It came out this morning, it’s still hot. – AWS Secure Environment Accelerator –
The AWS Accelerator is a tool designed to help deploy and operate secure multi-account AWS environments on an ongoing basis. The power of the solution is the configuration file that drives the architecture deployed by the tool. This enables extensive flexibility and for the completely automated deployment of a customized architecture within AWS without changing a single line of code.https://github.com/aws-samples/aws-secure-environment-accelerator
I knew the Landing Zone and Control Tower services. According to AWS, AWS S.E.C. goes further and in a different way. Heard from AWS people: “Landing Zone is security level 101, Secure Environment Accelarerator is level 401…”
The AWS Accelerator is a superset of the Amazon Landing Zone. The initial versions of the AWS Accelerator presupposed the existence of an AWS Landing Zone Solution in the AWS Organization; this requirement has since been removed as of release
v1.1.0. The Accelerator is now a completely standalone solution.
When appropriate, it is envisioned that the AWS Accelerator will add the capability to be deployed on top of AWS Control Tower, as we initially allowed with the ALZ.
Interestingly, this new tool was made for security requirements for the Government of Canada.
the AWS Accelerator is delivered with a sample configuration file which deploys an opinionated and prescriptive architecture designed to help meet the security and operational requirements of many governments around the world (initial focus was the Government of Canada).
At first glance, it seems very complete to me. Here is, for example, the network component of the S.E.C.
Now I have to go through the whole so that I can advise my clients on this tool which has a very good potential.
Come and discuss it with me firstname.lastname@example.org if the heart tells you.