Summary
In this chapter, you learned about the various AWS services and features that can help a cloud engineer manage and govern a rapidly scaling cloud platform. You gained an understanding of AWS Organizations and AWS Control Tower, which provides a way to create and manage multiple AWS accounts, set up organizational policies, and enforce compliance through preventative and detective guardrails.
The chapter also covered infrastructure provisioning and orchestration using AWS CloudFormation and AWS Service Catalog, which enables the definition and deployment of resources through IaC and the creation of a centralized catalog of approved resources. To centralize operations tasks, you learned about AWS Systems Manager and AWS Config, which offer capabilities such as patch management, remote command execution, resource inventory, and compliance monitoring. The importance of logging and monitoring was emphasized, with AWS CloudTrail and Amazon CloudWatch being the key services discussed...
