AWS Native DevSecOps is a suite of AWS cloud native pipelines designed to be deployed using a self-service model. This model is centered around utilizing AWS Service Catalog in the Shared Services account of an organization. Each pipeline is offered as a product in a Service Catalog portfolio that can be accessed in the organization's designated Shared Services account and deploy DevSecOps ecosystems that are fully connected to deploy development and production environments to target AWS accounts. The ecosystem will deploy various items including but not limited to the pipelines, build projects, and repositories pre-populated with starter templates. The pipelines included in this suite are engineered to deploy and support the following resources:

• Docker Container Images • CloudFormation Templates • Serverless/Lambda Projects • Control Tower Customizations • STIG and CIS Hardened Golden AMIs • EKS Clusters • Helm Charts and • Terraform Templates

This product follows shift-left security and all pipelines support linting and scanning for error and vulnerability checks. Additionally, this product automatically identifies if the Secure Cloud Foundation Central Network product (See Built On Control Tower: SCF Central Network with Palo Alto & SCF Central Network with ANF) exists and will integrate to the existing network to automaticallly golden AMIs & CodeBuild solutions to the appropriate shared services VPCs

What We Deliver/Deliverables:

 No-Cost 2-hour working session to evaluate your current AWS Environment and the benefits/capabilities of SCF: AWS Native DevSecOps
 Statement of Work for SCF: AWS Native DevSecOps that encompasses Design, Build and Implementation
 Execution of Statement of Work
 Recommended Next Steps

Key Contributors:

Shaan Mulchandani Isaac Zapata Vahagn Madatyan Tina Liu