SlideShare une entreprise Scribd logo

Qantas scales cloud ops with AWS Systems Manager

Amazon Web Services
Amazon Web Services

The document discusses how Qantas Airways is using AWS Systems Manager to scale its cloud operations. It describes four use cases: 1) using Parameter Store for runtime parameter queries, 2) using Run Command for break glass access, 3) using Parameter Store and CloudFormation for a central approved system image model, and 4) using Run Command, Lambda, and Step Functions to automate authenticated security scans of instances. The use of AWS Systems Manager has provided Qantas with centralized management of secrets, operational values, and EC2 instance information while balancing governance needs with developer agility.

1  sur  39
S U M M I T SYDNEY
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T How Qantas is scaling cloud operations with AWS Systems Manager Emily Arnautovic Enterprise Solutions Architect Amazon Web Services Steven Tyson Cloud Services Lead Qantas Airways
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Scaling operations
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T - Define - Discover - Monitor - Manage - Report - Respond - Agility - Innovation Governance Developmentspeed The challenge of governance vs. agility
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Services to improve governance and agility Integrated & interoperable
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager Resource Groups Automation Run Command
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager Inventory Patch Manager Maintenance Window Resource Groups Automation Run Command
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager Parameter Store State Manager Session Manager Distributor Resource Groups Automation Run Command Inventory Patch Manager Maintenance Window
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Qantas Airways • 100 year history • Domestic and international flights • Millions of customers • Safety is our highest priority • AWS customer since 2014 • Large, diverse technical stack • 100’s of applications and services • Large cloud and physical IT presence • Constellation app (flight planning) © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T A snapshot of Qantas at cloud scale Significant spend and growing
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T A snapshot of Qantas at cloud scale Significant spend and growing
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T A snapshot of Qantas at cloud scale Significant spend and growing
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Infrastructure as code AWS CloudFormation AWS Lambda AWS Step Functions Auto Scaling GroupAmazon SQS Amazon EC2 AWS Identity and Access Management (IAM)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Infrastructure as code Documents Parameter Store Run command AWS CloudFormation AWS Lambda AWS Step Functions Auto Scaling GroupAmazon SQS Amazon EC2 AWS Identity and Access Management (IAM)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Scenario and challenges Image credit: Steve Buissinne from Pixabay © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Scenario and challenges © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Image credit: Steve Buissinne from Pixabay
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Solutions 
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 1 Parameter Store
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 1: runtime parameter queries AWS Cloud VPC
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 1: runtime parameter queries Parameter Store AWS Systems Manager AWS Cloud VPC
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 1: runtime parameter queries Permissions Lambda function (deletion of stale values) Parameter Store AWS Systems Manager AWS Cloud VPC
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 2 Run Command
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 2: break glass access AWS Cloud VPC
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 2: break glass access AWS Cloud VPC AWS Systems Manager
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 2: break glass access AWS Cloud VPC AWS Systems Manager
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 3 Parameter Store
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 3: approved SOE central model AWS CloudFormation AWS Cloud
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 3: approved SOE central model Parameter Store Approved AMIs AWS Systems Manager AWS CloudFormation AWS Cloud
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 3: approved SOE central model Parameter Store Approved AMIs AWS Systems Manager CloudFormation AWS Cloud AWS Lambda function Permissions Custom resource
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 4 Run Command Parameter Store
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 4: authenticated instance scans AWS Lambda Pre-scan AWS Step Functions Document 3rd Party security scannerRun Command AWS Cloud Amazon EC2 Instance VPC Amazon Simple Queue Service
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 4: authenticated instance scans Amazon Simple Queue Service AWS Lambda Scan AWS Step Function Amazon EC2 Instance Document 3rd Party security scannerRun Command AWS Cloud VPC Amazon Simple Queue Service AWS Lambda Pre-scan AWS Step Functions
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 4: authenticated instance scans Amazon Simple Queue Service AWS Lambda Scan AWS Step Function Amazon EC2 Instance Document 3rd Party security scannerRun Command AWS Cloud VPC Amazon Simple Queue Service AWS Lambda Pre-scan AWS Step Functions Lambda Clean-Up Step Function
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Lessons learnt AWS Key Management Service key per application Use AWS Systems Manager Documents Leverage VPC Endpoints AWS Lambda for secrets workflow orchestration Secrets aren’t always forever AWS Identity and Access Management naming conventions Keep AWS Systems Manager (SSM) agents current AWS Systems Manager log expertise and management Parameter Store vs. AWS Secrets Manager – effort vs. flexibility
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Results with AWS Systems Manager  Injection of application specific secure strings • No sensitive values in code • No user details in SOE • Developers store and manage their secrets  Central source of truth for real time operational values  Central store of Amazon EC2 information • Store and push out updates centrally Image credit: Nenad Maric from Pixabay
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – future uses Patch Manager Maintenance Window Session Manager
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager summary AWS Systems Manager • Visibility and control at scale • Balance governance with agility: empower development teams Scan your badge! Reference: Walkthroughs • Parameter Store and Amazon Cloud Formation • Looking up AMIs Reference: AWS Solutions • Server Fleet Management at scale
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Related breakouts Keep It Secret, Keep It Safe: Credentials and Secrets Management on AWS (Level 300) Maria Sokolova Security at Scale: Security Hub and the Well Architected Framework (Level 300) Tyson Garrett The Art of Successful Failure (Level 200) Becky Weiss
Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Emily Arnautovic emilyarn@amazon.com

