Optimized landing zone deployment for SaaS.pdf
0 likes106 views
The document outlines the Crayon Group's internal agenda and structure for an optimized landing zone deployment focused on SaaS and ISV companies. It details the challenges of SaaS development, emphasizes the need for well-architected cloud environments, and introduces architected accelerators to streamline the process. The document concludes with a structured approach for engaging with customers through meetings aimed at deployment and configuration of solutions.
Optimized landing zone deployment for SaaS.pdf
- 1. Crayon Group - Internal Only Optimized landing zone deployment for SaaS
- 2. Crayon Group - Internal Only Speaker Introduction Raj Murugan – AWS Cloud Architect Passionate about problem-solving and finding innovative solutions. Has an impressive collection of swag from various AWS events and conferences 10 years in AWS, still learning.
- 3. Crayon Group - Internal Only Agenda 01 02 03 04 05 06 Parallo – Introduction AWS Accelerators AWS Landing zone Accelerators SaaS Journey Challenges & Solution SaaS Reference Architecture Use Cases 07 Q&A
- 4. Crayon Group - Internal Only Parallo - Introduction Mission: We are a niche and specialized service provider hyper focused on helping SaaS and ISV companies accelerate their growth and optimize their cloud platforms enabling them to focus on their product and business growth. Vision: Our vision is to be the leading provider of technical cloud services to SaaS companies worldwide
- 5. Crayon Group - Internal Only Single AWS Account Proof of Concept Go – live Introduce Control Tower I got an idea 01 Build the app first 02 Let us make it into SaaS 03 Create more accounts / VPC etc Create multiple standalone deployments Availability issues Compliance & Regulatory issues Scaling Issues Performance Issues Noisy neighbours All old problems persist New Problem – cost overrun Growing tech debt Devs held up in operations Eroding margins SaaS Journey – Challenge More Users
- 6. Crayon Group - Internal Only SaaS Journey – Maximize SaaS Success Limit developer awareness of multi-tenant concepts, logging, security , observability, Compliance and governance. This means • Providing a strong foundation with Landing zone • providing libraries and reusable constructs (Architected Accelerators) to developers that hide the details of the control plane There is no single blueprint for SaaS • Review the unique aspects of the SaaS business Application • Isolation • Portioning • Deployment • Routing Tenancy • Identity • Tenant • Tiering • Routing Management • SLA & SLO • Regulatory and Compliance • Operational efficiency • Routing • Budget • Networking & Security Well Architected SaaS App Landing Zone Accelerator Workload Accelerator Control plane Accelerator
- 7. Crayon Group - Internal Only SaaS Review Set up the landing zone Set up the control Plane I got an idea 01 Innovate and Release awesome features often 02 Let us make it into SaaS 02 SaaS – Well Architected Journey Go live Set up the Application Plane Release Often More Users
- 8. Crayon Group - Internal Only Introduction – Architected Accelerators Built using automate everything as a driving principle Written in Terraform, our Infrastructure as Code tool for Multi-Cloud Built as reusable modular components Validated and approved by a dedicated AWS Partner Principal Solution Architect Built with well-tested and customer validated modules Resulting in unified solution libraries, reusable at scale as acceleration and enablement kits
- 9. Crayon Group - Internal Only Benefits - Architected Accelerators AWS well-architected compliancy Governance and best practices built-in Deployed in minutes Enable customers to focus on building Awesome SaaS products Customizable , Modular and Reusable Resulting in unified solution libraries, reusable at scale as acceleration and enablement kits
- 10. Crayon Group - Internal Only Landing Zone – Accelerator – introduction In Theory: A landing zone is a well-architected, multi-account AWS environment that is a starting point from which you can deploy workloads and applications. It provides a baseline to get started with multi-account architecture, identity and access management, governance, data security, network design, and logging. In Practice: There is no blueprint to building SaaS applications There is no unique fit for a landing zone. SaaS comes in all shapes It needs to reflect specific customer scenarios and business needs Having this in mind, Crayon has produced the solution for a customizable Landing zone as a well-architected foundation for a proper set-off in the AWS cloud.
- 11. Crayon Group - Internal Only An AWS environment with a multi-account architecture An initial security baseline Data Security Identity and access management Network Security Governance Logging Landing Zone – Accelerator – introduction
- 12. Crayon Group - Internal Only SaaS Reference Architecture – with Accelerators Application Plane – application Foundation Accelerators VPC Accelerator Landing zone Accelerator Control Plane – Administrator Application Lambda Accelerators – Serverless Metrics Log Preventive Controls Detective Controls SSO Compliance Checks Continuous Security Monitoring Continuous Security Monitoring Workload Accelerator (Containers/Database etc) Auth Silo Pool Bridge Multi Account Devops and Deployment Consolidated Billing Zero Downtime deployment Fail fast Fault Tolerance VPC per tenant All tenant share VPC API Gateway Accelerators – Serverless
- 13. Crayon Group - Internal Only Monitor Build Test Code Provision Deploy AWS Code Commit GitHub AWS Code Deploy AWS Code Build Terraform GitHub Pipelines Azure Pipelines Terraform Workspace Accelerator – Deployment Model
- 14. •Setting up a fresh AWS environment •- Best practice at the very beginning •Migrating to AWS •Improving existing Workload Accelerator – Use Cases
- 15. Crayon Group - Internal Only First Meeting with the Customer • Landing Zone Concept Presentation • Commercial Discussion (if applicable) • Understanding Customer Use- case Attendees from Parallo: • Local Sales/ Account Manager • CCOE AWS Cloud Architect • Local Cloud Architect Customer Decision • Deployment Prerequisites: Parallo: • Deployment and configuration instructions Document • We share the Source Code Customer: • The customer then needs to prepare input parameters • Decides on the deployment scenarios 2nd Meeting • Technical Deep-dive (if needed) • Code Review (if needed) • Deep-dive on deployment scenarios • Final Check on the input parameters 3rd meeting • Deployment of the solution • Option 1: The customer deploys the solution (this meeting is not required) • Option 2: The customer deploys the solutions with Parallo guidance and oversight • Option 3: We deploy the solution. Deployment Verification • Verify the deployment has been done properly • How to operate within the Landing Zone • Optional: Configure AWS SSO Accelerator – Deployment – process - New
- 16. Crayon Group - Internal Only First Meeting with the Customer • Landing Zone Concept Presentation • Commercial Discussion (if applicable) • Understanding Customer Use- case Attendees from Parallo: • Local Sales/ Account Manager • CCOE AWS Cloud Architect • Local Cloud Architect Customer Decision • Deployment Prerequisites: Parallo: • Deployment and configuration instructions Document • We share the Source Code Customer: • The customer then needs to prepare input parameters • Decides on the deployment scenarios 2nd Meeting • Technical Deep- dive (if needed) • Code Review (if needed) • Deep-dive on deployment scenarios • Final Check on the input parameters 3rd meeting • Deployment of the solution • Option 1: The customer deploys the solution (this meeting is not required) • Option 2: The customer deploys the solutions with Crayon guidance and oversight • Option 3: We deploy the solution. Deployment Verification • Verify the deployment has been done properly • How to operate within the Landing Zone • Optional: Configure AWS SSO • AWS Account(s) Transfer Accelerator – Deployment – process – Existing
- 17. Crayon Group - Internal Only Q & A
- 18. Crayon Group - Internal Only Thank You!