What Is An AWS Landing Zone?
Search AWS, Wednesday, August 21st, 2024
An AWS landing zone is a scalable, secure Amazon Web Services environment that enables AWS users and organizations to launch and deploy workloads and applications in the AWS cloud.
The goal of a landing zone is to provide AWS users with a starting point for application or workload deployment. It also provides a useful baseline to set up AWS accounts, identity and access management (IAM), security policies and other aspects of a multi-account architecture -- all according to AWS best practices.
The basic elements of a landing zone focus on multi-account monitoring, centralized logging, governance, network design, IAM, automation using infrastructure as code (IaC), security baseline creation and expansion of AWS environments through an account vending machine (AVM) add-on.