Recommandé

Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...
Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...
Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...Amazon Web Services
 
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...Amazon Web Services
 
How to act on security and compliance alerts with AWS Security Hub - SEC202 -...
How to act on security and compliance alerts with AWS Security Hub - SEC202 -...How to act on security and compliance alerts with AWS Security Hub - SEC202 -...
How to act on security and compliance alerts with AWS Security Hub - SEC202 -...Amazon Web Services
 
Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...
Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...
Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...Amazon Web Services
 
AI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS Summit
AI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS SummitAI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS Summit
AI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS SummitAmazon Web Services
 
Accelerate database development and testing with Amazon Aurora - ADB208 - New...
Accelerate database development and testing with Amazon Aurora - ADB208 - New...Accelerate database development and testing with Amazon Aurora - ADB208 - New...
Accelerate database development and testing with Amazon Aurora - ADB208 - New...Amazon Web Services
 
A few milliseconds in the life of an HTTP request - SVC303 - New York AWS Summit
A few milliseconds in the life of an HTTP request - SVC303 - New York AWS SummitA few milliseconds in the life of an HTTP request - SVC303 - New York AWS Summit
A few milliseconds in the life of an HTTP request - SVC303 - New York AWS SummitAmazon Web Services
 
Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...
Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...
Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...Amazon Web Services
 

Recommandé

Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...
Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...
Migrate your Oracle and SQL Server databases to Amazon RDS - ADB210 - New Yor...Amazon Web Services
 
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...Amazon Web Services
 
How to act on security and compliance alerts with AWS Security Hub - SEC202 -...
How to act on security and compliance alerts with AWS Security Hub - SEC202 -...How to act on security and compliance alerts with AWS Security Hub - SEC202 -...
How to act on security and compliance alerts with AWS Security Hub - SEC202 -...Amazon Web Services
 
Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...
Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...
Using Amazon EMR Notebooks to develop Apache Spark applications - ADB202 - At...Amazon Web Services
 
AI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS Summit
AI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS SummitAI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS Summit
AI Powered Speech Analytics for Amazon Connect - SVC305 - New York AWS SummitAmazon Web Services
 
Accelerate database development and testing with Amazon Aurora - ADB208 - New...
Accelerate database development and testing with Amazon Aurora - ADB208 - New...Accelerate database development and testing with Amazon Aurora - ADB208 - New...
Accelerate database development and testing with Amazon Aurora - ADB208 - New...Amazon Web Services
 
A few milliseconds in the life of an HTTP request - SVC303 - New York AWS Summit
A few milliseconds in the life of an HTTP request - SVC303 - New York AWS SummitA few milliseconds in the life of an HTTP request - SVC303 - New York AWS Summit
A few milliseconds in the life of an HTTP request - SVC303 - New York AWS SummitAmazon Web Services
 
Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...
Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...
Modernizing your data warehouse using Amazon Redshift - ADB303 - Chicago AWS ...Amazon Web Services
 
Using automation to drive continuous-compliance best practices - SVC309 - Chi...
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Using automation to drive continuous-compliance best practices - SVC309 - Chi...
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Amazon Web Services
 
