Using AWS services for automation - AWS Prescriptive Guidance

Using AWS services for automation

You can use a number of AWS services to automate your IT operations. The following table lists the 15 OI domains and provides information to help you select the right service for each operational need.

Area Cycle 1 focus and tools
Platform architecture and governance Governance, guardrails, enterprise architecture and platform design for AWS, tagging, AWS Systems Manager. Usually covered by deploying the AWS Landing Zone solution, AWS Control Tower, or AWS Managed Services.
Event and incident management Logging and monitoring, service restoration, Amazon CloudWatch, Amazon Simple Notification Service (Amazon SNS).
Provisioning and configuration management Template consumption, infrastructure as code, Service Catalog, AWS CloudFormation.
Availability and continuity management Reliability, serviceability, resiliency, Availability Zone failover, volume backup, SLAs for cloud.
IT change management Compliance and controls, risk management, Service Catalog, AWS Config, AWS CloudTrail.
Resource inventory management Transparency, resource lifecycle, AWS Config.
Identity and access management Least privilege, AWS Identity and Access Management (IAM), federation, usually implemented through the security workstream.
Security management Security controls, security incident response, specified by the security workstream. For example, see the automated patch management guide on the AWS Prescriptive Guidance website.
Financial management Tagging, billing report, cost optimization (right-sizing, governance), AWS Trusted Advisor.
Capacity planning and forecasting Fit for purpose designs, resource trends, AWS Config, AWS Trusted Advisor, budget.
Organizational change management Training, communications, transformational buy-in.
Vendor management Outsourced provider controls.
Reporting and analytics Usage trends, service health, EKK (Amazon OpenSearch Service, Amazon Kinesis, and Kibana), Amazon QuickSight.
Continuous improvement Process iterations, AWS Trusted Advisor, EKK (Amazon OpenSearch Service, Amazon Kinesis, and Kibana), Amazon QuickSight.
Application lifecycle management Software development lifecycle, people/process/tools integrations, DevOps workstream.