infrastructure automation + codification

what is it

use infrastructure as code tools like cloudformation , cdk, terrraform to create and manage cloud resources

engineers write the templates and then the tool engine figures out how to execute the list of create,update,delete operations to perform to make relality match the engineers desire

why would anyone do this

able to replicate beta and prod environments

can have changes go through a code review on the team to catch bugs before deploying

deploy infrastructure changes through existing CD pipelines

track changes to infrastructure (and role back if it doesnt work)

reduces blast radius by letting the pipeline deploy changes and not humans loginng into the web console with admin permissions and breaking something unrelated

allows for easier expansion of services to new cloud regions or accounts

how can we help

based edge is happy to work alongside your team to set up infrasturce automation. this is an excellent time to reflect and consider the infrasture that exists today. having someone outside the team ask why infrasture was sized certain ways or if certain roles need all those permissions is a great forcing function to right size infratruct and scope down role permissions