/li>\n<\/ul>\n\n\n\n

          Technical reasons<\/h3>\n\n\n\n
            \n
          • Scalable storage and compute<\/strong>: decouple storage (Object Storage) from compute (Spark\/DB\/DS training)<\/li>\n
          • Repeatable pipelines<\/strong>: Data Integration\/Data Flow provide reproducible transformations<\/li>\n
          • Model operationalization<\/strong>: OCI Data Science model deployments provide managed inference endpoints (verify supported runtimes and limits in docs)<\/li>\n<\/ul>\n\n\n\n

            Operational reasons<\/h3>\n\n\n\n
              \n
            • Central monitoring<\/strong> with OCI Monitoring and Logging<\/li>\n
            • Standardized environments<\/strong> using compartments, tagging, and policies<\/li>\n
            • Easier lifecycle management<\/strong> with clear separation of dev\/test\/prod<\/li>\n<\/ul>\n\n\n\n

              Security\/compliance reasons<\/h3>\n\n\n\n
                \n
              • IAM policies<\/strong> and compartments enforce boundaries<\/li>\n
              • Encryption<\/strong> at rest and in transit (service-dependent; verify per service)<\/li>\n
              • Auditability<\/strong> via OCI Audit logs<\/li>\n
              • Secrets management<\/strong> via OCI Vault<\/li>\n<\/ul>\n\n\n\n

                Scalability\/performance reasons<\/h3>\n\n\n\n
                  \n
                • Object Storage scales for large datasets<\/li>\n
                • Spark\/SQL engines can scale for ETL and feature engineering<\/li>\n
                • Data Science training and inference can scale using appropriate compute shapes (verify available shapes and quotas)<\/li>\n<\/ul>\n\n\n\n

                  When teams should choose it<\/h3>\n\n\n\n

                  Choose an AI Data Platform approach on OCI when you need:\n– Multiple data sources and multiple consumers\n– Governance requirements (PII, regulated data, data lineage)\n– Repeatable ML pipelines and controlled model deployments\n– Multi-team access with consistent security controls\n– Clear cost management across workloads<\/p>\n\n\n\n

                  When teams should not choose it<\/h3>\n\n\n\n

                  Avoid building a full AI Data Platform (initially) when:\n– You have a single small dataset and a single model in a PoC\n– You lack ownership\/operating model (no team to run it)\n– Your organization only needs embedded analytics in one app and no broader data reuse\n– You cannot commit to basic governance, tagging, and monitoring (platform without ops becomes technical debt)<\/p>\n\n\n\n

                  \n\n\n\n

                  4. Where is AI Data Platform used?<\/h2>\n\n\n\n

                  Industries<\/h3>\n\n\n\n
                    \n
                  • Financial services (fraud detection, credit risk, AML analytics)<\/li>\n
                  • Retail\/e-commerce (recommendations, demand forecasting, personalization)<\/li>\n
                  • Manufacturing (predictive maintenance, quality analytics)<\/li>\n
                  • Healthcare\/life sciences (claims analytics, patient operations\u2014subject to compliance)<\/li>\n
                  • Telecom (churn prediction, network anomaly detection)<\/li>\n
                  • Energy (load forecasting, asset monitoring)<\/li>\n
                  • Public sector (case triage, resource allocation\u2014policy constraints apply)<\/li>\n<\/ul>\n\n\n\n

                    Team types<\/h3>\n\n\n\n
                      \n
                    • Data engineering teams (pipelines, lake\/warehouse)<\/li>\n
                    • ML engineering teams (training, deployment, MLOps)<\/li>\n
                    • Analytics teams (semantic models, dashboards, KPI layers)<\/li>\n
                    • Platform\/SRE teams (networking, IAM, monitoring)<\/li>\n
                    • Security teams (controls, audit, compliance)<\/li>\n<\/ul>\n\n\n\n

                      Workloads<\/h3>\n\n\n\n
                        \n
                      • Batch ETL\/ELT and scheduled pipelines<\/li>\n
                      • Streaming ingestion and near-real-time scoring (where used)<\/li>\n
                      • Feature engineering at scale<\/li>\n
                      • Model training, evaluation, registry, and deployment<\/li>\n
                      • RAG pipelines (document ingestion \u2192 embeddings \u2192 retrieval) if using supported OCI services (verify product availability)<\/li>\n<\/ul>\n\n\n\n

                        Architectures<\/h3>\n\n\n\n
                          \n
                        • Data lake on Object Storage + curated zones (raw\/bronze, clean\/silver, curated\/gold)<\/li>\n
                        • Warehouse-centric (Autonomous Data Warehouse for BI + ML)<\/li>\n
                        • Lakehouse-like patterns (depending on chosen engines; verify supported features)<\/li>\n
                        • Microservices consuming ML inference endpoints via REST<\/li>\n<\/ul>\n\n\n\n

                          Real-world deployment contexts<\/h3>\n\n\n\n
                            \n
                          • Multi-compartment enterprise landing zones<\/li>\n
                          • Hybrid environments with on-prem sources (VPN\/FastConnect)<\/li>\n
                          • Multi-region strategies for DR and data residency (verify service-specific multi-region support)<\/li>\n<\/ul>\n\n\n\n

                            Production vs dev\/test usage<\/h3>\n\n\n\n
                              \n
                            • Dev\/Test<\/strong>: smaller datasets, minimal shapes, relaxed SLAs, sandbox compartments<\/li>\n
                            • Prod<\/strong>: private endpoints, strict IAM, robust monitoring, CI\/CD, backup\/DR, data retention and masking<\/li>\n<\/ul>\n\n\n\n
                              \n\n\n\n

                              5. Top Use Cases and Scenarios<\/h2>\n\n\n\n

                              Below are realistic use cases where an AI Data Platform on Oracle Cloud is a strong fit.<\/p>\n\n\n\n

                              1) Centralized governed data lake for ML<\/h3>\n\n\n\n
                                \n
                              • Problem:<\/strong> ML teams can\u2019t find trusted datasets; data is duplicated across buckets and spreadsheets.<\/li>\n
                              • Why this fits:<\/strong> Object Storage + Data Catalog + IAM compartments provide controlled data zones with searchable metadata.<\/li>\n
                              • Example:<\/strong> Marketing and fraud teams share curated customer and transaction datasets with consistent tags and access policies.<\/li>\n<\/ul>\n\n\n\n

                                2) Automated batch ingestion from operational databases<\/h3>\n\n\n\n
                                  \n
                                • Problem:<\/strong> Nightly exports break, schema drift causes silent failures.<\/li>\n
                                • Why this fits:<\/strong> Data Integration pipelines can formalize ingestion and transformations with scheduling and retries (verify exact features).<\/li>\n
                                • Example:<\/strong> Ingest orders and returns from an operational database to Object Storage, then curate to ADW for analytics.<\/li>\n<\/ul>\n\n\n\n

                                  3) Feature engineering at scale with Spark<\/h3>\n\n\n\n
                                    \n
                                  • Problem:<\/strong> Python notebooks can\u2019t process tens of millions of rows efficiently.<\/li>\n
                                  • Why this fits:<\/strong> Data Flow (Spark) can compute aggregates, windows, and joins at scale and write results back to Object Storage.<\/li>\n
                                  • Example:<\/strong> Build 90-day purchase frequency and recency features for churn prediction.<\/li>\n<\/ul>\n\n\n\n

                                    4) Train and deploy a classification model with managed inference<\/h3>\n\n\n\n
                                      \n
                                    • Problem:<\/strong> Moving from notebook to an API is slow; ops teams don\u2019t want bespoke servers.<\/li>\n
                                    • Why this fits:<\/strong> OCI Data Science supports model artifacts and managed deployments (verify supported frameworks).<\/li>\n
                                    • Example:<\/strong> Deploy a fraud risk model behind a REST endpoint consumed by a checkout service.<\/li>\n<\/ul>\n\n\n\n

                                      5) Secure AI experimentation environment for multiple teams<\/h3>\n\n\n\n
                                        \n
                                      • Problem:<\/strong> Teams share credentials and buckets; no reproducibility.<\/li>\n
                                      • Why this fits:<\/strong> Compartment isolation + IAM groups + Vault + standard tagging create safe, traceable environments.<\/li>\n
                                      • Example:<\/strong> Separate compartments for data science dev and prod; enforce \u201cno public buckets\u201d via policy and review.<\/li>\n<\/ul>\n\n\n\n

                                        6) Data quality gates before model training<\/h3>\n\n\n\n
                                          \n
                                        • Problem:<\/strong> Model performance drops due to missing values, duplicates, and drift in data.<\/li>\n
                                        • Why this fits:<\/strong> ETL pipelines can incorporate validation and quarantine zones (implementation-specific).<\/li>\n
                                        • Example:<\/strong> Reject daily loads if null rates exceed thresholds; alert via Monitoring.<\/li>\n<\/ul>\n\n\n\n

                                          7) Curated analytics + ML on Autonomous Data Warehouse<\/h3>\n\n\n\n
                                            \n
                                          • Problem:<\/strong> BI dashboards and ML features disagree due to different logic.<\/li>\n
                                          • Why this fits:<\/strong> Store curated facts\/dimensions in ADW; reuse in both BI and ML training datasets.<\/li>\n
                                          • Example:<\/strong> Revenue metrics used in Oracle Analytics Cloud and ML forecasting share the same SQL transformations.<\/li>\n<\/ul>\n\n\n\n

                                            8) Model governance and auditability<\/h3>\n\n\n\n
                                              \n
                                            • Problem:<\/strong> No one knows which model version is running, who deployed it, or what data it used.<\/li>\n
                                            • Why this fits:<\/strong> OCI Audit + standardized model registry practices + tagging + deployment logs provide traceability.<\/li>\n
                                            • Example:<\/strong> For each deployment, record model version, training dataset snapshot path, and approver.<\/li>\n<\/ul>\n\n\n\n

                                              9) Near-real-time scoring for operational decisions (architecture-dependent)<\/h3>\n\n\n\n
                                                \n
                                              • Problem:<\/strong> Batch scoring is too slow for fraud or next-best-action.<\/li>\n
                                              • Why this fits:<\/strong> Combine streaming ingestion (if used) + low-latency inference endpoint.<\/li>\n
                                              • Example:<\/strong> Event stream triggers a scoring call; decision is returned to the app in milliseconds\/seconds depending on design.<\/li>\n<\/ul>\n\n\n\n

                                                10) Multi-tenant analytics and AI platform for internal business units<\/h3>\n\n\n\n
                                                  \n
                                                • Problem:<\/strong> Shared platform must isolate teams while enabling shared reference datasets.<\/li>\n
                                                • Why this fits:<\/strong> OCI compartments + IAM policies + shared curated zones.<\/li>\n
                                                • Example:<\/strong> Central data platform team manages base datasets; business units get isolated workspaces.<\/li>\n<\/ul>\n\n\n\n

                                                  11) Document analytics and retrieval workflows (availability-dependent)<\/h3>\n\n\n\n
                                                    \n
                                                  • Problem:<\/strong> Teams need to search and extract insights from PDFs and tickets.<\/li>\n
                                                  • Why this fits:<\/strong> Object Storage for documents; AI services for extraction\/embeddings if available in region (verify).<\/li>\n
                                                  • Example:<\/strong> Ingest PDFs into Object Storage; extract text and metadata; store embeddings for search.<\/li>\n<\/ul>\n\n\n\n

                                                    12) Cost-controlled sandbox for student labs and PoCs<\/h3>\n\n\n\n
                                                      \n
                                                    • Problem:<\/strong> Labs get abandoned; resources keep running.<\/li>\n
                                                    • Why this fits:<\/strong> Always Free eligible resources where possible + budgets\/quotas + mandatory tags.<\/li>\n
                                                    • Example:<\/strong> Students use a small Object Storage bucket and a time-boxed notebook session; scheduled cleanup.<\/li>\n<\/ul>\n\n\n\n
                                                      \n\n\n\n

                                                      6. Core Features<\/h2>\n\n\n\n

                                                      Because AI Data Platform<\/strong> is implemented via OCI services, features map to platform capabilities. Below are the core features you typically assemble on Oracle Cloud, with practical benefits and caveats.<\/p>\n\n\n\n

