Using AWS services for automation
You can use a number of AWS services to automate your IT operations. The following table lists the 15 OI domains and provides information to help you select the right service for each operational need.
| Area | Cycle 1 focus and tools |
|---|---|
| Platform architecture and governance | Governance, guardrails, enterprise architecture and platform design for AWS, tagging, AWS Systems Manager. Usually covered by deploying the
AWS Landing Zone |
| Event and incident management | Logging and monitoring, service restoration,
Amazon CloudWatch |
| Provisioning and configuration management | Template consumption, infrastructure as code,
Service Catalog |
| Availability and continuity management | Reliability, serviceability, resiliency, Availability Zone failover, volume backup, SLAs for cloud. |
| IT change management | Compliance and controls, risk management,
Service Catalog |
| Resource inventory management | Transparency, resource lifecycle,
AWS Config |
| Identity and access management | Least privilege,
AWS Identity and Access Management (IAM) |
| Security management | Security controls, security incident response, specified by the security workstream. For example, see the automated patch management guide on the AWS Prescriptive Guidance website. |
| Financial management | Tagging, billing report, cost optimization (right-sizing, governance),
AWS Trusted Advisor |
| Capacity planning and forecasting | Fit for purpose designs, resource trends,
AWS Config |
| Organizational change management | Training, communications, transformational buy-in. |
| Vendor management | Outsourced provider controls. |
| Reporting and analytics | Usage trends, service health, EKK (Amazon OpenSearch Service |
| Continuous improvement | Process iterations,
AWS Trusted Advisor |
| Application lifecycle management | Software development lifecycle, people/process/tools integrations, DevOps workstream. |
