Embedded Files
what is it
use infrastructure as code tools like cloudformation , cdk, terrraform to create and manage cloud resources
engineers write the templates and then the tool engine figures out how to execute the list of create,update,delete operations to perform to make relality match the engineers desire
why would anyone do this
able to replicate beta and prod environments
can have changes go through a code review on the team to catch bugs before deploying
deploy infrastructure changes through existing CD pipelines
track changes to infrastructure (and role back if it doesnt work)
reduces blast radius by letting the pipeline deploy changes and not humans loginng into the web console with admin permissions and breaking something unrelated
allows for easier expansion of services to new cloud regions or accounts
how can we help
based edge is happy to work alongside your team to set up infrasturce automation. this is an excellent time to reflect and consider the infrasture that exists today. having someone outside the team ask why infrasture was sized certain ways or if certain roles need all those permissions is a great forcing function to right size infratruct and scope down role permissions
Page updated
Google Sites
Report abuse