                                                      1) Data lake storage on OCI Object Storage<\/h3>\n\n\n\n
                                                        \n
                                                      • What it does:<\/strong> Durable, scalable object storage for raw, curated, and analytics-ready datasets; also stores model artifacts.<\/li>\n
                                                      • Why it matters:<\/strong> Decouples storage from compute; supports large datasets cheaply relative to block storage.<\/li>\n
                                                      • Practical benefit:<\/strong> Use simple bucket path conventions (raw\/curated\/features\/models) and lifecycle rules.<\/li>\n
                                                      • Limitations\/caveats:<\/strong> Access control is critical\u2014misconfigured buckets can expose data. Use IAM and avoid public buckets unless explicitly required.<\/li>\n<\/ul>\n\n\n\n

                                                        2) Metadata cataloging with OCI Data Catalog<\/h3>\n\n\n\n
                                                          \n
                                                        • What it does:<\/strong> Catalogs data assets, technical metadata, business metadata, and supports discovery.<\/li>\n
                                                        • Why it matters:<\/strong> ML and analytics teams need to find \u201ctrusted\u201d datasets and understand schemas.<\/li>\n
                                                        • Practical benefit:<\/strong> Faster onboarding and fewer duplicate datasets.<\/li>\n
                                                        • Limitations\/caveats:<\/strong> Catalog usefulness depends on consistent registration and stewardship. Verify connectors and supported sources in your region.<\/li>\n<\/ul>\n\n\n\n

                                                          3) Managed ETL\/ELT with OCI Data Integration<\/h3>\n\n\n\n
                                                            \n
                                                          • What it does:<\/strong> Creates and runs data pipelines for ingestion and transformations (batch-oriented).<\/li>\n
                                                          • Why it matters:<\/strong> Reduces custom scripting and improves operational reliability.<\/li>\n
                                                          • Practical benefit:<\/strong> Scheduling, parameterization, standardized execution (capabilities vary\u2014verify).<\/li>\n
                                                          • Limitations\/caveats:<\/strong> Not every transformation is easiest in a GUI; complex logic may still require Spark\/SQL\/code.<\/li>\n<\/ul>\n\n\n\n

                                                            4) Serverless Spark processing with OCI Data Flow (optional)<\/h3>\n\n\n\n
                                                              \n
                                                            • What it does:<\/strong> Runs Apache Spark applications without managing clusters.<\/li>\n
                                                            • Why it matters:<\/strong> Handles large-scale joins, aggregations, and feature engineering.<\/li>\n
                                                            • Practical benefit:<\/strong> Spin up processing when needed; stop paying when jobs end (pricing is job\/compute-based).<\/li>\n
                                                            • Limitations\/caveats:<\/strong> Requires Spark skills; job tuning and data layout (partitioning, file formats) still matters.<\/li>\n<\/ul>\n\n\n\n

                                                              5) Analytics warehouse with Autonomous Database (optional)<\/h3>\n\n\n\n
                                                                \n
                                                              • What it does:<\/strong> Provides managed Oracle database with automation features; ADW is typically used for analytics.<\/li>\n
                                                              • Why it matters:<\/strong> Strong SQL performance, governance, and compatibility with enterprise BI.<\/li>\n
                                                              • Practical benefit:<\/strong> Curated datasets become easy to query and secure.<\/li>\n
                                                              • Limitations\/caveats:<\/strong> Not every workload belongs in a warehouse; large raw data may remain in Object Storage.<\/li>\n<\/ul>\n\n\n\n

                                                                6) ML development and training with OCI Data Science<\/h3>\n\n\n\n
                                                                  \n
                                                                • What it does:<\/strong> Notebook sessions, jobs, environments (conda), and managed model deployments (verify exact current features).<\/li>\n
                                                                • Why it matters:<\/strong> Moves ML from ad-hoc notebooks to repeatable training and deployment patterns.<\/li>\n
                                                                • Practical benefit:<\/strong> Standardized environments and controlled endpoints for inference.<\/li>\n
                                                                • Limitations\/caveats:<\/strong> Costs can rise if notebooks\/deployments run continuously; enforce shutdown policies.<\/li>\n<\/ul>\n\n\n\n

                                                                  7) Model deployment as an endpoint (OCI Data Science)<\/h3>\n\n\n\n
                                                                    \n
                                                                  • What it does:<\/strong> Hosts a model as a managed REST endpoint.<\/li>\n
                                                                  • Why it matters:<\/strong> Application teams consume AI via API without building custom serving infrastructure.<\/li>\n
                                                                  • Practical benefit:<\/strong> Versioned deployments; consistent authentication and logging patterns.<\/li>\n
                                                                  • Limitations\/caveats:<\/strong> Latency and throughput depend on shape sizing and model complexity. Verify payload limits, concurrency behavior, and autoscaling support.<\/li>\n<\/ul>\n\n\n\n

                                                                    8) IAM, compartments, and policy-based governance<\/h3>\n\n\n\n
                                                                      \n
                                                                    • What it does:<\/strong> Enforces least-privilege access to buckets, catalogs, pipelines, notebooks, and deployments.<\/li>\n
                                                                    • Why it matters:<\/strong> Prevents cross-team data leakage and unsafe production changes.<\/li>\n
                                                                    • Practical benefit:<\/strong> Clear separation of duties (data engineer vs ML engineer vs operator).<\/li>\n
                                                                    • Limitations\/caveats:<\/strong> Misconfigured policies are a top cause of access issues; invest in policy review and testing.<\/li>\n<\/ul>\n\n\n\n

                                                                      9) Encryption and secrets with OCI Vault<\/h3>\n\n\n\n
                                                                        \n
                                                                      • What it does:<\/strong> Central management of encryption keys and secrets (depending on usage).<\/li>\n
                                                                      • Why it matters:<\/strong> Avoid storing credentials in notebooks or code.<\/li>\n
                                                                      • Practical benefit:<\/strong> Rotations and audit-friendly secret handling.<\/li>\n
                                                                      • Limitations\/caveats:<\/strong> Applications must be coded to retrieve secrets securely; Vault access must be locked down.<\/li>\n<\/ul>\n\n\n\n

                                                                        10) Observability (Logging, Monitoring, Audit)<\/h3>\n\n\n\n
                                                                          \n
                                                                        • What it does:<\/strong> Central logs, metrics, alarms, and audit trails.<\/li>\n
                                                                        • Why it matters:<\/strong> Production AI fails quietly without monitoring (data freshness, pipeline failures, endpoint errors).<\/li>\n
                                                                        • Practical benefit:<\/strong> Alerts for job failures, 5xx errors, unusual spend.<\/li>\n
                                                                        • Limitations\/caveats:<\/strong> Logs and metrics can add cost; define retention and sampling.<\/li>\n<\/ul>\n\n\n\n
                                                                          \n\n\n\n

                                                                          7. Architecture and How It Works<\/h2>\n\n\n\n

                                                                          High-level architecture<\/h3>\n\n\n\n

                                                                          An AI Data Platform on Oracle Cloud usually follows a layered pattern:<\/p>\n\n\n\n

                                                                            \n
                                                                          1. Ingestion layer<\/strong>: data arrives from sources (databases, SaaS, files, events)<\/li>\n
                                                                          2. Storage layer<\/strong>: Object Storage holds raw and curated data; databases hold structured\/serving data<\/li>\n
                                                                          3. Processing layer<\/strong>: Data Integration\/Data Flow\/SQL transform data into curated datasets and features<\/li>\n
                                                                          4. Governance layer<\/strong>: Data Catalog, tagging, policies, audit<\/li>\n
                                                                          5. AI layer<\/strong>: Data Science notebooks\/jobs train models; deployments serve predictions<\/li>\n
                                                                          6. Consumption layer<\/strong>: dashboards, APIs, applications<\/li>\n<\/ol>\n\n\n\n

                                                                            Request\/data\/control flow<\/h3>\n\n\n\n
                                                                              \n
                                                                            • Data flow (batch)<\/strong>: Sources \u2192 ingestion pipeline \u2192 raw bucket \u2192 transformation job \u2192 curated\/features bucket or warehouse \u2192 ML training dataset<\/li>\n
                                                                            • Model flow<\/strong>: Training job \u2192 model artifact in Object Storage \u2192 model registry \u2192 deployment endpoint<\/li>\n
                                                                            • Inference flow<\/strong>: App calls endpoint \u2192 endpoint loads model \u2192 returns prediction \u2192 logs\/metrics emitted<\/li>\n
                                                                            • Control flow<\/strong>: IAM policies govern every call; Audit logs record administrative actions<\/li>\n<\/ul>\n\n\n\n

                                                                              Integrations with related OCI services<\/h3>\n\n\n\n

                                                                              Common integrations include:\n– Networking<\/strong>: VCN, private subnets, service gateways (for private Object Storage access)\n– Security<\/strong>: Vault for secrets; Cloud Guard (if enabled) for posture monitoring; WAF\/API Gateway if exposing endpoints\n– DevOps<\/strong>: OCI DevOps (or external CI\/CD) to deploy pipeline definitions and model-serving code (implementation-specific; verify)\n– Data analytics<\/strong>: Oracle Analytics Cloud consuming curated data from ADW or Object Storage<\/p>\n\n\n\n

                                                                              Dependency services (typical)<\/h3>\n\n\n\n
                                                                                \n
                                                                              • Object Storage<\/strong> is almost always central.<\/li>\n
                                                                              • IAM<\/strong> and compartments<\/strong> are foundational.<\/li>\n
                                                                              • Logging\/Audit<\/strong> should be enabled early for traceability.<\/li>\n
                                                                              • VCN<\/strong> is required for private deployments and enterprise connectivity.<\/li>\n<\/ul>\n\n\n\n

                                                                                Security\/authentication model<\/h3>\n\n\n\n
                                                                                  \n
                                                                                • Human users authenticate via OCI console\/SSO; access is governed by IAM groups and policies.<\/li>\n
                                                                                • Workloads (notebooks, jobs, services) typically use resource principals<\/strong> or OCI SDK\/CLI auth patterns (verify current recommended approach per service).<\/li>\n
                                                                                • Avoid embedding API keys in notebooks; prefer instance principals\/resource principals where supported.<\/li>\n<\/ul>\n\n\n\n

                                                                                  Networking model<\/h3>\n\n\n\n
                                                                                    \n
                                                                                  • Public endpoints are simplest for labs but riskier for production.<\/li>\n
                                                                                  • Production designs commonly use:<\/li>\n
                                                                                  • Private subnets for notebooks\/deployments<\/li>\n
                                                                                  • Service Gateway for private access to Object Storage<\/li>\n
                                                                                  • NAT Gateway for outbound internet (if needed)<\/li>\n
                                                                                  • Private endpoints and security lists\/NSGs<\/li>\n<\/ul>\n\n\n\n

                                                                                    Monitoring\/logging\/governance considerations<\/h3>\n\n\n\n
                                                                                      \n
                                                                                    • Define standard log sources: pipeline runs, job runs, deployment access logs<\/li>\n
                                                                                    • Define standard metrics and alarms:<\/li>\n
                                                                                    • Pipeline\/job failures<\/li>\n
                                                                                    • Data freshness (custom metric)<\/li>\n
                                                                                    • Endpoint error rate and latency<\/li>\n
                                                                                    • Spend anomalies (Budgets)<\/li>\n
                                                                                    • Use tags (cost center, env, owner) for chargeback and cleanup automation<\/li>\n<\/ul>\n\n\n\n

