Search
Close this search box.
Get in touch

Landing Zone

A quick set up of a secure, multi-account AWS environment based on AWS best practices.

How do you manage & secure your AWS infrastructure? 

With the large number of design options, setting up a multi-account environment can take a significant amount of time, involve the configuration of multiple accounts and services, and require a deep understanding of AWS services. 

This solution can help save time by automating the set-up of an environment for running secure and scalable workloads while implementing an initial security baseline through the creation of core accounts and resources. It also provides a baseline environment to get started with a multi-account architecture, identity and access management, governance, data security, network design, and logging. 

Trusted Landing Zone Design 

AWS Landing Zone solution incorporates an initial security baseline that builds and implements a customized account security baseline for your organization. The initial security baseline includes the following settings:

  • Single CloudTrail is created in each account and configured to send logs to a centrally managed Amazon S3 bucket in the log archive account.
  • AWS config rules for monitoring MFA, root account login, security groups, EBS, RDS, S3, etc.
  • Security notification architecture
  • GaurdDuty findings

There are two cooperation packages to choose from:

Basic package includes:

  • Landing Zone design and documentation 
  • Standard accounts and Organization Units setup  
  • Installation and configuration of SoftServe’s solution 
  • Predefined detective and preventive guardrails 
  • Basic AWS security services setup 
  • Centralized logging setup 
  • Integration with default AWS SSO

Advanced package includes all benefits of Basic package and additionally:

  • Centralized logging setup
  • Centralized network topology implementation 
  • Custom Landing Zone design 
  • Custom detective and preventive guardrails 
  • Advanced AWS security services configuration
  • Advanced network setup, i.e., connection to on-premises, VPN, firewalls, etc
  • AWS SSO integration with customer’s identity provider 
  • Advanced accounts customization
  • Landing Zone workshops and trainings

How we work

Cooperation brings the best results.

Meet & discuss

We can meet in person or online on the platform you prefer.

Solution proposal

Based on the performed analysis, we adjust what is needed and prepare the most effective solution.

Client onboarding

We work closely with the developers on the assignment and involve your team members to get the best result.

Monitor & analyze

We report status at least twice a month and we work in close contact with you.

Services
Company
Quick contact
Chcete-li vyplnit tento formulář, prosím povolte v prohlížeči JavaScript.
Agree with privacy policy
2012 - 2025 © TrustSoft, s.r.o., all rights reserved. Personal data processing.