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
 
What's new in Amazon Aurora - ADB203 - Atlanta AWS Summit
What's new in Amazon Aurora - ADB203 - Atlanta AWS SummitWhat's new in Amazon Aurora - ADB203 - Atlanta AWS Summit
What's new in Amazon Aurora - ADB203 - Atlanta AWS SummitAmazon Web Services
 
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...Amazon Web Services
 
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...Amazon Web Services
 
Delivering infrastructure, security, and operations as code with AWS - DEM10-...
Delivering infrastructure, security, and operations as code with AWS - DEM10-...Delivering infrastructure, security, and operations as code with AWS - DEM10-...
Delivering infrastructure, security, and operations as code with AWS - DEM10-...Amazon Web Services
 
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS Summit
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS SummitThreat detection and mitigation at AWS - SEC201 - Atlanta AWS Summit
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS SummitAmazon Web Services
 
Continuous security monitoring and threat detection with AWS services - SEC20...
Continuous security monitoring and threat detection with AWS services - SEC20...Continuous security monitoring and threat detection with AWS services - SEC20...
Continuous security monitoring and threat detection with AWS services - SEC20...Amazon Web Services
 
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...Amazon Web Services
 
Scalable serverless architectures using event-driven design - MAD301 - Atlant...
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Scalable serverless architectures using event-driven design - MAD301 - Atlant...
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Amazon Web Services
 
AWSome Day MODULE 4 - Security
AWSome Day MODULE 4 - SecurityAWSome Day MODULE 4 - Security
AWSome Day MODULE 4 - SecurityAmazon Web Services
 
Best practices for queue processing in serverless applications - MAD313 - Chi...
Best practices for queue processing in serverless applications - MAD313 - Chi...Best practices for queue processing in serverless applications - MAD313 - Chi...
Best practices for queue processing in serverless applications - MAD313 - Chi...Amazon Web Services
 
Unified monitoring of the container environment, containers, and applications...
Unified monitoring of the container environment, containers, and applications...Unified monitoring of the container environment, containers, and applications...
Unified monitoring of the container environment, containers, and applications...Amazon Web Services
 
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...Amazon Web Services
 
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...Amazon Web Services
 
Increasing the value of video with machine learning & AWS Media Services - SV...
Increasing the value of video with machine learning & AWS Media Services - SV...Increasing the value of video with machine learning & AWS Media Services - SV...
Increasing the value of video with machine learning & AWS Media Services - SV...Amazon Web Services
 
Delivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitDelivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitAmazon Web Services
 
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...Amazon Web Services
 
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS Summit
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS SummitArchitecting SAP on Amazon Web Services - SVC216 - Chicago AWS Summit
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS SummitAmazon Web Services
 
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...Making CI/CD pipelines safer with application monitoring and tracing - MAD202...
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...Amazon Web Services
 
"Is it Up?" - operating effectively in AWS
"Is it Up?" - operating effectively in AWS"Is it Up?" - operating effectively in AWS
"Is it Up?" - operating effectively in AWSAmazon Web Services
 
Operationalizing Microsoft Workloads
Operationalizing Microsoft WorkloadsOperationalizing Microsoft Workloads
Operationalizing Microsoft WorkloadsAmazon Web Services
 

Contenu connexe

Tendances

Using automation to drive continuous-compliance best practices - SVC309 - Chi...
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Using automation to drive continuous-compliance best practices - SVC309 - Chi...
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Amazon Web Services
 
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
 
What's new in Amazon Aurora - ADB203 - Atlanta AWS Summit
What's new in Amazon Aurora - ADB203 - Atlanta AWS SummitWhat's new in Amazon Aurora - ADB203 - Atlanta AWS Summit
What's new in Amazon Aurora - ADB203 - Atlanta AWS SummitAmazon Web Services
 
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...Amazon Web Services
 
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...Amazon Web Services
 
Delivering infrastructure, security, and operations as code with AWS - DEM10-...
Delivering infrastructure, security, and operations as code with AWS - DEM10-...Delivering infrastructure, security, and operations as code with AWS - DEM10-...
Delivering infrastructure, security, and operations as code with AWS - DEM10-...Amazon Web Services
 
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS Summit
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS SummitThreat detection and mitigation at AWS - SEC201 - Atlanta AWS Summit
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS SummitAmazon Web Services
 
Continuous security monitoring and threat detection with AWS services - SEC20...
Continuous security monitoring and threat detection with AWS services - SEC20...Continuous security monitoring and threat detection with AWS services - SEC20...
Continuous security monitoring and threat detection with AWS services - SEC20...Amazon Web Services
 
