Welcome!
This course covers the topic of "Landing Zones".
In today's dynamic cloud environment, the prominence of Landing Zones has grown significantly. This module explores why Landing Zones are increasingly favored in modern cloud setups and how they play a pivotal role in addressing challenges posed by large workloads.
Here we will discover the Landing Zones' best practices, implement them in practice on the AWS cloud, using the AWS Control Tower service, and even automate it, using the "Infrastructure as code" feature AWS Control Tower Account Factory for Terraform [AFT].
Workflow of the course :
Review of the problem of current Cloud setups
Landing Zone concept exploration
A detailed review of each type of the account in Landing Zone
Implementation of security practices on Master AWS account
Discovery of AWS ControlTower service
Implementation of the Landing Zone using the AWS Control Tower from the scratch
Configuring the organizational security using the AWS services
Discovery in details of AWS Control Tower Account Factory for Terraform
Automation of Landing Zone using the AFT
- - - - - - - -
List of used services/tools :
AWS Organizations
AWS ControlTower
AWS Service Catalog
AWS Config
AWS SNS
AWS Budgets
AWS KMS
AWS CloudTrail
AWS S3
AWS IAM Access Analyzer
AWS Security Hub
AWS GuardDuty
AWS Inspector
AWS CodePipeline
AWS Control Tower Account Factory for Terraform
Terraform CLI
AWS CLI
Git
GitHub
As a result of this course, you will receive a fully working and protected Landing Zone on the AWS cloud, which is also automated via AFT.
This course will allow you to put the structure of your account on scripts (using the Terraform) and prepare the high level of security of your multi-account infrastructure followed by AWS whitepaper best practices.