Mind Map Gallery AWAF
This is a mind map that contains information about AWAF.Edited at 2020-10-12 03:07:02
P1: Operational Excellence
Perform operations as code
Make frequent, smal, reversiblechanges
Refine operations proceduresfrequently
Learn from all operational failures
OPS1: What factors drive youroperational priorities?
OPS2: How do you design your workloadto enable operability?
OPS3: How do you know that you areready to support a workload?
OPS4: What factors drive yourunderstanding of operational health?
OPS5: How do you manage operationalevents?
OPS6: How do you evolve operations?
P5: Cost Optimization
Adopt a consumption model
Measure overall efficiency
Stop spending money on data centeroperations
Analyse and attribute expenditure
Use management services to reducecost of ownership
COST1: Are you considering cost whenyou select AWS services for yoursolutions?
COST2: Have you sized yourresources to meet your costtargets?
COST3: Have you selected theappropriate pricing model to meet yourcost targets?
Matching Supply and Demand
COST4: How do you make sure yourcapacity matches but does notsubstantially exceed what you need?
COST5: Do you consider datatransfercharges when designing yourarchitecture?
COST6: How are you monitoring usageand spending?
COST7: Do your decommissionresources that you no longer need orstop resources that are temporarilynot needed?
COST8: What access controls andprocedures do you have in place togovern AWS usage?
Optimizing Over Time
COST9: How do you manage and/orconsider the adoption of new services?
re:invent / Summits
AWS TCO Calculators
AWS Simple Monthly Caclulator
Test recovery procedures
Automatically recover from failure
Scale horizontally to increaseaggregate system availability
Stop guessing capacity
Manage change in automation
REL1: How are you managing AWSservice limits for your accounts?
REL2: How are you planning yournetwork topology on AWS?
REL3: How does your system adaptto changes in demand?
REL4: How are you monitoring AWSresources?
REL5: How are you executing change?
REL6: How are you backing up yourdata?
REL7: How does your systemwithstand component failures?
REL8: How are you testing yourresiliency?
REL9: How are you planning fordisaster recovery?
P4: Performance Efficiency
Democratize advanced technologies
Go global in minutes
Use serverless architectures
Experiment more often
PERF1: How do you select the bestperformance architecture?
PERF2: How did you select yourcompute solution?
PERF3: How do you select yourstorage solution?
PERF4: How do you select your Storagesolution?
PERF5: How do you select your networksolution?
PERF6: How do you ensure that youcontinue to have the most appropriateresource type as new ressource typesand features are introduced?
re:invent &amp; summits
PERF7: How do you monitoring yourresources postlaunch to ensure theyare performing as expected?
PERF8: How do you use tradeoffs toimprove performance?
RDS Read replicas
Implement a strong identityfoundation
Apply security at all layers
Automate security best practices
Protect data in transit and at rest
Prepare for security events
Identity and Access Management
SEC1: How are you protecting accessto and use of the AWS account rootuser credentials?
SEC2: How are you defining roles andresponsibilities of system users tocontrol human access to the AWSManagement Console API?
SEC3: How are you limiting automatedaccess to AWS resources (for exampleapplications scripts, and/or thirdpartytools or services)?
SEC4: How are you capturing andanalyzing logs?
SEC5: How are you enforcing networkand hostlevel boundary protection?
SEC6: How are you leveraging AWSservicelevel security features?
SEC7: How are you protecting theintegrity of the operating system?
SEC8: How are you classifying yourdata?
SEC9: How are you encrypting andprotecting your data at rest?
SEC11: How are you encrypting andprotecting your data in transit?
Encrypt RDS, S3, EBS
SEC12: How do you ensure that youhave the appropriate incident response?