                                                                                      Simple architecture diagram (Mermaid)<\/h3>\n\n\n\n
                                                                                      flowchart LR\n  A[Data Sources] --> B[OCI Object Storage<br\/>Raw Zone]\n  B --> C[Transform<br\/>OCI Data Integration or Data Flow]\n  C --> D[Curated\/Features Zone<br\/>Object Storage or ADW]\n  D --> E[OCI Data Science<br\/>Training]\n  E --> F[Model Artifact<br\/>Object Storage]\n  F --> G[OCI Data Science<br\/>Model Deployment Endpoint]\n  G --> H[Apps \/ BI \/ Services]\n<\/code><\/pre>\n\n\n\n
                                                                                      Production-style architecture diagram (Mermaid)<\/h3>\n\n\n\n
                                                                                      flowchart TB\n  subgraph OnPrem[On-Prem \/ External]\n    S1[Operational DB]\n    S2[SaaS Apps]\n    S3[Files\/Events]\n  end\n\n  subgraph OCI[Oracle Cloud (OCI Region)]\n    subgraph Net[VCN]\n      subgraph Priv[Private Subnets]\n        DI[OCI Data Integration<br\/>Pipelines]\n        DF[OCI Data Flow<br\/>Spark Jobs]\n        DSN[OCI Data Science<br\/>Notebook\/Jobs]\n        DSE[OCI Data Science<br\/>Model Deployment]\n      end\n      SGW[Service Gateway]\n      NAT[NAT Gateway]\n      APIGW[API Gateway or LB<br\/>(optional)]\n    end\n\n    OSRAW[Object Storage<br\/>Raw Bucket]\n    OSCUR[Object Storage<br\/>Curated\/Features]\n    ADW[Autonomous Data Warehouse<br\/>(optional)]\n    DCAT[OCI Data Catalog]\n    VAULT[OCI Vault]\n    OBS[Logging\/Monitoring]\n    AUD[Audit]\n    IAM[IAM + Compartments + Tags]\n  end\n\n  S1 --> DI\n  S2 --> DI\n  S3 --> OSRAW\n\n  DI --> OSRAW\n  OSRAW --> DF\n  DF --> OSCUR\n  OSCUR --> ADW\n\n  OSCUR --> DSN\n  ADW --> DSN\n\n  DSN --> DSE\n  DSE --> APIGW\n  APIGW --> APP[Production Apps]\n\n  DCAT --- OSRAW\n  DCAT --- OSCUR\n  VAULT --- DI\n  VAULT --- DSN\n  VAULT --- DSE\n  OBS --- DI\n  OBS --- DF\n  OBS --- DSE\n  AUD --- IAM\n\n  SGW --- OSRAW\n  SGW --- OSCUR\n  NAT --- DSN\n<\/code><\/pre>\n\n\n\n
                                                                                      \n\n\n\n
                                                                                      8. Prerequisites<\/h2>\n\n\n\n
                                                                                      Account\/tenancy requirements<\/h3>\n\n\n\n
                                                                                        \n
                                                                                      • An Oracle Cloud (OCI) tenancy<\/strong> with permissions to create resources in a compartment.<\/li>\n
                                                                                      • Ability to use services relevant to your platform design (Object Storage, Data Science, etc.).<\/li>\n
                                                                                      • Some services may require explicit enablement in your tenancy\/region. Verify in the OCI console and official docs<\/strong>.<\/li>\n<\/ul>\n\n\n\n
                                                                                        Permissions \/ IAM roles<\/h3>\n\n\n\n
                                                                                        At minimum, you need permission to:\n– Create and manage Object Storage buckets and objects\n– Create and manage OCI Data Science resources (projects, notebook sessions, models, deployments)\n– Use Logging\/Monitoring if you enable them<\/p>\n\n\n\n
                                                                                        Typical OCI policy patterns (examples; adjust to your compartment and group names):<\/p>\n\n\n\n
                                                                                        allow group DataPlatformAdmins to manage object-family in compartment <compartment-name>\nallow group DataPlatformAdmins to manage data-science-family in compartment <compartment-name>\nallow group DataPlatformAdmins to manage data-integration-family in compartment <compartment-name>\nallow group DataPlatformAdmins to manage data-catalog-family in compartment <compartment-name>\nallow group DataPlatformAdmins to read metrics in compartment <compartment-name>\nallow group DataPlatformAdmins to use cloud-shell in tenancy\n<\/code><\/pre>\n\n\n\n
                                                                                        \n
                                                                                        Policies and \u201c-family\u201d names vary by service and time. <\/em>Verify the correct policy verbs and resource families in official OCI IAM policy documentation<\/em>*: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Identity\/home.htm<\/p>\n<\/blockquote>\n\n\n\n
                                                                                        Billing requirements<\/h3>\n\n\n\n
                                                                                          \n
                                                                                        • Many OCI services are usage-based; some have Always Free tiers or free trial credits depending on your account. Verify your tenancy\u2019s Free Tier eligibility<\/strong>.<\/li>\n
                                                                                        • You must have a payment method on file for pay-as-you-go accounts.<\/li>\n<\/ul>\n\n\n\n
                                                                                          CLI\/SDK\/tools needed<\/h3>\n\n\n\n
                                                                                            \n
                                                                                          • OCI Console<\/strong> access<\/li>\n
                                                                                          • OCI Cloud Shell<\/strong> (recommended for this lab) or local installation of:<\/li>\n
                                                                                          • OCI CLI: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/API\/SDKDocs\/cliinstall.htm<\/li>\n
                                                                                          • Python 3.9+ (if doing local scripts)<\/li>\n
                                                                                          • (Optional) Git for version control<\/li>\n<\/ul>\n\n\n\n
                                                                                            Region availability<\/h3>\n\n\n\n
                                                                                              \n
                                                                                            • Service availability differs by region. Before designing your platform, confirm:<\/li>\n
                                                                                            • OCI Data Science availability<\/li>\n
                                                                                            • Data Integration\/Data Catalog availability<\/li>\n
                                                                                            • Any AI Services\/Generative AI availability (if you plan to use them)<\/li>\n
                                                                                            • Use the OCI console region selector and service documentation pages. Verify in official docs<\/strong>.<\/li>\n<\/ul>\n\n\n\n
                                                                                              Quotas\/limits<\/h3>\n\n\n\n
                                                                                                \n
                                                                                              • Expect quotas for:<\/li>\n
                                                                                              • Number of notebook sessions and deployments<\/li>\n
                                                                                              • Total OCPUs\/compute for Data Science jobs\/deployments<\/li>\n
                                                                                              • Object Storage request rates (rarely limiting for beginners)<\/li>\n
                                                                                              • Check Service Limits<\/strong> in the OCI console.<\/li>\n<\/ul>\n\n\n\n
                                                                                                Prerequisite services<\/h3>\n\n\n\n
                                                                                                For the hands-on tutorial in section 10, you will need:\n– Object Storage\n– OCI Data Science\n– IAM group\/policies\n– (Optional) Logging enabled for your deployment endpoint<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                9. Pricing \/ Cost<\/h2>\n\n\n\n
                                                                                                Current pricing model (how to think about cost)<\/h3>\n\n\n\n
                                                                                                Because AI Data Platform<\/strong> on Oracle Cloud is a composition of services, your total cost is the sum of<\/strong>:\n– Storage (Object Storage, database storage)\n– Data processing (Data Flow\/Spark, Data Integration runs)\n– ML compute (Data Science notebooks\/jobs\/deployments)\n– Networking (egress, NAT, load balancers, FastConnect\/VPN)\n– Observability (log storage\/ingestion where applicable)\n– Optional: Oracle Analytics Cloud, Autonomous Database, etc.<\/p>\n\n\n\n
                                                                                                Official OCI pricing landing page:<\/strong>\nhttps:\/\/www.oracle.com\/cloud\/pricing\/<\/p>\n\n\n\n
                                                                                                OCI cost estimator (official):<\/strong>\nhttps:\/\/www.oracle.com\/cloud\/costestimator.html<\/p>\n\n\n\n
                                                                                                \n
                                                                                                Exact prices vary by region, service SKU, compute shape, and sometimes contract terms. Use the pricing pages and estimator for your region and tenancy.<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                Pricing dimensions (typical)<\/h3>\n\n\n\n
                                                                                                Below are common cost dimensions you must account for (verify per service):\n– Object Storage<\/strong>\n  – GB-month stored by storage tier\n  – Requests (PUT\/GET\/LIST) may be priced depending on tier\n  – Data egress out of OCI region (internet egress)\n– Data Integration<\/strong>\n  – Often priced by usage units (for example, OCPU-hours or equivalent service units). Verify the current billing metric<\/strong>.\n– Data Flow<\/strong>\n  – Spark job compute time (OCPU-hours) and memory; storage I\/O indirectly impacts cost through runtime.\n– Autonomous Database<\/strong>\n  – OCPU-hours (or ECPU) and storage; optional auto-scaling.\n– OCI Data Science<\/strong>\n  – Notebook session compute time (shape-based)\n  – Job runs (compute time)\n  – Model deployments (running compute time)\n– Logging<\/strong>\n  – Ingestion and retention can be billable depending on configuration; verify current model.<\/p>\n\n\n\n
                                                                                                Free tier (if applicable)<\/h3>\n\n\n\n
                                                                                                OCI has an Always Free tier for certain services and shapes, but not all AI\/analytics services are Always Free. Verify<\/strong>:\n– Whether your region supports Always Free resources you intend to use\n– Whether OCI Data Science has free-tier options (often it is paid usage)<\/p>\n\n\n\n
                                                                                                Cost drivers (what makes bills grow)<\/h3>\n\n\n\n
                                                                                                  \n
                                                                                                • Leaving notebook sessions<\/strong> running 24\/7<\/li>\n
                                                                                                • Running model deployments<\/strong> continuously with oversized shapes<\/li>\n
                                                                                                • Reprocessing full datasets instead of incremental loads<\/li>\n
                                                                                                • Storing multiple copies of large datasets (raw + curated + features + backups) without lifecycle rules<\/li>\n
                                                                                                • Excessive log retention and verbose logs<\/li>\n
                                                                                                • Network egress to the internet or across regions<\/li>\n<\/ul>\n\n\n\n
                                                                                                  Hidden or indirect costs<\/h3>\n\n\n\n
                                                                                                    \n
                                                                                                  • NAT Gateway<\/strong> data processing costs (if you use private subnets and outbound internet)<\/li>\n
                                                                                                  • Load balancer \/ API gateway<\/strong> costs if you place inference behind them<\/li>\n
                                                                                                  • Backups<\/strong> and snapshots (databases)<\/li>\n
                                                                                                  • Cross-region replication<\/strong> (Object Storage replication, DR patterns)<\/li>\n<\/ul>\n\n\n\n
                                                                                                    Network\/data transfer implications<\/h3>\n\n\n\n
                                                                                                      \n
                                                                                                    • Intra-region traffic between OCI services is typically cheaper than internet egress, but pricing rules can be nuanced. Verify<\/strong>:<\/li>\n
                                                                                                    • Egress to the internet<\/li>\n
                                                                                                    • Cross-region transfer<\/li>\n
                                                                                                    • FastConnect costs if hybrid<\/li>\n<\/ul>\n\n\n\n
                                                                                                      How to optimize cost<\/h3>\n\n\n\n
                                                                                                        \n
                                                                                                      • Use small shapes<\/strong> for notebooks and deployments; scale only when required.<\/li>\n
                                                                                                      • Enforce auto-shutdown<\/strong> for notebooks (if supported) or implement an operations process.<\/li>\n
                                                                                                      • Use lifecycle policies<\/strong> in Object Storage to move older data to cheaper tiers or delete it.<\/li>\n
                                                                                                      • Partition data and use efficient formats (Parquet\/ORC) to reduce Spark runtime.<\/li>\n
                                                                                                      • Right-size log ingestion and retention; store only what you need for audit and troubleshooting.<\/li>\n
                                                                                                      • Tag everything; use budgets and alerts.<\/li>\n<\/ul>\n\n\n\n
                                                                                                        Example low-cost starter estimate (no fabricated numbers)<\/h3>\n\n\n\n
                                                                                                        A minimal learning setup typically includes:\n– 1 small Object Storage bucket (raw + curated + models)\n– 1 short-lived notebook session for exploration\/training\n– 1 short-lived model deployment for endpoint testing<\/p>\n\n\n\n
                                                                                                        Because compute shapes and regional prices vary, use the OCI Cost Estimator to model:\n– Notebook hours<\/strong> (e.g., a few hours per week)\n– Deployment hours<\/strong> (e.g., run only during tests)\n– Storage GB-month<\/strong> (e.g., a few GB)<\/p>\n\n\n\n
                                                                                                        Example production cost considerations<\/h3>\n\n\n\n
                                                                                                        In production, expect additional spending for:\n– Always-on inference endpoints (possibly multiple for blue\/green or canary)\n– Data processing schedules (daily\/hourly Spark jobs)\n– Warehouse compute (ADW auto-scaling)\n– Network\/security infrastructure (private endpoints, API gateways)\n– Higher log volume, longer retention, and compliance requirements<\/p>\n\n\n\n
                                                                                                        \n\n\n\n
                                                                                                        10. Step-by-Step Hands-On Tutorial<\/h2>\n\n\n\n
                                                                                                        This lab builds a small, real \u201cAI Data Platform\u201d slice on Oracle Cloud<\/strong>:\n– Store a dataset in Object Storage<\/strong>\n– Train a simple ML model using OCI Data Science<\/strong>\n– Deploy the model as an inference endpoint<\/strong>\n– Call the endpoint and validate predictions\n– Clean up safely to avoid ongoing costs<\/p>\n\n\n\n
                                                                                                        \n
                                                                                                        Steps reflect common OCI capabilities. Some UI labels and options can change. If you see differences, follow the latest OCI Data Science documentation<\/strong>: https:\/\/docs.oracle.com\/en-us\/iaas\/data-science\/using\/home.htm<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                        Objective<\/h3>\n\n\n\n
                                                                                                        Build an end-to-end minimal AI workflow on Oracle Cloud that demonstrates the core mechanics of an AI Data Platform: data storage \u2192 model training \u2192 model deployment \u2192 inference \u2192 operations<\/strong>.<\/p>\n\n\n\n
                                                                                                        Lab Overview<\/h3>\n\n\n\n
                                                                                                        You will:\n1. Create (or choose) a compartment for the lab\n2. Create an Object Storage bucket and upload a sample dataset\n3. Create an OCI Data Science project and notebook session\n4. Train a basic model and save the model artifact\n5. Register the model and deploy it\n6. Invoke the endpoint and verify results\n7. Troubleshoot common issues\n8. Clean up all resources<\/p>\n\n\n\n
                                                                                                        Step 1: Prepare your compartment, group, and policies<\/h3>\n\n\n\n
                                                                                                        Goal:<\/strong> Ensure you have a safe place to create resources and enough IAM permissions.<\/p>\n\n\n\n
                                                                                                          \n
                                                                                                        1. \n
                                                                                                          In the OCI Console, create a compartment (or reuse one):\n   – Name: ai-data-platform-lab<\/code>\n   – (Optional) Add tags like env=lab<\/code>, owner=<yourname><\/code><\/p>\n<\/li>\n
                                                                                                        2. \n
                                                                                                          Confirm your user is in a group with policies similar to:\n   – Manage Object Storage\n   – Manage Data Science resources<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                          Expected outcome:<\/strong> You can create buckets and Data Science resources in the ai-data-platform-lab<\/code> compartment.<\/p>\n\n\n\n
                                                                                                          Verification:<\/strong>\n– In the console, open Identity & Security \u2192 Policies<\/strong> and confirm policies apply to your group and compartment.\n– If you can create a bucket in Step 2, IAM is likely sufficient.<\/p>\n\n\n\n
                                                                                                          \n\n\n\n
                                                                                                          Step 2: Create an Object Storage bucket and upload a dataset<\/h3>\n\n\n\n
                                                                                                          Goal:<\/strong> Establish the \u201cdata lake\u201d storage area.<\/p>\n\n\n\n
