AWS trusted advisor is an online resource to help us to reduce cost,increase performance,and improve security by optimizing AWS environment
It gives suggestion for
- Cost Optimization
- Fault Tolerance
- Service Limit
We can find the Trusted Advisor under Management tools
Here is the trusted manager dashboard,it automatically analyzed the AWS environment and given suggestions to improve the listed categories.
The color coding reflects the following information:
Red: Action recommended
Yellow: Investigation recomamended
Green: No problem detected
Customers with a Business or Enterprise AWS Support plan can view all AWS Trusted Advisor checks-over 50 checks. We need to upgrade the support plan from Basic to any other to get technical support from Amazon support engineer.
Security and Compliance is a shared responsibility between AWS and the customer.
AWS responsibility“Security of the Cloud”-AWS is esponsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud.This infrastructure is composed of the hardware,software,networking,and facilities that run AWS Cloud services.
Customer responsibility“Security in the Cloud”–Customer responsibility will be determined by the AWS Cloud services that a customer selects..This determines the amount of configuration work the customer must perform as part of their security responsibilities.For example,services such as Amazon Elastic Compute Cloud (Amazon EC2), Amazon Virtual Private Cloud (Amazon VPC),and Amazon S3 are categorized as Infrastructure as a Service(IaaS)and,as such,require the customer to perform all of the necessary security configuration and management tasks.
AWS Well-Architected framework
The AWS Well-Architected framework includes strategies to help you compare your workload against our best practices,and obtain guidance to produces table and efficient systems so you can focus on functional requirements.
AWS has 5 security pillars for Well Architected framework
The operational excellence pillar focuses on running and monitoring systems to deliver business value,and continually improving processes and procedures.Key topics include managing and automating changes, responding to events, and defining standards to successfully manage daily operations.
The security pillar focuses on protecting information&systems.Key topics include confidentiality and integrity of data,identifying and managing who can do what with privilege management, protecting systems,and establishing controls to detect security events
The reliability pillar focuses on the ability to prevent,and quickly recover from failures to meet business and customer demand.Key topics include foundational elements around setup,cross project requirements,recovery planning,and how we handle change.
The performance efficiency pillar focuses on using IT and computing resources efficiently.Key topics include selecting the right resource types and sizes based on workload requirements, monitoring performance,and making informed decisions to maintain efficiency as business needs evolve.
Cost Optimization focuses on avoiding un-needed costs.Key topics include understanding and controlling where money is being spent, selecting the most appropriate and right number of resource types, analyzing spend over time, and scaling to meet business needs without overspending.
More Information :https://www.fgrade.com/aws/