Five Pillars of the Well - Architected AWS Framework.

General Design Principles 

1.Stop guessing capacity,
2.Test at prod scale.
3.Automate to make Architectural Experiments easier . 
4. Allow evolutionary Architecture. 
5.Data driven Architecture.
6.Improve through Game days.  

  The FIVE Pillars of AWS Architecutre

  https://d0.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf 

(Nov 2016 Version )

AWS Services covering the Five Pillars.

Security

1.Identity and Access Management:
IAM ( MFA enabled )
2.Detective Controls 
Cloud Trail, Config, Cloud Watch
3.Infrastructure Protection
VPC
4.Data Protection
Encryption for data in transit and at rest. KMS makes it easier for customers to create and control keys used for encryption.
5. Incident Response.
IAM access to Incident Response team. Cloud Formation to create trusted environment for conducting investigations.

  Reliability: 

Key service: Cloud Watch
1. Foundations:
IAM,  VPC,
 2. Change Management
Cloud Trail,  Config
3. Failure Management
Cloud Formation

Performance  ( Incorporate Cloud Watch feedback )

1. Selection 
Compute =>  Auto Scaling
Storage => SSD,PIOPS, S3 Transfer Acceleration,
Database => Provisioned IOPS, Read Replica, Dynamo DB single digit millisecond latency at any scale
Network => Route 53 latency based routing , VPC endpoints and DIrect Connect reduce network distance or jitter

2. Review :
AWS Blog and what is new to update on latest and new service and updates.

3. Monitoring:
Amazon CloudWatch, ( can be integrated to Lambda and trigger actions )

4. Trade off: Amazon ElastiCache, CloudFront , Snowball,Read Replica. offer performance trade offs. 

Cost Optimization Pillar :

1. Cost-effective resources: Reserved Instances, prepaid, capacity, . AWS trusted advisor
2. Matching supply and Demand : Auto Scaling
3. Expenditure Awareness : CloudWatch Alarms,  SNS
4. Optimizing over time : Blog, What's new, Trusted Advisor, 

Operational Excellence :

1.  Preparation : => AWS Config, AWS Service Catalog, 
 2. Operation => AWS CodeCommit, AWS Code Deploy, AWS CodePipeline. Use AWS SDKsor 3rd party libraries to automate operational changes,. Use AWS Cloud Trail to audit and track changes made to AWS environments.
3.Response : All features of CloudWatch service.
 

Top Level Questions  To Ask Specific to Five Pillars Before Moving To Cloud

( From AWS Doc : https://d0.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf )

Security:
1. How Root account access and protection?
2. How Human Access control of AWS console?
3. Control and limiting automated access to AWS resources?
4. How Capturing and analyzing logs?
5. How Enforcing Network and Host level boundary protection?
6. How leveraging AWS Service level security eatures?
7. How integrity of OS at EC2 instance level  protected?
8. How are you classifying Data?
9. How Data encrypted and protected at rest?
10. How Keys managed?
11. How Data encrypted and protected in transit?
12. How do you ensure you have proper Incident Repsonse?


Reliability
1. How do you manage AWS service limits for your accounts?
2.How are you planning your Network topology on AWS?
3.How does your system adapt to changes in demand?
4. How are you monitoring AWS resources?
5. How are you executing change?
6. How are you backing up data?
7. How does your system withstand component failure?
8. How are you testing for resiliency?
9. How are you planning for disaster recovery?


Performance Efficiency  
1. How do you select the best performing architecture? 
2. How do you select your compute solution?
3. How do you select your storage solution?
4. How do you select your database solution?
5. How do you select your network solution?
6. How do you ensure you always have the most up to date and appropriate resources?
7. How do you monitor resources post-launch to ensure they perform as expected?
8. How do you use trade offs to improve performance?

Cost Optimization :
1. Are you considering Cost when you select AWS for your solution?
2. Have you sized your resources to meet your cost targets?
3. HAve you selected the appropriate pricing model to meet your cost targets?
4. How do you ensure your capacity matches but doesn't substantially exceed?
5. Do you consider data-transfer charges when designing your architecture?
6. How are you monitoring usage and spending?
7. Do you decommission resources you no longer need or just stop it?
8. What access controls and procedures do you have in place to govern AWS usage?
9. How do you manage/consider adoption of new services?

