Automat-it AWS Well-Architected Review and Remediation

Overview

Your business needs and requirements are constantly evolving, your cloud environment is always changing, and so are the risks to which your business is exposed - whether they originate in an honest mistake, a malicious attack or something in between. It is crucial to verify that your cloud environment is built and executed correctly, both through periodic checks and whenever you make a significant change to your cloud configuration. Automat-it’s AWS Well-Architected Review and Remediation gives you the ability to do just that, with minimal investment of time and money. Automat-it has five certified solution architects who have executed AWS Well-Architected reviews for dozens of customers, from startups to large enterprises. As a leading AWS partner, Automat-it has a well-established process, advanced tools and extensive knowledge to make sure that the review and remediation are successful.

How it Works

The review begins with a 30 minutes expectation-setting meeting with a certified architect. Next, selected workloads and pillars are reviewed in accordance with your business needs - we recommend starting with security and cost optimization. The review meeting usually takes a couple of hours, depending on the workload complexity. The review ends with a suggestion of a prioritized remediation plan. Once a remediation plan is agreed, Automat-it’s team of certified DevOps engineers will implement it, and you’re all done. This usually takes a month. Cost optimization pillar review can also be coupled with a FinOps review, including recommendations and remediation.

Note: The review and up to 35 hours of remediation are free of charge. In most cases there is no further cost. If a remediation plan is not agreed, the review is charged by $500.

Previous Outcomes

In the course of a particular Security Pillar review, we discovered sensitive resources that were exposed to the world, mainly due to a Security Group (FW) misconfiguration. As well as taking immediate remediation action, we put in place measures to ensure that such a misconfiguration wouldn’t happen again, and used AWS Config to automatically remove problematic security group entries.

In the course of one Cost Pillar review, we discovered dozens of unused and underutilized resources in the customer’s account - EBS Volumes, EBS Snapshots, EC2 instances and RDS/Aurora databases. Once remediated, the customer saved over 20% ($15K).

In the course of a Reliability Pilar review, we found concrete risks due to self-managed services. To remedy this, we switched to AWS-managed services, moving databases from EC2 to AWS Aurora and RDS, NFS servers to EFS, and self-managed Kubernetes clusters to EKS.