Using CDK construct libraries to meet enterprise compliance

Transcript

1. None

2. © 2019, Amazon Web Services, Inc. or its affiliates. All

   rights reserved. Using the AWS CDK construct libraries to meet enterprise compliance Thorsten Höger D V C 1 3 Cloud Evangelist, CEO Taimos GmbH

3. Agenda CDK recap CDK examples Problem scope Enterprise library

4. Related breakouts DEM131 - Publishing CDK L3 Constructs DOP402 -

   Deep dive into AWS Cloud Development Kit OPN205 - Contributing to the AWS Construct Library

5. Let’s talk Join me at Taco Tuesday with AWS Heroes

   at Hecho en Vegas at MGM on Tuesday, December 3rd, starting at 6pm. Or follow me on Twitter @hoegertn

6. © 2019, Amazon Web Services, Inc. or its affiliates. All

   rights reserved.

7. © 2019, Amazon Web Services, Inc. or its affiliates. All

   rights reserved. Infrastructure as Code Options High level Low level • AWS CDK, Pulumi (third party) • Full power of supported languages, OO, abstractions, imperative logic • In the case of CDK, still generates CloudFormation code Componentized • Troposphere (Python), SparkleFormation (Ruby), GoFormation (Go) • Leverages higher-level language constructs, some abstraction also possible • Generates CloudFormation code (in the specific cases above) DSLs • CloudFormation (with and without macros), Terraform modules • Declare desired state, engine finds path to provision/update resources • Some abstraction and logic flow possible Declarative • Automate with the AWS SDKs & CLIs • Step-by-step, imperative instructions • Left to developer: error handling, manage state, rollbacks, dependency graphs, stabilization, etc. Scripted

8. © 2019, Amazon Web Services, Inc. or its affiliates. All

   rights reserved. AWS Cloud Development Kit (CDK) A multi-language software development framework for modeling cloud infrastructure as reusable components AWS CloudFormation

9. © 2019, Amazon Web Services, Inc. or its affiliates. All

   rights reserved. AWS Cloud Development Kit (CDK) AWS Construct Library Framework CLI CDK Application Stack(s) Construct Construct Core Framework CDK CLI Serverless Containers CI/CD Application Integration / Foundational Autoscaling

10. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. AWS CDK Core Framework CDK Application Stack(s) Construct Construct

11. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. CloudFormation Template “compiler” CDK CLI “processor” “assembly language” “source” synthesize deploy executes AWS Cloud Development Kit (CDK)

12. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.
13. None
14. None
15. None

16. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.

17. Enterprise requirements • Account basics deployed by infrastructure team •

    Tags required for cost allocation • Encryption policies for legal reasons • Security policies for network access
18. None
19. None
20. None

21. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.
22. None
23. None
24. None
25. None
26. None
27. None
28. None
29. None

30. Thank you! © 2019, Amazon Web Services, Inc. or its

    affiliates. All rights reserved. Thorsten Höger @hoegertn (Twitter/Github/LinkedIn)

31. © 2019, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.