Automated AWS Account Provisioning
Automated provisioning of AWS sandbox accounts with embedded governance, cost controls, and team-based permission models
Automation
Account Automation
Requirement | Sandboxes and test environments
The client required the ability to explore AWS services on demand while controlling budget and avoiding impact and security risks to existing infrastructure and workloads.
Solution | Account automation
We implemented pipelines to create AWS accounts with predefined best-practice policies, isolated from the corporate network, enabling teams to provision, destroy, and test AWS services on demand. We provided Infrastructure as Code templates for deploying resources such as Amazon RDS instances, EC2 instances, and AWS Lambda functions on demand, eliminating manual provisioning steps. We configured budget caps and alarms to maintain constant cost control and prevent overspending or incorrect provisioning by various teams.
Outcome | Reduced time to market
Teams can provision and test resources rapidly during the proof-of-concept phase for new applications or AWS services, facilitating informed decisions on project viability, all while ensuring budget limits are enforced.
Technologies Used
- IAM & SCP policies
- Cloudformation CDK
- Code Build & Code Deploy
- AWS Organization