Pillars
Operational Excellence
- Support Development
- run Workloads
- gain insight
- continously improve
- continously support
- USE IaC!
- limit human error
- consistency
Small changes
- Design processes to be updated regularly
- small increments
- when possible use backword copatabilty
Refine ops frequently
- look to improve
- use game days
- review data
Best Practices
Anticipate failure
Learn from all ops failures
Security
- protect data
- protect systems
Implement a strind identiy foundation
- least privlege
- separation of dutys
- authoriastion for each interaction
- central id managment
- eliminate reliance on long term staic credentials
traceabily
Security at all layers
- vpc
- netowrk
- ec2
- application
- os
- code
Automate security best practices
- improves the abilty to scale
Protect data in transit and at rest
- encryption
- access control
Keep people away
- restrict access as much as possible
Prepare for the worst
- incident managment and investigation policy
Reliabilty
- perform a workload correctly
- use computing ressources efficently
- maintain efficenty through change
Cost optimisation
- deliver buissness value at lowest price point
Sustainabilty
- reduce energy consuption
- maximize benefits of resources
- minimize ressources required