AWS re:Invent 2022
Best Practices for Organizing and Operating on Aws Cop305

Title

AWS re:Invent 2022 - Best practices for organizing and operating on AWS (COP305)

Summary

  • The session focused on best practices for organizing and operating on AWS, with insights from AWS experts and real-world examples from Warner Brothers Discovery.
  • Bianca Lankford from Warner Brothers Discovery shared her experience in cloud security and account management.
  • Andrew Blackham, a product manager at AWS, discussed AWS Organizations and enterprise governance.
  • Steve Rice from AWS Systems Manager highlighted the importance of AWS AppConfig and operational agility.
  • The session emphasized the need for planning ahead, starting small, and scaling effectively.
  • Andrew detailed the structure of AWS accounts as building blocks and the use of organizational units (OUs) for structuring accounts.
  • Common anti-patterns and recommended OUs for various purposes were discussed.
  • AWS Organizations and Control Tower were recommended for managing account structures and applying best practices.
  • Security best practices included proactive security mechanisms and centralized visibility and control.
  • The importance of a dedicated team for cloud governance automation and account lifecycle management was highlighted.
  • Warner Brothers Discovery's approach to cloud governance and account management during their merger was shared as a case study.
  • The session concluded with a call to action for attendees to start small, enable standardized security controls, and build the right structure for future growth.

Insights

  • The rapid scaling of AWS accounts can lead to confusion and a lack of governance if not planned properly.
  • AWS Organizations is a key service for structuring and managing multiple AWS accounts, providing a way to apply policies and control access at scale.
  • AWS Control Tower automates the application of best practices and governance across AWS accounts.
  • Service Control Policies (SCPs) are essential for applying preventative controls and ensuring compliance with security standards.
  • A dedicated team for cloud governance is crucial for maintaining a secure and well-managed cloud environment, especially during mergers and acquisitions.
  • Warner Brothers Discovery's experience underscores the importance of a productized approach to cloud governance and the benefits of having a centralized view of the company's cloud posture.
  • The session highlighted the need for organizations to adopt a strategic approach to cloud operations, emphasizing automation, security, and scalability.
Best Practices for Moving Data to Aws Online and Offline Stg210Best Practices for Platform Teams to Streamline Kubernetes Operations Prt002