AWS Frameworks and Surrounding Ecosystem

Best Practice Principles of AWS Cloud

General Guiding Principles

• Don’t guess capacity needs → use cloud elasticity and autoscaling
• Test at production scale → cloud allows fast deployment of production-like systems
• Automate to experiment easily → e.g., via Infrastructure as Code (IaC)
• Support evolutionary architectures → design systems that can evolve with changing requirements
• Use data to drive architecture decisions
• Learn from game days → simulate real-world spikes (e.g., Christmas sales)

Best Practice Design Principles

• Scalability: vertical and horizontal
• Repeatable infrastructure: resources should be disposable and easy to recreate
• Automation: serverless, IaaS, autoscaling
• Loose coupling: break monoliths into independent components for easier scaling and maintenance
• Use managed services, not just servers: leverage AWS services to reduce admin overhead

The 6 Pillars of the AWS Well-Architected Framework

The pillars are synergistic, not trade-offs.

• Improving one often improves others
• Trade-offs occur in implementation vs cost/effort (e.g., how much reliability or security can you afford now?)
• Each pillar has its own AWS whitepaper

1. Operational Excellence

• Ability to run and monitor systems and continually improve processes
• Principles:
  • Perform operations as code (IaC, e.g., CloudFormation)
  • Make frequent, small, reversible changes
  • Continuously refine operational procedures
  • Anticipate failures and learn from them
  • Use managed services to reduce operational burden
  • Implement observability (metrics, logs, cost, performance)

2. Security

AWS Whitepaper: https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/welcome.html

• Protect information, systems, and assets while enabling business value
• Principles:
  • Strong identity foundation → IAM, least privilege, centralize privilege management
  • Maintain traceability → log and monitor actions automatically
  • Security at all layers → network, VPC, subnets, compute, OS, app, code
  • Automate security
  • Protect data in transit and at rest → encryption, tokenization, access control
  • Reduce manual data access
  • Prepare for security events → simulate incidents, automate detection & response
  • Follow the Shared Responsibility Model

3. Reliability

AWS Whitepaper: https://docs.aws.amazon.com/wellarchitected/latest/reliability-pillar/welcome.html

• Ensure recovery from failures, mitigation of disruptions, and scaling to meet demand
• Principles:
  • Auto-recover from failure
  • Test recovery procedures
  • Scale horizontally → distribute load, avoid single points of failure
  • Stop guessing capacity → automate resource adjustments
  • Automate changes → use IaC for updates

4. Performance Efficiency

• Efficiently use computing resources and adapt to demand and evolving tech
• Principles:
  • Use managed services for advanced tech (NoSQL DBs, ML, media services)
  • Deploy globally in minutes
  • Leverage serverless architectures
  • Experiment frequently
  • Choose technology wisely → align services to goals

5. Cost Optimization

• Deliver business value at the lowest cost, maximize ROI
• Principles:
  • Implement cloud financial management → educate teams, set budgets and policies
  • Pay only for what you use → shut down unused resources
  • Measure efficiency → e.g., CloudWatch
  • Avoid undifferentiated heavy lifting → let AWS manage infrastructure
  • Analyze spending → cost allocation tags for transparency
  • Use managed services to reduce TCO

6. Sustainability

• Minimize environmental impact of cloud workloads
• Principles:
  • Measure impact → KPIs, modeling, evaluation
  • Set sustainability goals → reduce compute/storage per transaction
  • Maximize utilization → right-size workloads, reduce idle resources
  • Adopt efficient HW/SW → stay flexible for new tech
  • Use managed services → share infrastructure, automate best practices
  • Reduce downstream impact → less energy for customers, fewer device upgrades

AWS Well-Architected Tool

• Free tool to assess your architecture against the 6 pillars
• Provides guidance, reports, and best practices
• Link: https://console.aws.amazon.com/wellarchitected

AWS Cloud Adoption Framework (CAF)

What is CAF?