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...Amazon Web Services
 
Scalable serverless architectures using event-driven design - MAD301 - Atlant...
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Scalable serverless architectures using event-driven design - MAD301 - Atlant...
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Amazon Web Services
 
Best practices for queue processing in serverless applications - MAD313 - Chi...
Best practices for queue processing in serverless applications - MAD313 - Chi...Best practices for queue processing in serverless applications - MAD313 - Chi...
Best practices for queue processing in serverless applications - MAD313 - Chi...Amazon Web Services
 
Unified monitoring of the container environment, containers, and applications...
Unified monitoring of the container environment, containers, and applications...Unified monitoring of the container environment, containers, and applications...
Unified monitoring of the container environment, containers, and applications...Amazon Web Services
 
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...Amazon Web Services
 
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...Amazon Web Services
 
Increasing the value of video with machine learning & AWS Media Services - SV...
Increasing the value of video with machine learning & AWS Media Services - SV...Increasing the value of video with machine learning & AWS Media Services - SV...
Increasing the value of video with machine learning & AWS Media Services - SV...Amazon Web Services
 
Delivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitDelivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitAmazon Web Services
 
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...Amazon Web Services
 
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS Summit
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS SummitArchitecting SAP on Amazon Web Services - SVC216 - Chicago AWS Summit
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS SummitAmazon Web Services
 
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...Making CI/CD pipelines safer with application monitoring and tracing - MAD202...
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...Amazon Web Services
 

Tendances (20)

Using automation to drive continuous-compliance best practices - SVC309 - Chi...
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Using automation to drive continuous-compliance best practices - SVC309 - Chi...
Using automation to drive continuous-compliance best practices - SVC309 - Chi...
 
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
 
What's new in Amazon Aurora - ADB203 - Atlanta AWS Summit
What's new in Amazon Aurora - ADB203 - Atlanta AWS SummitWhat's new in Amazon Aurora - ADB203 - Atlanta AWS Summit
What's new in Amazon Aurora - ADB203 - Atlanta AWS Summit
 
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...
Mythical Mysfits: Build & collaborate on a modern web application on AWS - MA...
 
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...
Build a Vulnerability Management Program Using AWS for AWS (SEC337-R1) - AWS ...
 
Delivering infrastructure, security, and operations as code with AWS - DEM10-...
Delivering infrastructure, security, and operations as code with AWS - DEM10-...Delivering infrastructure, security, and operations as code with AWS - DEM10-...
Delivering infrastructure, security, and operations as code with AWS - DEM10-...
 
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS Summit
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS SummitThreat detection and mitigation at AWS - SEC201 - Atlanta AWS Summit
Threat detection and mitigation at AWS - SEC201 - Atlanta AWS Summit
 
Continuous security monitoring and threat detection with AWS services - SEC20...
Continuous security monitoring and threat detection with AWS services - SEC20...Continuous security monitoring and threat detection with AWS services - SEC20...
Continuous security monitoring and threat detection with AWS services - SEC20...
 
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...
Introduction to the Well-Architected Framework and Tool - SVC212 - Chicago AW...
 
Scalable serverless architectures using event-driven design - MAD301 - Atlant...
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Scalable serverless architectures using event-driven design - MAD301 - Atlant...
Scalable serverless architectures using event-driven design - MAD301 - Atlant...
 
AWSome Day MODULE 4 - Security
AWSome Day MODULE 4 - SecurityAWSome Day MODULE 4 - Security
AWSome Day MODULE 4 - Security
 
Best practices for queue processing in serverless applications - MAD313 - Chi...
Best practices for queue processing in serverless applications - MAD313 - Chi...Best practices for queue processing in serverless applications - MAD313 - Chi...
Best practices for queue processing in serverless applications - MAD313 - Chi...
 
Unified monitoring of the container environment, containers, and applications...
Unified monitoring of the container environment, containers, and applications...Unified monitoring of the container environment, containers, and applications...
Unified monitoring of the container environment, containers, and applications...
 
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...
Deploy and scale your first cloud application with Amazon Lightsail - CMP208 ...
 
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...
CI/CD best practices for building modern applications - MAD302 - Atlanta AWS ...
 