                                                                                                          2.1 Create a bucket<\/h4>\n\n\n\n
                                                                                                            \n
                                                                                                          1. Go to Storage \u2192 Object Storage & Archive Storage \u2192 Buckets<\/strong><\/li>\n
                                                                                                          2. Select compartment: ai-data-platform-lab<\/code><\/li>\n
                                                                                                          3. Click Create Bucket<\/strong><\/li>\n
                                                                                                          4. Bucket name: ai-data-platform-lab-raw<\/code><\/li>\n
                                                                                                          5. Default storage tier is fine for a lab.<\/li>\n<\/ol>\n\n\n\n
                                                                                                            Expected outcome:<\/strong> Bucket exists and is accessible.<\/p>\n\n\n\n
                                                                                                            2.2 Upload a sample dataset<\/h4>\n\n\n\n
                                                                                                            Use Cloud Shell<\/strong> to create a small dataset locally and upload it.<\/p>\n\n\n\n
                                                                                                              \n
                                                                                                            1. Open Cloud Shell<\/strong> from the OCI Console.<\/li>\n
                                                                                                            2. Create a working directory and a CSV file:<\/li>\n<\/ol>\n\n\n\n
                                                                                                              mkdir -p ~\/ai-data-platform-lab\ncd ~\/ai-data-platform-lab\n\ncat > churn_small.csv << 'EOF'\ncustomer_id,age,tenure_months,monthly_charges,has_internet,churned\nC001,34,12,70.2,1,0\nC002,57,2,95.1,1,1\nC003,45,24,55.0,0,0\nC004,29,5,88.3,1,1\nC005,62,36,40.1,0,0\nC006,41,8,79.5,1,0\nC007,38,3,99.9,1,1\nC008,50,18,65.4,1,0\nEOF\n<\/code><\/pre>\n\n\n\n
                                                                                                                \n
                                                                                                              1. Upload it to your bucket using OCI CLI.<\/li>\n<\/ol>\n\n\n\n
                                                                                                                First, confirm your namespace:<\/p>\n\n\n\n
                                                                                                                oci os ns get\n<\/code><\/pre>\n\n\n\n
                                                                                                                Upload:<\/p>\n\n\n\n
                                                                                                                BUCKET=\"ai-data-platform-lab-raw\"\noci os object put --bucket-name \"$BUCKET\" --file churn_small.csv\n<\/code><\/pre>\n\n\n\n
                                                                                                                Expected outcome:<\/strong> The object churn_small.csv<\/code> is stored in Object Storage.<\/p>\n\n\n\n
                                                                                                                Verification:<\/strong><\/p>\n\n\n\n
                                                                                                                oci os object list --bucket-name \"$BUCKET\" --query \"data[].name\"\n<\/code><\/pre>\n\n\n\n
                                                                                                                You should see churn_small.csv<\/code>.<\/p>\n\n\n\n
                                                                                                                \n\n\n\n
                                                                                                                Step 3: Create an OCI Data Science project and notebook session<\/h3>\n\n\n\n
                                                                                                                Goal:<\/strong> Create a workspace for training.<\/p>\n\n\n\n
                                                                                                                  \n
                                                                                                                1. Go to Analytics & AI \u2192 Data Science<\/strong><\/li>\n
                                                                                                                2. Select compartment: ai-data-platform-lab<\/code><\/li>\n
                                                                                                                3. \n
                                                                                                                  Create a Project<\/strong>\n   – Name: ai-data-platform-lab-project<\/code><\/p>\n<\/li>\n
                                                                                                                4. \n
                                                                                                                  Create a Notebook Session<\/strong> in that project.\n   – Name: ai-data-platform-lab-nb<\/code>\n   – Shape: choose a small\/low-cost shape appropriate for the lab (availability varies by region; verify<\/strong>)\n   – Networking: for a beginner lab, public networking may be the default. For production, prefer private subnet + service gateway.<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                  Wait until the notebook is in Active<\/strong> state, then click Open<\/strong>.<\/p>\n\n\n\n
                                                                                                                  Expected outcome:<\/strong> You have a running notebook environment.<\/p>\n\n\n\n
                                                                                                                  Verification:<\/strong>\n– Notebook session shows Active<\/strong>\n– You can open JupyterLab (or the current notebook UI)<\/p>\n\n\n\n
                                                                                                                  \n\n\n\n
                                                                                                                  Step 4: Load data from Object Storage and train a small model<\/h3>\n\n\n\n
                                                                                                                  Goal:<\/strong> Train a simple churn model and package it for deployment.<\/p>\n\n\n\n
                                                                                                                  In the notebook, run the following Python code.<\/p>\n\n\n\n
                                                                                                                  4.1 Install\/import dependencies<\/h4>\n\n\n\n
                                                                                                                  Most OCI Data Science notebook environments include common packages, but versions vary.<\/p>\n\n\n\n
                                                                                                                  import pandas as pd\nimport numpy as np\n\nfrom sklearn.model_selection import train_test_split\nfrom sklearn.linear_model import LogisticRegression\nfrom sklearn.metrics import classification_report\n\nimport joblib\nimport os\n<\/code><\/pre>\n\n\n\n
                                                                                                                  4.2 Download the dataset from Object Storage<\/h4>\n\n\n\n
                                                                                                                  Use the OCI Python SDK. If the SDK isn\u2019t available in your environment, install it (pip install oci<\/code>)\u2014but prefer the prebuilt environment if provided by OCI.<\/p>\n\n\n\n
                                                                                                                  import oci\nfrom oci.object_storage import ObjectStorageClient\n\n# Notebook sessions often support resource principals.\n# If resource principal auth doesn't work in your environment, verify the recommended auth method in docs.\n# Fallback approach (less ideal) is using config file auth, but avoid putting keys in notebooks.\nsigner = oci.auth.signers.get_resource_principals_signer()\nconfig = {\"region\": os.environ.get(\"OCI_REGION\")}  # some envs set region automatically\nclient = ObjectStorageClient(config=config, signer=signer)\n\nnamespace = client.get_namespace().data\nbucket_name = \"ai-data-platform-lab-raw\"\nobject_name = \"churn_small.csv\"\n\nresp = client.get_object(namespace, bucket_name, object_name)\ndata = resp.data.content.decode(\"utf-8\")\n\nwith open(\"churn_small.csv\", \"w\") as f:\n    f.write(data)\n\ndf = pd.read_csv(\"churn_small.csv\")\ndf\n<\/code><\/pre>\n\n\n\n
                                                                                                                  Expected outcome:<\/strong> The dataframe prints with 8 rows and the columns shown in the CSV.<\/p>\n\n\n\n
                                                                                                                  If this fails:<\/strong> Jump to Troubleshooting<\/strong> \u2192 \u201cResource principal \/ SDK auth errors\u201d.<\/p>\n\n\n\n
                                                                                                                  4.3 Prepare features and train<\/h4>\n\n\n\n
                                                                                                                  # Basic feature prep (toy example)\nX = df[[\"age\", \"tenure_months\", \"monthly_charges\", \"has_internet\"]].astype(float)\ny = df[\"churned\"].astype(int)\n\nX_train, X_test, y_train, y_test = train_test_split(\n    X, y, test_size=0.25, random_state=42, stratify=y\n)\n\nmodel = LogisticRegression()\nmodel.fit(X_train, y_train)\n\npred = model.predict(X_test)\nprint(classification_report(y_test, pred))\n<\/code><\/pre>\n\n\n\n
                                                                                                                  Expected outcome:<\/strong> A classification report is printed. With a tiny dataset, metrics will be unstable; that\u2019s fine for a deployment mechanics lab.<\/p>\n\n\n\n
                                                                                                                  4.4 Save the model artifact<\/h4>\n\n\n\n
                                                                                                                  artifact_dir = \"model_artifact\"\nos.makedirs(artifact_dir, exist_ok=True)\n\njoblib.dump(model, os.path.join(artifact_dir, \"model.joblib\"))\n\n# Save minimal metadata\nwith open(os.path.join(artifact_dir, \"metadata.txt\"), \"w\") as f:\n    f.write(\"model=logistic_regression\\nfeatures=age,tenure_months,monthly_charges,has_internet\\n\")\n<\/code><\/pre>\n\n\n\n
                                                                                                                  Expected outcome:<\/strong> model_artifact\/model.joblib<\/code> exists.<\/p>\n\n\n\n
                                                                                                                  Verification:<\/strong><\/p>\n\n\n\n
                                                                                                                  os.listdir(\"model_artifact\")\n<\/code><\/pre>\n\n\n\n
                                                                                                                  \n\n\n\n
                                                                                                                  Step 5: Create a scoring script (entrypoint) for deployment<\/h3>\n\n\n\n
                                                                                                                  OCI model deployments need a way to load the model and handle requests. The exact format depends on OCI Data Science deployment requirements and base images.<\/p>\n\n\n\n
                                                                                                                  Verify the current \u201cModel Deployment\u201d serving format in official docs<\/strong> and adapt accordingly:\nhttps:\/\/docs.oracle.com\/en-us\/iaas\/data-science\/using\/model_deployments.htm (navigate from Data Science docs)<\/p>\n\n\n\n
                                                                                                                  Below is a generic Python scoring example (you may need to adapt file names and handler signatures to OCI\u2019s required format).<\/p>\n\n\n\n
                                                                                                                  Create score.py<\/code>:<\/p>\n\n\n\n
                                                                                                                  score_py = r'''\nimport json\nimport joblib\nimport numpy as np\nimport os\n\nMODEL_PATH = os.environ.get(\"MODEL_PATH\", \"model.joblib\")\n\n_model = None\n\ndef load_model():\n    global _model\n    if _model is None:\n        _model = joblib.load(MODEL_PATH)\n    return _model\n\ndef predict(data):\n    \"\"\"\n    Expected input JSON:\n    {\n      \"instances\": [\n        {\"age\": 40, \"tenure_months\": 10, \"monthly_charges\": 80.0, \"has_internet\": 1}\n      ]\n    }\n    \"\"\"\n    model = load_model()\n    instances = data.get(\"instances\", [])\n    X = []\n    for row in instances:\n        X.append([\n            float(row[\"age\"]),\n            float(row[\"tenure_months\"]),\n            float(row[\"monthly_charges\"]),\n            float(row[\"has_internet\"]),\n        ])\n    X = np.array(X)\n    proba = model.predict_proba(X)[:, 1].tolist()\n    pred = model.predict(X).tolist()\n    return {\"predictions\": pred, \"probabilities\": proba}\n\ndef handler(input_data: str):\n    try:\n        payload = json.loads(input_data)\n        result = predict(payload)\n        return json.dumps(result)\n    except Exception as e:\n        return json.dumps({\"error\": str(e)})\n'''\nwith open(os.path.join(artifact_dir, \"score.py\"), \"w\") as f:\n    f.write(score_py)\n\nprint(\"Wrote model_artifact\/score.py\")\n<\/code><\/pre>\n\n\n\n
                                                                                                                  Now validate locally:<\/p>\n\n\n\n
                                                                                                                  import json, joblib\nos.environ[\"MODEL_PATH\"] = os.path.join(\"model_artifact\", \"model.joblib\")\n\nfrom importlib.machinery import SourceFileLoader\nsc = SourceFileLoader(\"score\", os.path.join(\"model_artifact\", \"score.py\")).load_module()\n\ntest_payload = {\n    \"instances\": [{\"age\": 57, \"tenure_months\": 2, \"monthly_charges\": 95.1, \"has_internet\": 1}]\n}\nprint(sc.handler(json.dumps(test_payload)))\n<\/code><\/pre>\n\n\n\n
                                                                                                                  Expected outcome:<\/strong> A JSON response with predictions<\/code> and probabilities<\/code>.<\/p>\n\n\n\n
                                                                                                                  \n
                                                                                                                  If OCI requires a different handler interface, keep the model logic but adjust the wrapper to OCI\u2019s required format (verify in docs).<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                                  \n\n\n\n
                                                                                                                  Step 6: Upload the model artifact to Object Storage (optional but common)<\/h3>\n\n\n\n
                                                                                                                  Many workflows store model artifacts in Object Storage for traceability.<\/p>\n\n\n\n
                                                                                                                  From the notebook (or Cloud Shell), create a zip:<\/p>\n\n\n\n
                                                                                                                  import shutil\nshutil.make_archive(\"churn_model_artifact\", \"zip\", artifact_dir)\n<\/code><\/pre>\n\n\n\n
                                                                                                                  Upload to Object Storage (you can do this from Cloud Shell for simplicity):<\/p>\n\n\n\n
                                                                                                                  cd ~\/ai-data-platform-lab  # or wherever you downloaded the zip\n# If the zip is in the notebook filesystem, download it or upload from the notebook if supported.\n\n# Example upload command (run where the zip exists):\noci os object put --bucket-name ai-data-platform-lab-raw --file churn_model_artifact.zip\n<\/code><\/pre>\n\n\n\n
                                                                                                                  Expected outcome:<\/strong> Artifact zip exists in the bucket.<\/p>\n\n\n\n
                                                                                                                  Verification:<\/strong><\/p>\n\n\n\n
                                                                                                                  oci os object list --bucket-name ai-data-platform-lab-raw --query \"data[].name\"\n<\/code><\/pre>\n\n\n\n
                                                                                                                  \n\n\n\n
                                                                                                                  Step 7: Register the model and create a model deployment<\/h3>\n\n\n\n
                                                                                                                  Goal:<\/strong> Create a managed inference endpoint.<\/p>\n\n\n\n
                                                                                                                  In the OCI Console:\n1. Go to Analytics & AI \u2192 Data Science \u2192 Projects \u2192 ai-data-platform-lab-project<\/strong>\n2. Find Models<\/strong> (or \u201cModel catalog\/Model artifacts\u201d depending on UI)\n3. Create a Model<\/strong>\n   – Provide a name: churn-lr-v1<\/code>\n   – Upload the model artifact (zip) or point to an artifact location (depending on supported flow)\n   – Specify artifact files and runtime details as required (verify exact fields)<\/p>\n\n\n\n
                                                                                                                    \n
                                                                                                                  1. Create a Model Deployment<\/strong>\n   – Name: churn-lr-deploy<\/code>\n   – Choose a small shape for cost control\n   – Choose networking mode:
                                                                                                                      \n
                                                                                                                    • For a lab: public endpoint if allowed<\/li>\n
                                                                                                                    • For production: private endpoint in a private subnet and expose via API Gateway\/LB<\/li>\n
                                                                                                                    • Create the deployment<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                      Wait until status is Active<\/strong>.<\/p>\n\n\n\n
                                                                                                                      Expected outcome:<\/strong> You have a deployment with an HTTPS endpoint URL.<\/p>\n\n\n\n
                                                                                                                      Verification:<\/strong>\n– Deployment status shows Active<\/strong>\n– Endpoint URL is visible in the deployment details<\/p>\n\n\n\n
                                                                                                                      \n\n\n\n
                                                                                                                      Step 8: Invoke the endpoint<\/h3>\n\n\n\n
                                                                                                                      Goal:<\/strong> Test inference end-to-end.<\/p>\n\n\n\n
                                                                                                                      The authentication method depends on how OCI Data Science secures the endpoint (IAM auth, token-based, etc.). Verify the current invocation method in the model deployment documentation<\/strong>.<\/p>\n\n\n\n
                                                                                                                      A common pattern is to use an OCI SDK\/CLI-signed request or a provided invocation token. If your deployment provides a simple test interface in console, use it first.<\/p>\n\n\n\n
                                                                                                                      If an HTTP invocation with a bearer token is supported, you might do something like:<\/p>\n\n\n\n
                                                                                                                      ENDPOINT_URL=\"https:\/\/<your-model-deployment-endpoint>\"\nTOKEN=\"<your-token-if-applicable>\"\n\ncurl -sS -X POST \"$ENDPOINT_URL\" \\\n  -H \"Content-Type: application\/json\" \\\n  -H \"Authorization: Bearer $TOKEN\" \\\n  -d '{\n    \"instances\": [\n      {\"age\": 57, \"tenure_months\": 2, \"monthly_charges\": 95.1, \"has_internet\": 1}\n    ]\n  }'\n<\/code><\/pre>\n\n\n\n
