Simplifying AWS environments with AWS Landing Zone and Control Tower

Control Tower

AWS Landing Zone Architecture

  • One CloudTrail trail is created in each account and configured to send logs to a centrally managed Amazon Simple Storage Service (Amazon S3) bucket in the log archive account.
  • AWS config rules for monitoring MFA, root account login, security groups, EBS, RDS, S3, etc.
  • Security notification architecture
  • GaurdDuty findings…read more

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store