Increasing the value of video with machine learning & AWS Media Services - SV...
Increasing the value of video with machine learning & AWS Media Services - SV...Increasing the value of video with machine learning & AWS Media Services - SV...
Increasing the value of video with machine learning & AWS Media Services - SV...
 
Delivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitDelivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS Summit
 
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
 
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS Summit
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS SummitArchitecting SAP on Amazon Web Services - SVC216 - Chicago AWS Summit
Architecting SAP on Amazon Web Services - SVC216 - Chicago AWS Summit
 
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...Making CI/CD pipelines safer with application monitoring and tracing - MAD202...
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...
 

Similaire à Qantas scales cloud ops with AWS Systems Manager

"Is it Up?" - operating effectively in AWS
"Is it Up?" - operating effectively in AWS"Is it Up?" - operating effectively in AWS
"Is it Up?" - operating effectively in AWSAmazon Web Services
 
Operationalizing Microsoft Workloads
Operationalizing Microsoft WorkloadsOperationalizing Microsoft Workloads
Operationalizing Microsoft WorkloadsAmazon Web Services
 
Operationalizing Microsoft Workloads, AWS Federal Pop-Up Loft
Operationalizing Microsoft Workloads, AWS Federal Pop-Up LoftOperationalizing Microsoft Workloads, AWS Federal Pop-Up Loft
Operationalizing Microsoft Workloads, AWS Federal Pop-Up LoftAmazon Web Services
 
AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...
AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...
AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...AWS Summits
 
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...AWS Summits
 
Is it Up? Operating Effectively in AWS
Is it Up? Operating Effectively in AWSIs it Up? Operating Effectively in AWS
Is it Up? Operating Effectively in AWSAmazon Web Services
 
Serverless Observability Tech Talk
Serverless Observability Tech TalkServerless Observability Tech Talk
Serverless Observability Tech TalkAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSCobus Bernard
 
Self-service remediation, managing configuration drift, & automation - SVC311...
Self-service remediation, managing configuration drift, & automation - SVC311...Self-service remediation, managing configuration drift, & automation - SVC311...
Self-service remediation, managing configuration drift, & automation - SVC311...Amazon Web Services
 
Security at the Speed of Cloud How to Think About it & How You Can Do it Now
Security at the Speed of Cloud How to Think About it & How You Can Do it NowSecurity at the Speed of Cloud How to Think About it & How You Can Do it Now
Security at the Speed of Cloud How to Think About it & How You Can Do it NowAmazon Web Services
 
Websites go Serverless - AWS Summit Berlin
Websites go Serverless - AWS Summit BerlinWebsites go Serverless - AWS Summit Berlin
Websites go Serverless - AWS Summit BerlinBoaz Ziniman
 
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...Amazon Web Services
 
Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...
Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...
Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...Amazon Web Services
 
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Amazon Web Services
 
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019AWS Summits
 
How Millennium Management achieves provable security with AWS Zelkova - FSV30...
How Millennium Management achieves provable security with AWS Zelkova - FSV30...How Millennium Management achieves provable security with AWS Zelkova - FSV30...
How Millennium Management achieves provable security with AWS Zelkova - FSV30...Amazon Web Services
 
ArmadaJS - how to build a full-stack airline ticketing web app
ArmadaJS - how to build a full-stack airline ticketing web appArmadaJS - how to build a full-stack airline ticketing web app
ArmadaJS - how to build a full-stack airline ticketing web appHeitor Lessa
 
Control your cloud environment with AWS management tools
Control your cloud environment with AWS management toolsControl your cloud environment with AWS management tools
Control your cloud environment with AWS management toolsAmazon Web Services
 
新一代電子商務架構與核心商用TB級資料庫的雲端遷移
新一代電子商務架構與核心商用TB級資料庫的雲端遷移新一代電子商務架構與核心商用TB級資料庫的雲端遷移
新一代電子商務架構與核心商用TB級資料庫的雲端遷移Amazon Web Services
 
Serverless days Stockholm - How to build a full-stack airline ticketing web app
Serverless days Stockholm - How to build a full-stack airline ticketing web appServerless days Stockholm - How to build a full-stack airline ticketing web app
Serverless days Stockholm - How to build a full-stack airline ticketing web appHeitor Lessa
 

Similaire à Qantas scales cloud ops with AWS Systems Manager (20)

"Is it Up?" - operating effectively in AWS
"Is it Up?" - operating effectively in AWS"Is it Up?" - operating effectively in AWS
"Is it Up?" - operating effectively in AWS
 
Operationalizing Microsoft Workloads
Operationalizing Microsoft WorkloadsOperationalizing Microsoft Workloads
Operationalizing Microsoft Workloads
 
Operationalizing Microsoft Workloads, AWS Federal Pop-Up Loft
Operationalizing Microsoft Workloads, AWS Federal Pop-Up LoftOperationalizing Microsoft Workloads, AWS Federal Pop-Up Loft
Operationalizing Microsoft Workloads, AWS Federal Pop-Up Loft
 
AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...
AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...
AWS Summit Singapore 2019 | The Serverless Lifecycle: Development and Operati...
 