                                                                                                                      Expected outcome:<\/strong> JSON response with prediction and probability.<\/p>\n\n\n\n
                                                                                                                      If you receive 401\/403:<\/strong> see Troubleshooting \u2192 \u201cEndpoint auth errors\u201d.<\/p>\n\n\n\n
                                                                                                                      \n\n\n\n
                                                                                                                      Validation<\/h3>\n\n\n\n
                                                                                                                      Use this checklist:<\/p>\n\n\n\n
                                                                                                                        \n
                                                                                                                      1. \n
                                                                                                                        Object Storage<\/strong>\n   – Bucket exists\n   – churn_small.csv<\/code> exists<\/p>\n<\/li>\n
                                                                                                                      2. \n
                                                                                                                        Notebook<\/strong>\n   – Notebook session is Active\n   – You successfully read the dataset and trained a model\n   – Artifact contains model.joblib<\/code> and score.py<\/code><\/p>\n<\/li>\n
                                                                                                                      3. \n
                                                                                                                        Model<\/strong>\n   – Model registered successfully<\/p>\n<\/li>\n
                                                                                                                      4. \n
                                                                                                                        Deployment<\/strong>\n   – Deployment is Active\n   – Endpoint invocation returns predictions<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                        \n\n\n\n
                                                                                                                        Troubleshooting<\/h3>\n\n\n\n
                                                                                                                        Issue: \u201cNotAuthorizedOrNotFound\u201d when reading Object Storage<\/h4>\n\n\n\n
                                                                                                                        Cause:<\/strong> IAM policy missing for Object Storage or wrong compartment\/bucket name.\nFix:<\/strong>\n– Confirm bucket compartment and name\n– Confirm group policies include manage object-family<\/code> (or at least read access)\n– Verify you\u2019re using the correct namespace and region<\/p>\n\n\n\n
                                                                                                                        Issue: Resource principal \/ SDK auth errors in notebook<\/h4>\n\n\n\n
                                                                                                                        Cause:<\/strong> Notebook environment not configured for resource principals, or code expects env vars that aren\u2019t set.\nFix:<\/strong>\n– Check OCI Data Science docs for the recommended authentication method for notebooks.\n– Try retrieving region from notebook metadata or set it explicitly in the SDK config.\n– As a last resort (not recommended for shared environments), use OCI config file auth\u2014prefer secure methods.<\/p>\n\n\n\n
                                                                                                                        Issue: Deployment fails to start \/ stuck provisioning<\/h4>\n\n\n\n
                                                                                                                        Cause:<\/strong> Shape quota exceeded, missing network access, artifact format mismatch, or required handler not found.\nFix:<\/strong>\n– Check Work Requests<\/strong> and deployment logs in the console\n– Confirm quotas in Service Limits<\/strong>\n– Verify your artifact structure matches OCI\u2019s required format (this is the most common issue)\n– Try a simpler base runtime or official sample format (verify in docs)<\/p>\n\n\n\n
                                                                                                                        Issue: Endpoint returns 500 errors<\/h4>\n\n\n\n
                                                                                                                        Cause:<\/strong> Scoring script exception, missing dependency, incorrect request format.\nFix:<\/strong>\n– Check deployment logs\n– Validate JSON schema your handler expects\n– Add defensive checks and better error output in the scoring script<\/p>\n\n\n\n
                                                                                                                        Issue: Endpoint auth errors (401\/403)<\/h4>\n\n\n\n
                                                                                                                        Cause:<\/strong> Wrong auth method\/token, calling from unauthorized principal\/network.\nFix:<\/strong>\n– Verify the endpoint\u2019s required auth method in docs\n– Ensure caller identity has permissions\n– If endpoint is private, call from within the VCN (bastion\/compute\/Cloud Shell may not have access)<\/p>\n\n\n\n
                                                                                                                        \n\n\n\n
                                                                                                                        Cleanup<\/h3>\n\n\n\n
                                                                                                                        To avoid ongoing charges, clean up in this order:<\/p>\n\n\n\n
                                                                                                                          \n
                                                                                                                        1. Delete model deployment<\/strong> (churn-lr-deploy<\/code>)<\/li>\n
                                                                                                                        2. Delete model registration<\/strong> (churn-lr-v1<\/code>) if not needed<\/li>\n
                                                                                                                        3. Terminate notebook session<\/strong> (ai-data-platform-lab-nb<\/code>)<\/li>\n
                                                                                                                        4. Delete Object Storage objects and bucket<\/strong>\n   – Delete objects (churn_small.csv<\/code>, churn_model_artifact.zip<\/code>) then delete the bucket<\/li>\n
                                                                                                                        5. (Optional) Delete the project<\/li>\n
                                                                                                                        6. (Optional) Delete the compartment (only if it was created solely for this lab and is empty)<\/li>\n<\/ol>\n\n\n\n
                                                                                                                          Verification:<\/strong> In the compartment, ensure no running Data Science resources remain and the bucket is removed.<\/p>\n\n\n\n
                                                                                                                          \n\n\n\n
                                                                                                                          11. Best Practices<\/h2>\n\n\n\n
                                                                                                                          Architecture best practices<\/h3>\n\n\n\n
                                                                                                                            \n
                                                                                                                          • Separate zones in Object Storage:<\/li>\n
                                                                                                                          • raw\/<\/code> for immutable ingested data<\/li>\n
                                                                                                                          • curated\/<\/code> for cleaned, conformed datasets<\/li>\n
                                                                                                                          • features\/<\/code> for ML features<\/li>\n
                                                                                                                          • models\/<\/code> for model artifacts<\/li>\n
                                                                                                                          • Use immutable data snapshots<\/strong> for training reproducibility (date-partitioned paths).<\/li>\n
                                                                                                                          • Prefer private networking<\/strong> for production notebooks, pipelines, and endpoints.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                            IAM\/security best practices<\/h3>\n\n\n\n
                                                                                                                              \n
                                                                                                                            • Use least privilege<\/strong> and separate roles:<\/li>\n
                                                                                                                            • Data engineers: manage pipelines + storage paths<\/li>\n
                                                                                                                            • Data scientists: read curated\/features, write models, manage notebooks<\/li>\n
                                                                                                                            • ML engineers\/operators: manage deployments in prod<\/li>\n
                                                                                                                            • Use separate compartments for dev<\/code>, test<\/code>, prod<\/code>.<\/li>\n
                                                                                                                            • Enforce mandatory tags: env<\/code>, owner<\/code>, cost-center<\/code>, data-classification<\/code>.<\/li>\n
                                                                                                                            • Avoid embedding API keys and secrets in notebooks; use OCI Vault<\/strong> and resource principals where supported.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                              Cost best practices<\/h3>\n\n\n\n
                                                                                                                                \n
                                                                                                                              • Auto-stop notebooks; delete unused model deployments.<\/li>\n
                                                                                                                              • Use lifecycle rules to transition or delete old raw\/temporary data.<\/li>\n
                                                                                                                              • Compress and columnarize data (Parquet) to reduce Spark runtime.<\/li>\n
                                                                                                                              • Track cost by tags; set budgets and alerts.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                Performance best practices<\/h3>\n\n\n\n
                                                                                                                                  \n
                                                                                                                                • Partition datasets by date and common query keys.<\/li>\n
                                                                                                                                • For Spark, tune:<\/li>\n
                                                                                                                                • number of partitions<\/li>\n
                                                                                                                                • file sizes (avoid too many tiny files)<\/li>\n
                                                                                                                                • caching strategies for repeated transformations<\/li>\n
                                                                                                                                • For model deployments, load the model once at startup (lazy load) and reuse for requests.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                  Reliability best practices<\/h3>\n\n\n\n
                                                                                                                                    \n
                                                                                                                                  • Make pipelines idempotent<\/strong>: rerunning a job should not corrupt curated data.<\/li>\n
                                                                                                                                  • Use atomic writes:<\/li>\n
                                                                                                                                  • write to a temporary path<\/li>\n
                                                                                                                                  • validate<\/li>\n
                                                                                                                                  • then move\/rename to final path if supported (object storage semantics differ; design carefully)<\/li>\n
                                                                                                                                  • Add retry logic and dead-letter\/quarantine patterns for bad data.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                    Operations best practices<\/h3>\n\n\n\n
                                                                                                                                      \n
                                                                                                                                    • Centralize logs and define standard dashboards:<\/li>\n
                                                                                                                                    • pipeline success rate<\/li>\n
                                                                                                                                    • data freshness<\/li>\n
                                                                                                                                    • endpoint latency and 5xx rate<\/li>\n
                                                                                                                                    • Use runbooks and on-call ownership for production endpoints.<\/li>\n
                                                                                                                                    • Keep a clear model release process (approval gates, canary, rollback).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                      Governance\/tagging\/naming best practices<\/h3>\n\n\n\n
                                                                                                                                        \n
                                                                                                                                      • Naming convention example:<\/li>\n
                                                                                                                                      • Buckets: <org>-<env>-ai-raw<\/code>, <org>-<env>-ai-curated<\/code><\/li>\n
                                                                                                                                      • Models: <usecase>-<algo>-v<version><\/code><\/li>\n
                                                                                                                                      • Deployments: <usecase>-<env>-<version><\/code><\/li>\n
                                                                                                                                      • Tag everything at creation time; enforce via policy\/process where possible.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                        \n\n\n\n
                                                                                                                                        12. Security Considerations<\/h2>\n\n\n\n
                                                                                                                                        Identity and access model<\/h3>\n\n\n\n
                                                                                                                                          \n
                                                                                                                                        • OCI IAM<\/strong> controls access with:<\/li>\n
                                                                                                                                        • Users, groups, dynamic groups<\/li>\n
                                                                                                                                        • Policies scoped to compartments<\/li>\n
                                                                                                                                        • For workloads, prefer resource principals<\/strong> (or instance principals) where supported to avoid distributing API keys. Verify service support<\/strong>.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                          Encryption<\/h3>\n\n\n\n
                                                                                                                                            \n
                                                                                                                                          • At rest:<\/strong> OCI services typically encrypt data at rest by default (service-dependent). Verify encryption behavior for:<\/li>\n
                                                                                                                                          • Object Storage buckets<\/li>\n
                                                                                                                                          • Data Science artifacts<\/li>\n
                                                                                                                                          • Databases<\/li>\n
                                                                                                                                          • In transit:<\/strong> Use TLS for API calls and endpoint invocation.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                            Network exposure<\/h3>\n\n\n\n
                                                                                                                                              \n
                                                                                                                                            • Avoid public endpoints for:<\/li>\n
                                                                                                                                            • notebooks<\/li>\n
                                                                                                                                            • internal datasets<\/li>\n
                                                                                                                                            • production inference<\/li>\n
                                                                                                                                            • Use private subnets and restrict traffic with NSGs.<\/li>\n
                                                                                                                                            • Use API Gateway\/WAF patterns when exposing inference externally.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                              Secrets handling<\/h3>\n\n\n\n
                                                                                                                                                \n
                                                                                                                                              • Store secrets in OCI Vault<\/strong> (API keys, DB passwords).<\/li>\n
                                                                                                                                              • Never store secrets in notebooks, git repos, or plain-text object storage.<\/li>\n
                                                                                                                                              • Use rotation policies where feasible.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                Audit\/logging<\/h3>\n\n\n\n
