Please enable JavaScript.
Coggle requires JavaScript to display documents.
AWS Roadmap (Operation (resource inventory management
what benefit here…
AWS Roadmap
Operation
Service Monitoring system matrices
- we have to see whether we should really look into this, this only benefit OaaS, cloud-friendly should not need this, whenever the instance is failing, it should be terminated and new instance spawn again.
-
-
Application performance monitoring
- in-depth monitoring for application performance
- it is important to examine what application team can do after receiving the alerts
Options
-
Elasticsearch + kibana stack
-
resource inventory management
- what benefit here we have to have inventory management. we should strive for bootstrapping instead? For OaaS, that should be the normal server patching will cover
-
-
-
Release Management/Change Management
- Deployment wise, we have a toolchain to handle continuous deployment, however not so much for SaaS
-
-
-
Reporting and Analytics
- I guess we this point we are more focus on cost optimization and resource utilization
- target audience: finance/management
-
-
-
-
IT service catalog
- currently we have confluence, do we really need a official catalog for this?
Platform
-
Network provisiong
- in general i think only ELB here, other network component should not offer as service, like DNS we should use the default one from network team
ELB
- both application and class ELB
- have to study in what situation use what
Storage Provisioning
- Mainly on S3, nothing much expansion we should do here
Database offering
I guess is more on demand basis, right now seems like our offering is sufficient
how to approach new service in a systematic way?
- is it redundant with on-prem services?
security/compliance
IAM
- on-going SSO for AWS console
- any possibility to give more access to people?
incident response
- do have sufficient documentation for incident response
Infra Security
- we should have a set of policy how we want to provision any services, for instance all services has to be under VPC
- security review from third party