AWS Partner Network (APN) Blog

Tag: AWS Organizations

EGlobalTech-AWS-Partners

How to Improve Project Security by Automating and Managing AWS Multi-Account Access

Many enterprise customers improve project security by segregating individual projects, or project environments like DEV or PROD, in separate AWS accounts. Mapping each project or project environment to a unique account provides a clear and easy way to maintain security boundaries and built-in cost accounting. Learn about EGlobalTech’s project-per-account model for accounts that enables users to seamlessly move between their AWS accounts and roles.

Read More
VMware Cloud on AWS-dark

Account and VPC Considerations for VMware Cloud on AWS

When VMware Cloud on AWS is connected to the connected VPC, it always uses the default VPC route table in the VPC. During the deployment phase of VMware Cloud on AWS, the Software Defined Data Center is connected to an AWS (or customer) account for seamless access to native AWS services. In this post, we provide guidance on which AWS account and respective VPC to connect VMware Cloud on AWS to take advantage of native AWS service integrations.

Read More
PwC-AWS-Partners

Approaching Least Privilege – IAM Policies with Usage-Based Analytics

AWS customers are increasingly searching for new ways to manage access in a scalable way that maintains the benefits of an agile DevOps delivery model. However, the traditional and highly-manual processes for assessing and certifying access quickly demonstrates they cannot keep up with the speed of DevOps changes. Learn how PwC designs and implements baseline IAM roles for customers while leveraging usage-based analytics to identify overprivileged roles.

Read More

How BriteCore Improved Security and Scalability by Migrating Insurance Workloads with AWS Landing Zone

BriteCore was originally designed as an on-premises data center-based monolith; a state-of-the-art core insurance solution. However, the business agility, cost savings, and increased security of the cloud made it clear the insurance industry had to migrate. Learn how BriteCore used AWS Landing Zone to deliver a modern administrative system for Property & Casualty insurance that could be more agile, scale better, and be more secure than on-premises infrastructure.

Read More
Cloud Anything-9

Architecting Successful SaaS: Interacting with Your SaaS Customer’s Cloud Accounts

Explore several common AWS services and architectural patterns used by SaaS vendors to interact with their customers’ cloud accounts. Examples of SaaS products requiring some level of account interaction often fall into the categories of logging and monitoring, security, compliance, data analytics, DevOps, workflow management, and resource optimization. SaaS products, such as the ones in these categories, regularly interact with resources in the subscribing customer’s AWS account.

Read More

Reducing the Cost of Managing Multiple AWS Accounts Using AWS Control Tower

As larger and more complex workloads are deployed on AWS, multi-account solutions are an increasingly common architectural blueprint. Often referred to as cloud “landing zones,” these blueprints enable simple administrative boundaries. However, using multiple accounts increases the complexity of security tooling, access control and authorization, and cross-account networking. AWS Control Tower simplifies the process of setting up multi-account environments with predefined security baseline templates.

Read More