AWS Cloud Operations & Migrations Blog

Category: Learning Levels

Announcing AWS Config Compliance Scores for conformance pack

Back in November 2019, we announced AWS Config Conformance Packs, which is a collection of AWS Config rules and remediation actions that can be easily deployed as a single entity in an account and a region or across an organization in AWS Organizations. Conformance Packs have helped AWS customers to manage and enforce compliance of […]

Read More

Copy existing AWS CloudTrail trails events to a AWS CloudTrail Lake event data store

AWS announced the general availability of AWS CloudTrail Lake on 5th Jan 2022, a managed audit and security lake that lets you aggregate, immutably store, and query activity logs for auditing, security investigation, and operational troubleshooting. Since launch, customers have adopted this feature, and it’s an integral part of customer operational and security operational processes. […]

Read More

How to get a daily report for your resources configuration changes

AWS allows customers to build, experience, and innovate in their AWS accounts, resulting in dynamic environments. You can manage your resources changes using different controls, such as: Preventive controls with AWS Identity and Access Management (IAM) policies Detective controls with AWS Config Rules Preventive and Detective controls with continuous integration and continuous delivery (CI/CD) pipelines […]

Read More

Introducing the ACK controller for Amazon Managed Service for Prometheus

We’re excited to announce that the Amazon Managed Service for Prometheus ACK controller is now generally available for the Workspace, Alert Manager and Ruler resources. The Amazon Managed Service for Prometheus ACK controller lets you take advantage of Prometheus using custom resource definitions (CRDs) and native Kubernetes objects without having to define any resources outside […]

Read More

Implementing an alarm to automatically detect drift in AWS CloudFormation stacks

AWS CloudFormation is a service that helps you model and implement your Infrastructure as Code (IaC). It provisions and configures cloud resources as described in template files that are written in JSON or YAML. After resources have been created with CloudFormation, it is possible for users to alter those resources via the AWS Management Console, […]

Read More

Leverage Atlassian Jira Service Management (JSM) to manage AWS Support cases

Many AWS customers using Atlassian Jira Service Management (JSM) as their IT Service Management (ITSM) tool require AWS Support cases to have corresponding ITSM Incident records. To maintain consistency between these two disparate systems, users were forced to manually recreate support cases as JSM incidents. Because of this, customers asked for a transparent process where […]

Read More

How to evaluate your Cloud Environment in a well-architected manner

Today, we’re happy to announce the availability of the AWS Well-Architected Management and Governance (M&G) Cloud Environment custom lens! To be ready for migrations and to run workloads at scale on AWS, customers need a properly configured AWS environment. The Well-Architected M&G Environment Guide (M&G Guide) provides best practices and prescriptive guidance to help customers […]

Read More

Migrating AIX workloads to AWS: How to get started

Customers are asking us how to migrate their AIX workloads to Amazon Web Services (AWS).  Customers have questions regarding assessing the current AIX portfolio, estimating the total cost of ownership (TCO) on AWS, and guidance in determining migration patterns and target state architectures for specific workloads.  To accelerate your AIX migrations to the cloud you’ll […]

Read More

AWS Control Tower releases API, pre-defined controls to your organizational units

AWS Control Tower offers a direct way to set up and govern an AWS multi-account environment following prescriptive guidance and best practices. It orchestrates the capabilities of several other AWS services, including AWS Organizations, AWS Service Catalog, and AWS IAM Identity Center (successor to AWS Single Sign-On), to build a landing zone in less than […]

Read More