AWS Landing Zone Accelerator

AWS Landing Zone Accelerator

/s, my job

AWS Intro

cloud, scale, managed, on demand, buy-or-build, naming, services: iam, mail, code, compute, storage, net

Common approaches / pitfalls

poc, one admin, all admin, no split account, no tagging, no governance/rules

Control Tower

governance, compliance (iso, tisax), alerts

What is LZA

"Landing Zone", org, accounts-as-code, iam, net-, sec- best practices
accounts: management, network, shared-services, audit/security, workloads

Remaining steps

complex, why, spread

Next steps

new, exp, $$

Questions