Category: Security, Identity, & Compliance

AWS Systems Manager Session Manager provides a more secure way to manage your Amazon Elastic Compute Cloud (EC2) instances without the need to open inbound ports, maintain bastion hosts, or manage SSH keys. Furthermore, you can use it with a combination of AWS services to give access to external third-parties. Due to business requirements, you […]

Until recently, customers had to navigate to the AWS Marketplace Console and search for a compatible Amazon Machine Image (AMI) product for your image pipeline. They also had to write their own custom components to harden the operating systems to meet Center for Internet Security (CIS) Benchmark guidelines. This required subscriptions to the CIS Benchmark […]

In part one, we identified different features of Organizations requiring guidance and consideration when you move an account from one organization in Organizations to another. We focused on Organizations Polices, AWS Resource Access Manager (AWS RAM) shares, and AWS global condition context keys. In this post, part two of a three-part series, we identify behaviors […]

AWS customers use AWS Organizations as the basis of a multi-account AWS environment as defined by the Organizing Your AWS Environment Using Multiple Accounts AWS Whitepaper. Organizations is an AWS service that enables you to centrally manage and govern multiple accounts. Often there is a scenario when you must move an AWS account from one […]

AWS Resource Groups recently announced a new feature that pushes group lifecycle changes to Amazon EventBridge. A resource group is a collection of AWS resources, in the same AWS Region, that are grouped either using a tag-based query, or AWS CloudFormation stack-based query, and group lifecycle events make it easier for AWS customers to receive […]

Building and managing resilient, micro-service based Containerized applications in a distributed environment is hard; maintaining and operating them is even harder. Even though containerized applications running on Amazon Elastic Kubernetes Service (Amazon EKS) take advantage of the performance, scale, reliability, and availability of AWS infrastructure which, we need to understand that failures will occur and […]

AWS Organizations simplifies multi-account governance for customers with tools to centrally manage their AWS accounts and offers two feature modes all features and consolidated billing. With all features enabled, the default and preferred approach, customers can centrally manage other AWS services that are integrated with AWS Organizations and apply organization-wide controls with the management policies. […]

Speed matters in business, and AWS customers want to move quickly and securely when they choose to innovate and develop on our platform. As customers scale their AWS footprint, a majority of them adopt a multi-account strategy to separate their workloads and better enable their teams to build rapidly. The AWS multi-account strategy provides guidance […]

Why invest in a multi-account cloud foundation? Small and Medium Businesses (SMB) usually start with a single account when setting up their Amazon Web Services (AWS) environment. They typically want to get going quickly and maintain agility. Starting small and focusing on business needs, seems to make the most sense. However, even as a small […]

AWS Organizations helps you centrally manage and govern multiple AWS accounts within AWS. You can manage organization structure, add and remove accounts, define configuration using policies, handle consolidated billing, and control multi-account features of integrated AWS services. As your environment grows, your administrators have to manage more accounts and policies which often requires coordination between […]