                                                                                                                                                  \n
                                                                                                                                                • Enable OCI Audit<\/strong> (usually enabled by default at tenancy level; verify).<\/li>\n
                                                                                                                                                • Ensure logs exist for:<\/li>\n
                                                                                                                                                • model deployments (requests\/errors)<\/li>\n
                                                                                                                                                • pipeline runs<\/li>\n
                                                                                                                                                • administrative actions (policy changes, endpoint changes)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                  Compliance considerations<\/h3>\n\n\n\n
                                                                                                                                                    \n
                                                                                                                                                  • Data residency: choose OCI regions that meet residency requirements.<\/li>\n
                                                                                                                                                  • PII\/PHI handling:<\/li>\n
                                                                                                                                                  • minimize access<\/li>\n
                                                                                                                                                  • masking\/tokenization where required<\/li>\n
                                                                                                                                                  • separate compartments and stricter policies for sensitive datasets<\/li>\n
                                                                                                                                                  • Retention policies: define and enforce retention per dataset class.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                    Common security mistakes<\/h3>\n\n\n\n
                                                                                                                                                      \n
                                                                                                                                                    • Public Object Storage buckets containing customer data<\/li>\n
                                                                                                                                                    • Overbroad policies (manage all-resources in tenancy<\/code>)<\/li>\n
                                                                                                                                                    • Shared user accounts for notebooks and deployments<\/li>\n
                                                                                                                                                    • No separation between dev and prod compartments<\/li>\n
                                                                                                                                                    • No audit review process for who deployed models and when<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                      Secure deployment recommendations<\/h3>\n\n\n\n
                                                                                                                                                        \n
                                                                                                                                                      • Private inference endpoints + API gateway with auth and rate limiting<\/li>\n
                                                                                                                                                      • Use mTLS or OAuth-based patterns where appropriate (implementation-dependent)<\/li>\n
                                                                                                                                                      • Implement approval gates for promoting models to production<\/li>\n
                                                                                                                                                      • Continuous vulnerability scanning for custom images (if you use them; verify OCI support)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                        \n\n\n\n
                                                                                                                                                        13. Limitations and Gotchas<\/h2>\n\n\n\n
                                                                                                                                                        \n
                                                                                                                                                        These are common platform-level pitfalls; service-specific limits change over time. Verify limits and current behaviors in official OCI docs and service limits pages.<\/strong><\/p>\n<\/blockquote>\n\n\n\n
                                                                                                                                                        Known limitations (typical)<\/h3>\n\n\n\n
                                                                                                                                                          \n
                                                                                                                                                        • Service availability varies by region<\/strong> for Data Integration, Data Catalog, Data Science, and AI services.<\/li>\n
                                                                                                                                                        • Model deployment formats and supported frameworks can be restrictive; confirm supported runtimes.<\/li>\n
                                                                                                                                                        • Some orchestration needs may exceed what GUI-based tools provide; you may need custom orchestration.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                          Quotas<\/h3>\n\n\n\n
                                                                                                                                                            \n
                                                                                                                                                          • Data Science compute quotas and deployment counts can block scaling.<\/li>\n
                                                                                                                                                          • Spark job concurrency and maximum resources are quota-bound.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                            Regional constraints<\/h3>\n\n\n\n
                                                                                                                                                              \n
                                                                                                                                                            • Some AI services (especially generative AI) may have limited regional availability.<\/li>\n
                                                                                                                                                            • Cross-region DR increases complexity and cost.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                              Pricing surprises<\/h3>\n\n\n\n
                                                                                                                                                                \n
                                                                                                                                                              • Leaving deployments and notebooks running is the #1 surprise.<\/li>\n
                                                                                                                                                              • NAT\/data egress costs can appear when private subnets access the internet.<\/li>\n
                                                                                                                                                              • Log volume and retention can generate unexpected costs.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                Compatibility issues<\/h3>\n\n\n\n
                                                                                                                                                                  \n
                                                                                                                                                                • SDK versions in notebook environments may differ from your local environment.<\/li>\n
                                                                                                                                                                • Artifact packaging requirements can change; use OCI-provided examples.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                  Operational gotchas<\/h3>\n\n\n\n
                                                                                                                                                                    \n
                                                                                                                                                                  • No consistent tagging leads to \u201corphaned\u201d resources and waste.<\/li>\n
                                                                                                                                                                  • Lack of data versioning breaks reproducibility.<\/li>\n
                                                                                                                                                                  • Training on mutable datasets causes \u201cmodel drift\u201d debugging nightmares.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                    Migration challenges<\/h3>\n\n\n\n
                                                                                                                                                                      \n
                                                                                                                                                                    • Moving from on-prem ETL tools requires rethinking governance and scheduling.<\/li>\n
                                                                                                                                                                    • Data formats and partitioning strategies matter; lift-and-shift files without optimization can perform poorly.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                      Vendor-specific nuances<\/h3>\n\n\n\n
                                                                                                                                                                        \n
                                                                                                                                                                      • OCI IAM policies are powerful but can be tricky; test policies in lower environments.<\/li>\n
                                                                                                                                                                      • Service-to-service private access patterns (service gateways, private endpoints) require careful network design.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                        \n\n\n\n
                                                                                                                                                                        14. Comparison with Alternatives<\/h2>\n\n\n\n
                                                                                                                                                                        An AI Data Platform is more about the assembled architecture<\/em> than any single component. Here\u2019s how Oracle Cloud\u2019s typical approach compares.<\/p>\n\n\n\n
                                                                                                                                                                        Nearest services in Oracle Cloud<\/h3>\n\n\n\n
                                                                                                                                                                          \n
                                                                                                                                                                        • OCI Data Science<\/strong>: ML training and deployment (core AI layer)<\/li>\n
                                                                                                                                                                        • Oracle Analytics Cloud (OAC)<\/strong>: BI dashboards and self-service analytics<\/li>\n
                                                                                                                                                                        • Autonomous Data Warehouse (ADW)<\/strong>: curated analytics store<\/li>\n
                                                                                                                                                                        • OCI Data Integration \/ Data Flow<\/strong>: data pipelines and transformation<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                          Nearest services in other clouds<\/h3>\n\n\n\n
                                                                                                                                                                            \n
                                                                                                                                                                          • AWS<\/strong>: S3 + Glue + Lake Formation + SageMaker<\/li>\n
                                                                                                                                                                          • Azure<\/strong>: Fabric \/ Synapse patterns + Azure ML + Purview<\/li>\n
                                                                                                                                                                          • Google Cloud<\/strong>: GCS + Dataflow\/Dataproc + Vertex AI + Dataplex<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                            Open-source \/ self-managed alternatives<\/h3>\n\n\n\n
                                                                                                                                                                              \n
                                                                                                                                                                            • Databricks (managed platform, multi-cloud)<\/li>\n
                                                                                                                                                                            • Kubeflow + MLflow + Airflow on Kubernetes<\/li>\n
                                                                                                                                                                            • Spark + Airflow + a model server (KServe\/Triton) self-managed<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                              Comparison table<\/h3>\n\n\n\n
                                                                                                                                                                              \n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                                                              Option<\/th>\nBest For<\/th>\nStrengths<\/th>\nWeaknesses<\/th>\nWhen to Choose<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                              Oracle Cloud AI Data Platform (pattern using OCI services)<\/strong><\/td>\nOrganizations building governed analytics + ML on OCI<\/td>\nStrong OCI integration (IAM, compartments), enterprise security patterns, managed building blocks<\/td>\nRequires architecture decisions across multiple services; availability varies by region<\/td>\nYou already run workloads on OCI and need a consistent data\u2192ML\u2192deployment platform<\/td>\n<\/tr>\n
                                                                                                                                                                              OCI Data Science only<\/strong><\/td>\nSmall ML teams that already have data pipelines<\/td>\nQuick start for notebooks\/training\/deployments<\/td>\nDoesn\u2019t solve ingestion\/governance alone<\/td>\nYou have a curated dataset already and need to operationalize ML<\/td>\n<\/tr>\n
                                                                                                                                                                              Oracle Analytics Cloud + ADW<\/strong><\/td>\nBI-first organizations<\/td>\nFast analytics, governed warehouse approach<\/td>\nML ops may still need Data Science integration<\/td>\nPrimary goal is dashboards\/semantic metrics with some ML augmentation<\/td>\n<\/tr>\n
                                                                                                                                                                              AWS Lakehouse + SageMaker<\/strong><\/td>\nAWS-native teams<\/td>\nBroad ecosystem, many integrations<\/td>\nComplexity; governance requires careful setup<\/td>\nYou are standardized on AWS and want deep integration with AWS services<\/td>\n<\/tr>\n
                                                                                                                                                                              Azure Fabric\/Azure ML<\/strong><\/td>\nMicrosoft-native teams<\/td>\nIntegrated governance with Purview, strong enterprise identity patterns<\/td>\nCost and complexity; product boundaries evolving<\/td>\nYou are standardized on Azure\/Microsoft and need integrated data+AI<\/td>\n<\/tr>\n
                                                                                                                                                                              GCP Vertex AI + BigQuery<\/strong><\/td>\nTeams with BigQuery-centric analytics<\/td>\nStrong managed ML integrations, scalable analytics<\/td>\nRegion\/service constraints, learning curve<\/td>\nYou run analytics primarily in BigQuery and want tight ML integration<\/td>\n<\/tr>\n
                                                                                                                                                                              Self-managed OSS (Spark\/Airflow\/MLflow\/KServe)<\/strong><\/td>\nHighly customized needs, strict portability<\/td>\nMaximum control, portability, no vendor lock-in<\/td>\nHigh ops burden, security hardening required<\/td>\nYou have a mature platform team and need bespoke workflows or portability<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                              \n\n\n\n
                                                                                                                                                                              15. Real-World Example<\/h2>\n\n\n\n
                                                                                                                                                                              Enterprise example: Bank fraud scoring + governance<\/h3>\n\n\n\n
                                                                                                                                                                                \n
                                                                                                                                                                              • Problem:<\/strong> Fraud models exist in research but can\u2019t be deployed safely. Data is sensitive (PII), and audits require traceability.<\/li>\n
                                                                                                                                                                              • Proposed architecture (OCI):<\/strong><\/li>\n
                                                                                                                                                                              • Ingest transactions to Object Storage raw<\/strong><\/li>\n
                                                                                                                                                                              • Transform and create features via Data Integration<\/strong> and\/or Data Flow<\/strong><\/li>\n
                                                                                                                                                                              • Store curated aggregates in Autonomous Data Warehouse<\/strong><\/li>\n
                                                                                                                                                                              • Catalog datasets and apply classifications in OCI Data Catalog<\/strong><\/li>\n
