AWS CDK for Infrastructure as a Code (IaC) definition in conjunction with configuration management for task automation are extensively used in order to speed-up the delivery process and guarantee deployments based on architectural blueprints. Moreover, Cloud native architectures are designed relying on serverless and fully managed services, such as AWS Lambda, API Gateway, SNS, SQS, and so on. The efficient Amazon Elastic Kubernetes Service (EKS) is widely adopted in order to deploy and orchestrate elastic and high-available microservices architectures.
Furthermore, all the main network AWS services are exploited to achieve a fault tolerant and segregated design based on Direct Connect, Direct Connect Gateway, and Transit Gateway.
Finally, security aspects are seriously considered to enforce the Virtual Data Center. Specifically, AWS VPC Flow Logs and CloudTrail services are exploited for network traffic and API calls collections, respectively. Thus, Security Groups, Network ACL, Web Application Firewall (WAF), CloudFront, and other AWS services help with hardening the infrastructure.