• AWS Cloud Adoption Framework (CAF) is a detailed guide from AWS that helps organizations plan and accelerate their cloud journey.
  • Developed by AWS experts based on real-world implementations across industries.
  • Provides guidance for creating and executing a comprehensive cloud adoption strategy, including best practices and common pitfalls to avoid.
  • Available in multiple formats: eBook, Kindle, audiobook, PDF.
• On the CLF-C02 exam, expect around 5–6 questions related to CAF, roughly 10% of the test.
  • CAF requires memorization of key concepts, which can be challenging if your focus is mostly technical.
  • You can choose to learn CAF at a high level to pass comfortably, but achieving top scores generally requires detailed understanding.
• CAF organizes capabilities into six perspectives:
  • Business
  • People
  • Governance
  • Platform
  • Security
  • Operations

CAF Capabilities

Business-Focused Capabilities

1. Business Perspective
   • Ensures cloud initiatives support business transformation and drive measurable outcomes.
   • Capabilities:
     • Strategy Management
     • Portfolio Management
     • Innovation Management
     • Product Management
     • Strategic Partnership
     • Data Monetization
     • Business Insight
     • Data Science
2. People Perspective
   • Acts as the bridge between business objectives and technology.
   • Supports cultural and organizational change to enable continuous growth and adaptability.
   • Focus areas: culture, leadership, workforce, and organizational design.
   • Capabilities:
     • Culture Evolution
     • Transformational Leadership
     • Cloud Fluency
     • Workforce Transformation
     • Change Acceleration
     • Organization Design
     • Organizational Alignment
3. Governance Perspective
   • Helps manage cloud programs effectively while controlling risk and maximizing benefits.
   • Capabilities:
     • Program and Project Management
     • Benefits Management
     • Risk Management
     • Cloud Financial Management
     • Application Portfolio Management
     • Data Governance
     • Data Curation

Technology-Focused Capabilities

1. Platform Perspective
   • Supports building scalable, secure, and flexible cloud platforms.
   • Includes modernization of legacy systems and deployment of cloud-native solutions.
   • Capabilities:
     • Platform Architecture
     • Data Architecture
     • Platform Engineering
     • Provisioning and Orchestration
     • Modern Application Development
     • CI/CD (Continuous Integration and Continuous Delivery)
2. Security Perspective
   • Ensures data and workloads are protected with confidentiality, integrity, and availability.
   • Capabilities:
     • Security Governance
     • Security Assurance
     • Identity and Access Management
     • Threat Detection
     • Vulnerability Management
     • Infrastructure Protection
     • Data Protection
     • Application Security
     • Incident Response
3. Operations Perspective
   • Ensures cloud services meet business requirements reliably.
   • Capabilities:
     • Observability
     • Event Management (AIOps)
     • Incident and Problem Management
     • Change and Release Management
     • Performance and Capacity Management
     • Configuration Management
     • Patch Management
     • Availability and Continuity Management
     • Application Management

CAF Capability Diagram

• Memorization is important for exam success, though some capabilities could arguably fit in multiple perspectives.
• The People Perspective is frequently emphasized in exams, so prioritizing it may help with scoring.

CAF Cloud Transformation Value Chain

• CAF provides a structured approach for leveraging cloud technologies to drive business transformation.

Transformation Domains

1. Technology: Migrate and modernize infrastructure, applications, and data platforms.
2. Process: Automate, digitize, and optimize operations; generate actionable insights from data; leverage ML to enhance customer experience.
3. Organization: Redesign teams around products and value streams; adopt agile practices for faster iteration and evolution.
4. Product: Develop new business models, value propositions, and revenue streams.

Transformation Phases

1. Envision: Identify cloud opportunities and create a foundation for transformation.
2. Align: Detect capability gaps across CAF perspectives and develop an action plan.
3. Launch: Deliver pilot initiatives to show incremental value.
4. Scale: Expand successful pilots to full-scale implementation while achieving business outcomes.