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...
 
Is it Up? Operating Effectively in AWS
Is it Up? Operating Effectively in AWSIs it Up? Operating Effectively in AWS
Is it Up? Operating Effectively in AWS
 
Serverless Observability Tech Talk
Serverless Observability Tech TalkServerless Observability Tech Talk
Serverless Observability Tech Talk
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
Self-service remediation, managing configuration drift, & automation - SVC311...
Self-service remediation, managing configuration drift, & automation - SVC311...Self-service remediation, managing configuration drift, & automation - SVC311...
Self-service remediation, managing configuration drift, & automation - SVC311...
 
Security at the Speed of Cloud How to Think About it & How You Can Do it Now
Security at the Speed of Cloud How to Think About it & How You Can Do it NowSecurity at the Speed of Cloud How to Think About it & How You Can Do it Now
Security at the Speed of Cloud How to Think About it & How You Can Do it Now
 
Websites go Serverless - AWS Summit Berlin
Websites go Serverless - AWS Summit BerlinWebsites go Serverless - AWS Summit Berlin
Websites go Serverless - AWS Summit Berlin
 
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
 
Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...
Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...
Leadership session - Governance, risk, and compliance - GRC326-L - AWS re:Inf...
 
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
 
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
 
How Millennium Management achieves provable security with AWS Zelkova - FSV30...
How Millennium Management achieves provable security with AWS Zelkova - FSV30...How Millennium Management achieves provable security with AWS Zelkova - FSV30...
How Millennium Management achieves provable security with AWS Zelkova - FSV30...
 
ArmadaJS - how to build a full-stack airline ticketing web app
ArmadaJS - how to build a full-stack airline ticketing web appArmadaJS - how to build a full-stack airline ticketing web app
ArmadaJS - how to build a full-stack airline ticketing web app
 
Control your cloud environment with AWS management tools
Control your cloud environment with AWS management toolsControl your cloud environment with AWS management tools
Control your cloud environment with AWS management tools
 
新一代電子商務架構與核心商用TB級資料庫的雲端遷移
新一代電子商務架構與核心商用TB級資料庫的雲端遷移新一代電子商務架構與核心商用TB級資料庫的雲端遷移
新一代電子商務架構與核心商用TB級資料庫的雲端遷移
 
Serverless days Stockholm - How to build a full-stack airline ticketing web app
Serverless days Stockholm - How to build a full-stack airline ticketing web appServerless days Stockholm - How to build a full-stack airline ticketing web app
Serverless days Stockholm - How to build a full-stack airline ticketing web app
 

Plus de Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateAmazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSAmazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareAmazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAmazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSAmazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckAmazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without serversAmazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 

Plus de Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Qantas scales cloud ops with AWS Systems Manager

