Setting up a secure and scalable multi-account AWS environment - AWS Prescriptive Guidance

Setting up a secure and scalable multi-account AWS environment

Nivas Durairaj, Amazon Web Services (AWS)

March 2020 (document history)

Organizations have to balance their builders’ needs to stay agile while they provide governance at scale. Establishing the foundational standards gives you the ability to enable, provision, and operate your environment for both business agility and governance at scale.

A successful cloud adoption starts with a secure cloud-based environment that includes:

  • An AWS environment with a multi-account architecture

  • An initial security baseline

  • Identity and access management

  • Governance

  • Data security

  • Network design

  • Logging

We refer to an environment that has these features as a landing zone. This guide helps you set up a secure and scalable landing zone that can support a production implementation for your migration.