                                                                                                                                                                              • Train models in OCI Data Science<\/strong> using curated snapshots<\/li>\n
                                                                                                                                                                              • Deploy model endpoints privately in a VCN<\/strong>, exposed via API Gateway<\/strong><\/li>\n
                                                                                                                                                                              • Use Vault<\/strong> for secrets, Audit<\/strong> for change tracking, Logging\/Monitoring<\/strong> for ops<\/li>\n
                                                                                                                                                                              • Why this service approach was chosen:<\/strong> Strong compartment-based governance, private networking patterns, and managed training\/deployment reduce risk and accelerate compliance alignment.<\/li>\n
                                                                                                                                                                              • Expected outcomes:<\/strong><\/li>\n
                                                                                                                                                                              • Faster model promotion to production<\/li>\n
                                                                                                                                                                              • Audit-ready trail of model versions, approvals, and deployments<\/li>\n
                                                                                                                                                                              • Reduced data leakage risk via least-privilege and private endpoints<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                Startup\/small-team example: SaaS churn prediction<\/h3>\n\n\n\n
                                                                                                                                                                                  \n
                                                                                                                                                                                • Problem:<\/strong> A small SaaS company wants churn prediction and a weekly \u201cat-risk customers\u201d list. They have limited ops capacity.<\/li>\n
                                                                                                                                                                                • Proposed architecture (OCI):<\/strong><\/li>\n
                                                                                                                                                                                • Upload product usage exports to Object Storage<\/strong><\/li>\n
                                                                                                                                                                                • Use a lightweight transform (Data Integration or scripted job) to curate features<\/li>\n
                                                                                                                                                                                • Train a model in OCI Data Science<\/strong> weekly<\/li>\n
                                                                                                                                                                                • Deploy a small endpoint or do batch scoring and write results back to Object Storage<\/li>\n
                                                                                                                                                                                • Basic monitoring and budget alerts<\/li>\n
                                                                                                                                                                                • Why this service approach was chosen:<\/strong> Minimal infrastructure management; pay-as-you-go scaling; easy to start small and grow.<\/li>\n
                                                                                                                                                                                • Expected outcomes:<\/strong><\/li>\n
                                                                                                                                                                                • A repeatable weekly churn score process<\/li>\n
                                                                                                                                                                                • A simple API or report that customer success can use<\/li>\n
                                                                                                                                                                                • Cost control via scheduled jobs and turning off idle resources<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                  \n\n\n\n
                                                                                                                                                                                  16. FAQ<\/h2>\n\n\n\n
                                                                                                                                                                                  1) Is \u201cAI Data Platform\u201d a single OCI service?<\/h3>\n\n\n\n
                                                                                                                                                                                  Often it\u2019s used as a platform\/solution term<\/strong> rather than one SKU. In OCI, you typically assemble it from services like Object Storage, Data Integration, Data Catalog, Data Flow, Autonomous Database, and Data Science. Verify in official docs<\/strong> if your tenancy includes a specifically branded \u201cAI Data Platform\u201d service.<\/p>\n\n\n\n
                                                                                                                                                                                  2) What is the minimum set of services to get started?<\/h3>\n\n\n\n
                                                                                                                                                                                  A minimal setup is:\n– Object Storage<\/strong> for datasets and artifacts\n– OCI Data Science<\/strong> for training and deployment\nOptionally add Data Catalog and Data Integration as you scale governance and pipelines.<\/p>\n\n\n\n
                                                                                                                                                                                  3) Do I need a VCN for the platform?<\/h3>\n\n\n\n
                                                                                                                                                                                  For simple labs, you may use public endpoints. For production, you should plan a VCN with private subnets<\/strong>, service gateway access to Object Storage, and controlled ingress\/egress.<\/p>\n\n\n\n
                                                                                                                                                                                  4) How do I prevent public data exposure?<\/h3>\n\n\n\n
                                                                                                                                                                                    \n
                                                                                                                                                                                  • Avoid public buckets<\/li>\n
                                                                                                                                                                                  • Use least-privilege IAM policies<\/li>\n
                                                                                                                                                                                  • Use private endpoints and NSGs for workloads<\/li>\n
                                                                                                                                                                                  • Use Vault for secrets and never store credentials in plain text<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                    5) How do I version datasets for reproducible training?<\/h3>\n\n\n\n
                                                                                                                                                                                    Use immutable paths, for example:\n– oci:\/\/bucket@namespace\/raw\/transactions\/dt=2026-04-16\/<\/code>\nand store the training snapshot path with the model metadata.<\/p>\n\n\n\n
                                                                                                                                                                                    6) How do I version models?<\/h3>\n\n\n\n
                                                                                                                                                                                    Use a model naming\/metadata standard:\n– fraud-xgboost-v12<\/code>\nand record:\n– training dataset snapshot\n– code version (git commit)\n– hyperparameters\n– evaluation metrics<\/p>\n\n\n\n
                                                                                                                                                                                    7) Can I do streaming ingestion?<\/h3>\n\n\n\n
                                                                                                                                                                                    Yes, but it depends on which OCI services you select (for example, OCI Streaming) and your architecture. This tutorial focuses on a batch workflow. Verify streaming service availability and integration patterns<\/strong>.<\/p>\n\n\n\n
                                                                                                                                                                                    8) What formats should I store in Object Storage?<\/h3>\n\n\n\n
                                                                                                                                                                                    For analytics and Spark, prefer columnar formats like Parquet<\/strong> where possible. For interchange and small datasets, CSV is fine.<\/p>\n\n\n\n
                                                                                                                                                                                    9) How do I control costs in Data Science?<\/h3>\n\n\n\n
                                                                                                                                                                                      \n
                                                                                                                                                                                    • Stop notebook sessions when not in use<\/li>\n
                                                                                                                                                                                    • Delete or scale down model deployments<\/li>\n
                                                                                                                                                                                    • Use budgets and tags<\/li>\n
                                                                                                                                                                                    • Right-size shapes and avoid always-on endpoints for infrequent use cases<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                      10) How do I secure model endpoints?<\/h3>\n\n\n\n
                                                                                                                                                                                        \n
                                                                                                                                                                                      • Private deployment in a VCN<\/li>\n
                                                                                                                                                                                      • API Gateway with authentication\/authorization<\/li>\n
                                                                                                                                                                                      • Rate limiting and request validation<\/li>\n
                                                                                                                                                                                      • Logging and alerting on unusual error rates<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                        11) What monitoring should I implement first?<\/h3>\n\n\n\n
                                                                                                                                                                                          \n
                                                                                                                                                                                        • Pipeline\/job success\/failure<\/li>\n
                                                                                                                                                                                        • Data freshness (time since last successful load)<\/li>\n
                                                                                                                                                                                        • Endpoint latency, throughput, and 4xx\/5xx rates<\/li>\n
                                                                                                                                                                                        • Budget alerts for spend anomalies<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                          12) How do I handle PII?<\/h3>\n\n\n\n
                                                                                                                                                                                            \n
                                                                                                                                                                                          • Classify datasets and restrict access<\/li>\n
                                                                                                                                                                                          • Mask\/tokenize where required<\/li>\n
                                                                                                                                                                                          • Use separate compartments and tighter policies for sensitive data<\/li>\n
                                                                                                                                                                                          • Ensure audit trails are retained per compliance needs<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                            13) Can I use third-party tools with OCI?<\/h3>\n\n\n\n
                                                                                                                                                                                            Yes. Many teams use Terraform, GitHub Actions, dbt, Airflow, MLflow, and BI tools. Integration approach varies; validate security and network connectivity.<\/p>\n\n\n\n
                                                                                                                                                                                            14) Is this a replacement for a data warehouse?<\/h3>\n\n\n\n
                                                                                                                                                                                            Not necessarily. Many AI platforms use both:\n– Object Storage for raw and large-scale data\n– A warehouse (ADW) for curated analytics and governed SQL consumption<\/p>\n\n\n\n
                                                                                                                                                                                            15) What is the fastest path from PoC to production?<\/h3>\n\n\n\n
                                                                                                                                                                                              \n
                                                                                                                                                                                            • Start with a minimal pipeline and a single model<\/li>\n
                                                                                                                                                                                            • Add governance (catalog, tags, access controls)<\/li>\n
                                                                                                                                                                                            • Add CI\/CD for training and deployments<\/li>\n
                                                                                                                                                                                            • Add monitoring\/alerting and runbooks<\/li>\n
                                                                                                                                                                                            • Introduce private networking and approval gates for production<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n
                                                                                                                                                                                              17. Top Online Resources to Learn AI Data Platform<\/h2>\n\n\n\n
                                                                                                                                                                                              Because AI Data Platform on Oracle Cloud is built from multiple services, the best learning path is to follow official OCI documentation for each building block.<\/p>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                                                                              Resource Type<\/th>\nName<\/th>\nWhy It Is Useful<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Documentation Home \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/home.htm<\/td>\nEntry point for all OCI services used in an AI Data Platform<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Data Science \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/data-science\/using\/home.htm<\/td>\nCore docs for notebooks, training jobs, and model deployments<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Object Storage \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Object\/home.htm<\/td>\nData lake storage fundamentals, security, lifecycle policies<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Data Integration \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/data-integration\/using\/home.htm<\/td>\nBuilding and operating ingestion\/transformation pipelines<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Data Catalog \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/data-catalog\/using\/home.htm<\/td>\nMetadata management and data discovery patterns<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Data Flow (Spark) \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/data-flow\/using\/home.htm<\/td>\nServerless Spark for transformations and feature engineering<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI IAM \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Identity\/home.htm<\/td>\nPolicies, groups, compartments, and security boundaries<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Vault \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/KeyManagement\/home.htm<\/td>\nKey management and secret handling patterns<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Logging \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Logging\/home.htm<\/td>\nCentral logging for pipelines and deployments<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official documentation<\/td>\nOCI Audit \u2014 https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Audit\/home.htm<\/td>\nChange tracking and compliance evidence<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official pricing<\/td>\nOracle Cloud Pricing \u2014 https:\/\/www.oracle.com\/cloud\/pricing\/<\/td>\nOfficial service pricing and SKU breakdowns<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official cost estimator<\/td>\nOCI Cost Estimator \u2014 https:\/\/www.oracle.com\/cloud\/costestimator.html<\/td>\nBuild region-specific cost estimates without guessing numbers<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official tutorials\/labs<\/td>\nOracle Cloud Free Tier \/ Getting Started \u2014 https:\/\/www.oracle.com\/cloud\/free\/<\/td>\nAccount setup and free-tier guidance (eligibility varies)<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official videos<\/td>\nOracle Cloud Infrastructure YouTube \u2014 https:\/\/www.youtube.com\/user\/OracleCloudInfrastructure<\/td>\nProduct walkthroughs and architecture sessions (verify relevance to your services)<\/td>\n<\/tr>\n