  • 1. S U M M I T SYDNEY
  • 2. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T How Qantas is scaling cloud operations with AWS Systems Manager Emily Arnautovic Enterprise Solutions Architect Amazon Web Services Steven Tyson Cloud Services Lead Qantas Airways
  • 3. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Scaling operations
  • 4. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T - Define - Discover - Monitor - Manage - Report - Respond - Agility - Innovation Governance Developmentspeed The challenge of governance vs. agility
  • 5. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Services to improve governance and agility Integrated & interoperable
  • 6. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager Resource Groups Automation Run Command
  • 7. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager Inventory Patch Manager Maintenance Window Resource Groups Automation Run Command
  • 8. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager Parameter Store State Manager Session Manager Distributor Resource Groups Automation Run Command Inventory Patch Manager Maintenance Window
  • 9. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Qantas Airways • 100 year history • Domestic and international flights • Millions of customers • Safety is our highest priority • AWS customer since 2014 • Large, diverse technical stack • 100’s of applications and services • Large cloud and physical IT presence • Constellation app (flight planning) © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 10. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T A snapshot of Qantas at cloud scale Significant spend and growing
  • 11. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T A snapshot of Qantas at cloud scale Significant spend and growing
  • 12. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T A snapshot of Qantas at cloud scale Significant spend and growing
  • 13. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Infrastructure as code AWS CloudFormation AWS Lambda AWS Step Functions Auto Scaling GroupAmazon SQS Amazon EC2 AWS Identity and Access Management (IAM)
  • 14. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Infrastructure as code Documents Parameter Store Run command AWS CloudFormation AWS Lambda AWS Step Functions Auto Scaling GroupAmazon SQS Amazon EC2 AWS Identity and Access Management (IAM)
  • 15. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Scenario and challenges Image credit: Steve Buissinne from Pixabay © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 16. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Scenario and challenges © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Image credit: Steve Buissinne from Pixabay
  • 17. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Solutions 
  • 18. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 1 Parameter Store
  • 19. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 1: runtime parameter queries AWS Cloud VPC
  • 20. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 1: runtime parameter queries Parameter Store AWS Systems Manager AWS Cloud VPC
  • 21. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 1: runtime parameter queries Permissions Lambda function (deletion of stale values) Parameter Store AWS Systems Manager AWS Cloud VPC
  • 22. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 2 Run Command
  • 23. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 2: break glass access AWS Cloud VPC
  • 24. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 2: break glass access AWS Cloud VPC AWS Systems Manager
  • 25. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 2: break glass access AWS Cloud VPC AWS Systems Manager
  • 26. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 3 Parameter Store
  • 27. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 3: approved SOE central model AWS CloudFormation AWS Cloud
  • 28. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 3: approved SOE central model Parameter Store Approved AMIs AWS Systems Manager AWS CloudFormation AWS Cloud
  • 29. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 3: approved SOE central model Parameter Store Approved AMIs AWS Systems Manager CloudFormation AWS Cloud AWS Lambda function Permissions Custom resource
  • 30. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – use case 4 Run Command Parameter Store
  • 31. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 4: authenticated instance scans AWS Lambda Pre-scan AWS Step Functions Document 3rd Party security scannerRun Command AWS Cloud Amazon EC2 Instance VPC Amazon Simple Queue Service
  • 32. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 4: authenticated instance scans Amazon Simple Queue Service AWS Lambda Scan AWS Step Function Amazon EC2 Instance Document 3rd Party security scannerRun Command AWS Cloud VPC Amazon Simple Queue Service AWS Lambda Pre-scan AWS Step Functions
  • 33. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Use case 4: authenticated instance scans Amazon Simple Queue Service AWS Lambda Scan AWS Step Function Amazon EC2 Instance Document 3rd Party security scannerRun Command AWS Cloud VPC Amazon Simple Queue Service AWS Lambda Pre-scan AWS Step Functions Lambda Clean-Up Step Function
  • 34. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Lessons learnt AWS Key Management Service key per application Use AWS Systems Manager Documents Leverage VPC Endpoints AWS Lambda for secrets workflow orchestration Secrets aren’t always forever AWS Identity and Access Management naming conventions Keep AWS Systems Manager (SSM) agents current AWS Systems Manager log expertise and management Parameter Store vs. AWS Secrets Manager – effort vs. flexibility
  • 35. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Results with AWS Systems Manager  Injection of application specific secure strings • No sensitive values in code • No user details in SOE • Developers store and manage their secrets  Central source of truth for real time operational values  Central store of Amazon EC2 information • Store and push out updates centrally Image credit: Nenad Maric from Pixabay
  • 36. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager – future uses Patch Manager Maintenance Window Session Manager
  • 37. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Systems Manager summary AWS Systems Manager • Visibility and control at scale • Balance governance with agility: empower development teams Scan your badge! Reference: Walkthroughs • Parameter Store and Amazon Cloud Formation • Looking up AMIs Reference: AWS Solutions • Server Fleet Management at scale
  • 38. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Related breakouts Keep It Secret, Keep It Safe: Credentials and Secrets Management on AWS (Level 300) Maria Sokolova Security at Scale: Security Hub and the Well Architected Framework (Level 300) Tyson Garrett The Art of Successful Failure (Level 200) Becky Weiss
  • 39. Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Emily Arnautovic emilyarn@amazon.com