Operational Excellence
1. What best practice for cloud operations are you using?
2. How are you doing configuration management for your workload?
3. How are you evolving your workload while minimizing the impact of change?
4. How do you monitor your workload to ensure it is operating as expected?
5.  How do you respond to unplanned operational events?
6. How is escalation managed when responding to unplanned operational events?

 
Other questions:  
The above pillar questions are aspects to be considered within AWS. Questions below are how do you link up or align or reprocess or re engineer within your enterprise. There will be scenarios where the question arises as to who owns your cloud. Is it your IT? Your business ? or is there a hybrid overlapping or non overlapping ownership model? These questions only applies to enterprises. 
1. How is cloud adoption aligned to enterprise architecture practice.
2. How is collaboration ensured when departments go on cloud on their own?
   
 
      

  
   

 

 

Comments

  1. Nice information thanks for providing for more updates join with AWS Online Course

    ReplyDelete
  2. Amazon Web Services (AWS)is a cloud computing platform that offers a wide range of products and services. It is an entire business architecture that enables organisations to move their on-premises solutions to the cloud. iteanz can help support your company’s transition through our AWS training courses.

    ReplyDelete
  3. It also needs to function a wake-up name to all cloud service suppliers, together with the 2 major open supply consortiums. This is great blog. If you want to know more about this visit here AWS Cloud Certification.

    ReplyDelete
  4. Thanks for sharing information on AWS disaster recovery whitepaper. Disaster recovery solution is very important to protect important data in disaster situation.

    ReplyDelete
  5. your post is the very organized way and easily understandable. Doing a good job. Thank you for sharing this content. aws training in omr | aws training in velachery | best aws training center in chennai


    ReplyDelete
  6. This comment has been removed by the author.

    ReplyDelete
  7. Thanks you for sharing this post.Keep sharing more like this. Click Here: Python Online Training || Python Online Course

    ReplyDelete
  8. Well written post. I appreciate your guidance for sharing about AWS Solutions. I really need to know about it. Great work!

    ReplyDelete

  9. Thank you for sharing the article. The data that you provided in the blog is informative and effective.

    Best AWS Training Institute

    ReplyDelete
  10. Really nice and interesting post. I was looking for this kind of information and enjoyed reading this one. Keep posting. Thanks for sharing amazon web services training

    ReplyDelete
  11. There's no doubt that the future education will see a lot of advancements. One such example is AWS Training In Hyderabad from Kelly Technologies....
    More: https://www.kellytechno.com/Hyderabad/Course/amazon-web-services-training

    ReplyDelete
  12. This idea is mind blowing. I think everyone should know such information like you have described on this post. Thank you for sharing this explanation.yours blog was excellent and really enjoyed.Thanks for sharing and mainting blogging

    oracle training in chennai

    oracle training institute in chennai

    oracle training in bangalore

    oracle training in hyderabad

    oracle training

    oracle online training

    hadoop training in chennai

    hadoop training in bangalore

    ReplyDelete
  13. A good blog always comes-up with new and exciting information and while reading I have feel that this blog is really have all those quality that qualify a blog to be a one
    data science using python and r programming Guwahati

    ReplyDelete
  14. if ur interested in learning AWS course please visit our website
    AWS Training in Hyderabad

    ReplyDelete
  15. Are you having problem in learning new skills or confused to choose between right Passion . So don't worry we are here because our institution is offering CS executive classes and a free of cost CSEET classes. So what are you waiting for contact us or visit our website at https://uniqueacademyforcommerce.com/

    ReplyDelete
  16. Really an awesome blog. I appreciate your efforts. Nice information and knowledgeable. Keep sharing more stuff like this. Thank you.
    Data Science Course

    ReplyDelete
  17. Nice information thanks for providing
    jewellery erp software
    Jewellery erp software

    ReplyDelete
  18. Nice information thanks for providing
    Jewellery ERP Software Dubai
    Jewellery ERP Software Dubai

    ReplyDelete

Post a Comment