                                                                                                                                                                                              Official samples (verify)<\/td>\nOracle OCI GitHub org \u2014 https:\/\/github.com\/oracle<\/td>\nMany OCI examples exist; search for Data Science and data platform samples and verify they are maintained<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n
                                                                                                                                                                                              18. Training and Certification Providers<\/h2>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n\n\n\n\n\n
                                                                                                                                                                                              Institute<\/th>\nSuitable Audience<\/th>\nLikely Learning Focus<\/th>\nMode<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                              DevOpsSchool.com<\/td>\nBeginners to experienced engineers<\/td>\nDevOps, cloud operations, CI\/CD, platform practices that support data\/AI platforms<\/td>\nCheck website<\/td>\nhttps:\/\/www.devopsschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              ScmGalaxy.com<\/td>\nStudents and early-career professionals<\/td>\nSoftware lifecycle, DevOps fundamentals, tooling basics<\/td>\nCheck website<\/td>\nhttps:\/\/www.scmgalaxy.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              CLoudOpsNow.in<\/td>\nCloud engineers, SREs, ops teams<\/td>\nCloud operations practices, monitoring, reliability, cost awareness<\/td>\nCheck website<\/td>\nhttps:\/\/www.cloudopsnow.in\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              SreSchool.com<\/td>\nSREs, platform engineers<\/td>\nReliability engineering, incident response, observability, SLIs\/SLOs<\/td>\nCheck website<\/td>\nhttps:\/\/www.sreschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              AiOpsSchool.com<\/td>\nOps teams and platform teams<\/td>\nAIOps concepts, monitoring automation, operational analytics<\/td>\nCheck website<\/td>\nhttps:\/\/www.aiopsschool.com\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n
                                                                                                                                                                                              19. Top Trainers<\/h2>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n\n\n\n\n
                                                                                                                                                                                              Platform\/Site<\/th>\nLikely Specialization<\/th>\nSuitable Audience<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                              RajeshKumar.xyz<\/td>\nCloud\/DevOps training and guidance (verify offerings)<\/td>\nEngineers seeking mentoring-style learning<\/td>\nhttps:\/\/rajeshkumar.xyz\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              devopstrainer.in<\/td>\nDevOps tooling and practices (verify offerings)<\/td>\nBeginners to intermediate DevOps learners<\/td>\nhttps:\/\/www.devopstrainer.in\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              devopsfreelancer.com<\/td>\nFreelance DevOps services\/training resources (verify offerings)<\/td>\nTeams seeking short-term help or coaching<\/td>\nhttps:\/\/www.devopsfreelancer.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              devopssupport.in<\/td>\nDevOps support and learning resources (verify offerings)<\/td>\nOps\/DevOps teams needing practical support<\/td>\nhttps:\/\/www.devopssupport.in\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n
                                                                                                                                                                                              20. Top Consulting Companies<\/h2>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n\n\n\n
                                                                                                                                                                                              Company Name<\/th>\nLikely Service Area<\/th>\nWhere They May Help<\/th>\nConsulting Use Case Examples<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                              cotocus.com<\/td>\nCloud\/DevOps consulting (verify service catalog)<\/td>\nPlatform setup, automation, operational practices<\/td>\nOCI landing zone planning, IaC pipelines, monitoring setups<\/td>\nhttps:\/\/cotocus.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              DevOpsSchool.com<\/td>\nTraining + consulting (verify consulting offerings)<\/td>\nSkills enablement and process\/tooling improvements<\/td>\nMLOps enablement workshops, CI\/CD design for data\/AI workloads<\/td>\nhttps:\/\/www.devopsschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                              DEVOPSCONSULTING.IN<\/td>\nDevOps consulting (verify scope)<\/td>\nDevOps transformations, toolchain design<\/td>\nCost governance, logging\/monitoring, secure release pipelines<\/td>\nhttps:\/\/www.devopsconsulting.in\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                              \n\n\n\n
                                                                                                                                                                                              21. Career and Learning Roadmap<\/h2>\n\n\n\n
                                                                                                                                                                                              What to learn before this service (recommended foundations)<\/h3>\n\n\n\n
                                                                                                                                                                                                \n
                                                                                                                                                                                              1. OCI fundamentals<\/strong>\n   – Compartments, IAM, VCN basics, regions\/availability domains\n   Docs: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/home.htm<\/li>\n
                                                                                                                                                                                              2. Linux and CLI basics<\/strong>\n   – Cloud Shell, bash, basic networking<\/li>\n
                                                                                                                                                                                              3. Data fundamentals<\/strong>\n   – CSV\/JSON\/Parquet, schema design, partitioning\n   – SQL fundamentals<\/li>\n
                                                                                                                                                                                              4. Python fundamentals<\/strong>\n   – pandas, scikit-learn basics, packaging<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                                                                What to learn after this service (to operate it in production)<\/h3>\n\n\n\n
                                                                                                                                                                                                  \n
                                                                                                                                                                                                1. Infrastructure as Code<\/strong>\n   – Terraform for OCI resource provisioning (verify OCI Terraform provider docs)<\/li>\n
                                                                                                                                                                                                2. Data engineering at scale<\/strong>\n   – Spark tuning, incremental ETL, data quality frameworks<\/li>\n
                                                                                                                                                                                                3. MLOps<\/strong>\n   – Model CI\/CD, deployment strategies (blue\/green, canary), model monitoring<\/li>\n
                                                                                                                                                                                                4. Security engineering<\/strong>\n   – Private networking, Vault integrations, policy reviews, threat modeling<\/li>\n
                                                                                                                                                                                                5. Reliability<\/strong>\n   – SLOs for data freshness and inference latency, incident response<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                                                                  Job roles that use it<\/h3>\n\n\n\n
                                                                                                                                                                                                    \n
                                                                                                                                                                                                  • Cloud Engineer \/ Platform Engineer<\/li>\n
                                                                                                                                                                                                  • Data Engineer<\/li>\n
                                                                                                                                                                                                  • Analytics Engineer<\/li>\n
                                                                                                                                                                                                  • ML Engineer \/ MLOps Engineer<\/li>\n
                                                                                                                                                                                                  • Data Scientist (production-oriented)<\/li>\n
                                                                                                                                                                                                  • Security Engineer (cloud\/data security)<\/li>\n
                                                                                                                                                                                                  • SRE (for AI services and data pipelines)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                                    Certification path (if available)<\/h3>\n\n\n\n
                                                                                                                                                                                                    Oracle Cloud certifications change over time and by track. Use Oracle\u2019s official certification site to verify current OCI certifications relevant to data\/AI:\n– https:\/\/education.oracle.com\/<\/p>\n\n\n\n
                                                                                                                                                                                                    Project ideas for practice<\/h3>\n\n\n\n
                                                                                                                                                                                                      \n
                                                                                                                                                                                                    • Build a multi-zone data lake with lifecycle rules and tags<\/li>\n
                                                                                                                                                                                                    • Implement a daily batch pipeline with validation and quarantine<\/li>\n
                                                                                                                                                                                                    • Train a model weekly and deploy a canary endpoint<\/li>\n
                                                                                                                                                                                                    • Add budgets, alerts, and dashboards for pipeline health and spend<\/li>\n
                                                                                                                                                                                                    • Implement private endpoint inference with API Gateway and audit logging<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                                      \n\n\n\n
                                                                                                                                                                                                      22. Glossary<\/h2>\n\n\n\n
                                                                                                                                                                                                        \n
                                                                                                                                                                                                      • Compartment (OCI):<\/strong> Logical container to isolate and manage resources with IAM policies.<\/li>\n
                                                                                                                                                                                                      • IAM Policy (OCI):<\/strong> Text-based rule that grants permissions to groups or dynamic groups within a scope.<\/li>\n
                                                                                                                                                                                                      • Object Storage:<\/strong> Storage service for unstructured data objects; used for data lakes and artifacts.<\/li>\n
                                                                                                                                                                                                      • Data lake:<\/strong> Storage-centric architecture storing raw and curated datasets for multiple uses.<\/li>\n
                                                                                                                                                                                                      • ETL\/ELT:<\/strong> Extract-Transform-Load \/ Extract-Load-Transform data processing patterns.<\/li>\n
                                                                                                                                                                                                      • Feature engineering:<\/strong> Creating model input variables (features) from raw data.<\/li>\n
                                                                                                                                                                                                      • Model artifact:<\/strong> Packaged files needed to run inference (model weights, preprocessing code).<\/li>\n
                                                                                                                                                                                                      • Inference endpoint:<\/strong> Network-accessible service that returns predictions from a deployed model.<\/li>\n
                                                                                                                                                                                                      • Resource principal:<\/strong> OCI mechanism allowing a resource (like a notebook\/job) to call OCI APIs without user API keys (support varies; verify).<\/li>\n
                                                                                                                                                                                                      • VCN:<\/strong> Virtual Cloud Network\u2014your private network in OCI.<\/li>\n
                                                                                                                                                                                                      • Service Gateway:<\/strong> Enables private access from a VCN to OCI public services (like Object Storage) without internet.<\/li>\n
                                                                                                                                                                                                      • NSG (Network Security Group):<\/strong> Virtual firewall rules applied to VNICs for traffic control.<\/li>\n
                                                                                                                                                                                                      • Audit logs:<\/strong> Records of API calls and administrative actions for compliance and troubleshooting.<\/li>\n
                                                                                                                                                                                                      • Tagging:<\/strong> Applying metadata to resources for governance, cost tracking, and automation.<\/li>\n
                                                                                                                                                                                                      • Data freshness:<\/strong> How up-to-date your curated datasets are relative to sources.<\/li>\n
                                                                                                                                                                                                      • Idempotent pipeline:<\/strong> A pipeline that can run multiple times without producing incorrect duplicates or corruption.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                                        \n\n\n\n
                                                                                                                                                                                                        23. Summary<\/h2>\n\n\n\n
                                                                                                                                                                                                        AI Data Platform<\/strong> on Oracle Cloud<\/strong> (Analytics and AI) is best treated as an end-to-end platform architecture<\/strong>\u2014not just one feature\u2014built from OCI services such as Object Storage<\/strong>, Data Integration<\/strong>, Data Catalog<\/strong>, Data Flow<\/strong>, Autonomous Database<\/strong>, and OCI Data Science<\/strong>.<\/p>\n\n\n\n
                                                                                                                                                                                                        It matters because AI outcomes depend on disciplined data ingestion, governance, and operationalized model deployment. On the cost side, the biggest drivers are running compute<\/strong> (notebooks, Spark jobs, model deployments) and data growth<\/strong> (storage copies, retention). On the security side, success depends on compartment design, least-privilege IAM, private networking for production, Vault-backed secrets, and auditability<\/strong>.<\/p>\n\n\n\n
                                                                                                                                                                                                        Use this approach when you need a repeatable, governed path from data to deployed AI in OCI. Start small (Object Storage + Data Science), then add governance and pipeline automation as your scope grows.<\/p>\n\n\n\n
                                                                                                                                                                                                        Next learning step:<\/strong> Follow the official OCI Data Science and Object Storage documentation, then expand your lab into a multi-compartment dev\/test\/prod setup with tagging, budgets, and private endpoints:\n– https:\/\/docs.oracle.com\/en-us\/iaas\/data-science\/using\/home.htm\n– https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Object\/home.htm<\/p>\n","protected":false},"excerpt":{"rendered":"
                                                                                                                                                                                                        Analytics and AI<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[66,62],"tags":[],"class_list":["post-833","post","type-post","status-publish","format-standard","hentry","category-analytics-and-ai","category-oracle-cloud"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/833","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/comments?post=833"}],"version-history":[{"count":0,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/833\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/media?parent=833"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/categories?post=833"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/tags?post=833"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}