Skip to content

AWS

Typical Network Architecture

Typical Network Architecture

AWS Security Products

Identity
(Authn & Authz)		 Detective
(Audit)		 Infrastructure
Security		 Data Protection Incident Response
IAM,
IAM Identity Center
(Single Sign-On),
Directory Service,
Cognito,
AWS Organizations,
Secretes Manager,
Resource Access Manager		 Security Hub,
GuardDuty,
AWS Config,
CloudTrail,
CloudWatch,
VPC Flow Logs		 Systems Manager,
WAF & Shield,
AWS Firewall Manager,
Amazon Inspector,
Amazon VPC
(NACL, Security Group)		 Key Management Service,
AWS CloudHSM,
Certificate Manager,
Amazon Macie,
Server-Side Encryption		 AWS Security Finding Format(ASFF),
AWS Config Rules,
AWS Lamdba

AWS Well-Architected Framework

  • Operational Excellence

Focus: Efficient operations management and continuous improvement.
Best Practices: Automate operations, make small reversible changes frequently, use infrastructure as code, monitor systems, and respond swiftly to operational events.

  • Security

Focus: Protecting data, systems, and assets.
Best Practices: Implement strong identity and access management, enable traceability and audit trails, protect data at rest and in transit, secure infrastructure and network components, and ensure compliance with security regulations.

  • Reliability

Focus: Ensuring workloads perform their intended functions correctly and consistently (continuity).
Best Practices: Design for failure, conduct regular recovery testing, automate recovery processes, scale horizontally, and leverage AWS redundancy infrastructures to enhance availability.

  • Performance Efficiency

Focus: Using resources efficiently to meet system requirements.
Best Practices: Select appropriate resources (e.g., instance types and sizes) and architectural patterns, consider serverless architectures where suitable, experiment with different configurations, and monitor performance.

  • Cost Optimization

Focus: Managing costs to maximize value.
Best Practices: Implement a cost-effective pricing model, monitor and control spending, optimize resource utilization, and plan for future capacity needs while avoiding waste, and optimize over time.

  • Sustainability

Focus: Minimizing the environmental impact of your cloud workloads.
Best Practices: Establish long-term goals, optimize energy efficiency, use sustainable architectures, right-size resources, and leverage shared managed services.

  1. Mastering AWS Network Architecture: A Blueprint for Secure and Scalable Cloud Deployments 

  2. AWS Well-architected Framework