Solution Overview
AWS Control Tower provides organisations with a fast, secure, enterprise-grade landing zone, based on AWS best practices. Control Tower automates the setup of a new landing zone using best-practices blueprints for identity, federated access, and account structure.
Landing Zone
Multi-Account Structure - An AWS Landing Zone provides separate accounts and centralised logging to segregate access for increase security and access control
Account Vending Machine (AVM) - Use a vending machine to deploy your AWS accounts and ensure they stay current with your security baseline
User Access - Provides centralised access to all AWS accounts
Notifications - Amazon CloudWatch alarms and events to send notifications for sensitive events such as root account login, API authentication failures and changes to security groups amongst others
Security Baseline - Deploy a consistent security baseline to all accounts, with guard rails to ensure compliance
Tailored Landing Zone - Customize your Landing Zone environment to meet your organizations specific access & security policy requirements
Solutions Overview
AWS Control Tower provides organisations with a fast, secure, enterprise-grade landing zone, based on AWS best practices. Control Tower automates the setup of a new landing zone using best-practices blueprints for identity, federated access, and account structure.
Landing Zone
Multi-Account Structure - An AWS Landing Zone provides separate accounts and centralised logging to segregate access for increase security and access control
Account Vending Machine (AVM) - Use a vending machine to deploy your AWS accounts and ensure they stay current with your security baseline
User Access - Provides centralised access to all AWS accounts
Notifications - Amazon CloudWatch alarms and events to send notifications for sensitive events such as root account login, API authentication failures and changes to security groups amongst others
Security Baseline - Deploy a consistent security baseline to all accounts, with guard rails to ensure compliance
Tailored Landing Zone - Customize your Landing Zone environment to meet your organizations specific access & security policy requirements
Solution Overview
AWS Control Tower provides organisations with a fast, secure, enterprise-grade landing zone, based on AWS best practices. Control Tower automates the setup of a new landing zone using best-practices blueprints for identity, federated access, and account structure.
Landing Zone
Multi-Account Structure - An AWS Landing Zone provides separate accounts and centralised logging to segregate access for increase security and access control
Account Vending Machine (AVM) - Use a vending machine to deploy your AWS accounts and ensure they stay current with your security baseline
User Access - Provides centralised access to all AWS accounts
Notifications - Amazon CloudWatch alarms and events to send notifications for sensitive events such as root account login, API authentication failures and changes to security groups amongst others
Security Baseline - Deploy a consistent security baseline to all accounts, with guard rails to ensure compliance
Tailored Landing Zone - Customize your Landing Zone environment to meet your organizations specific access & security policy requirements
AWS Landing Zone Deployment
Solution Outcomes
Solution Outcomes