Building a Landing zone with AWS Control Tower [English]

Oleksii Bebych (https://www.linkedin.com/in/oleksii-bebych/) - AWS Ambassador, Community Builder, and AWS User Group Leader, shared experience of building a Landing Zone with the AWS Control Tower - Basics about multi-account AWS environment - AWS Control Tower Guardrails (Controls) - Centralized logging and security monitoring - Centralized networking - Automation and Landing Zone customization Relevant articles: Building a Landing zone with AWS Control Tower (part 1) https://medium.com/@oleksii.bebych/building-a-landing-zone-with-aws-control-tower-part-1-7ced0e10b2ad Building a Landing zone with AWS Control Tower (part 2) https://medium.com/@oleksii.bebych/building-a-landing-zone-with-aws-control-tower-part-2-f49ea27e8c56 Building a Landing zone with AWS Control Tower (part 3) https://medium.com/@oleksii.bebych/building-a-landing-zone-with-aws-control-tower-part-3-7f6d13f5aaec Control Tower Guardrails overview (Preventive, Detective, and Proactive) https://medium.com/@oleksii.bebych/control-tower-guardrails-overview-preventive-detective-and-proactive-d99d847b811d Using AWS IAM Identity Center for SSO to access shared services (OpenVPN, OpenSearch, Grafana, ArgoCD) https://medium.com/@oleksii.bebych/using-aws-iam-identity-center-for-sso-to-access-shared-services-openvpn-opensearch-grafana-299ea80e0ffb Egress traffic inspection using Palo Alto VM-series firewall in multi-account AWS environment https://medium.com/@oleksii.bebych/egress-traffic-inspection-using-palo-alto-vm-series-firewall-in-multi-account-aws-environment-b0dba30566c6