Devops Foundations Setup

The best way to build a new foundation for your platform team

Available for both scale-ups and enterprises.

Get the Fast track to...

Day 1 on AWSMulti-account setup, OUs, network architecture, SSO, Control Tower
OpenTofu / TerraformBuild a catalog of blueprints for AWS foundations, apps, and data storage
A Complete IaC LifecycleFrom blueprint to live to updated, plus everything in between
ComplianceMeet the CIS AWS Foundations Benchmark
Day 1 with TerragruntFolder structure, tagging, labeling, global variables, module defaults
KubernetesEKS, Karpenter, ArgoCD, SSO role mapping, EKS access management
GitHubRepo organization, branch protection rules, access control
Best PracticesAlign with the AWS Well-Architected Framework
Trusted By Devops Teams At
Mercedes-BenzDropboxHertzMaxarOpentextNimbleVodafoneNelnetFanaticsAdobe
Mercedes-BenzDropboxHertzMaxarOpentextNimbleVodafoneNelnetFanaticsAdobe
Mercedes-BenzDropboxHertzMaxarOpentextNimbleVodafoneNelnetFanaticsAdobe

Accelerate Day 1

Get all the foundational pieces you need to build a scalable developer platform.

Foundational Architecture

An opinionated, battle-tested, best-practices way of setting up all the foundational pieces you need to get started with AWS and OpenTofu/Terraform

AWS Foundations

Get battle-tested, standardized configurations for:

  • AWS multi-account structure: AWS Organizations, OUs, Cross-account IAM roles
  • AWS Control Tower: Recommended configuration
  • Network topology: VPCs, subnets, route tables, VPN, Transit Gateway, etc.
  • Guardrails: SCPs, AWS Config, GuardDuty, CloudTrail, etc.
  • Auth: AWS IAM Identity Center (SSO) for all accounts, IAM roles, OIDC, etc.
CIS AWS Foundations Benchmark
CIS AWS Foundations Benchmark
AWS Well-Architected
AWS Well-Architected Framework

IaC Foundations

Use future-proof Terragrunt patterns that include:

  • Proven folder structure. Organize your code in a pattern used by thousands of devs.
  • Tagging and labeling. Automatically enforce patterns for tagging and naming AWS resources.
  • Hierarchical global variables. Define global variables, and conveniently overwrite them as you descend down your folder structure.
  • Default module values. Keep your code DRY by defining a default set of OpenTofu/Terraform module input values used by all modules instances.
  • Battle-tested modules. All of your IaC will be instances of versioned OpenTofu/Terraform modules, setting you up for long-term maintainiability.
  • GitOps. Use Gruntwork Pipelines to embrace a GitOps way of working.

GitHub Foundations

Work with proven GitHub configurations that include:

  • Repo configurations. Split your code across a thoughtful repo pattern.
  • Branch protection. Get a baseline branch protection configuration.
  • GitHub Actions integration. Deploy all your Terragrunt, OpenTofu, and Terraform code directly from GitHub Actions using Gruntwork Pipelines.

*First-class Gitlab support is coming soon!

Full customizability

Our final deliverable is just code that implements best practices across AWS and Terragrunt, so you can customize anything you want. Common examples include:

  • Set up a unique set of Organization Units (OUs)
  • Add additional AWS accounts
  • Extend the network configuration to support unique requirements
  • Add third-party tools to your standard AWS account baseline
  • Configure your preferred identity provider (IDP)

Guided Setup

Adapt our standardized patterns to your unique environment and needs.

Work directly with a Gruntwork Solution Architect

You’ll understand everything we create for you because we’ll build it together. Work with a Gruntwork Solution Architect to create your:

  • AWS Control Tower configuration
  • Network strategy and configuration
  • Single sign on (SSO) configuration
  • Initial set of AWS accounts
  • Team-wide understanding of how to use the new patterns with a personalized walk-through.

Meet enterprise use cases

Work with a Gruntwork Solution Architect to get:

  • Guidance on your developer platform strategy
  • Advanced network configuration
  • Customized AWS account baselines
  • And more!

Set up the Gruntwork Platform

Working together, we’ll configure the complete Gruntwork Platform for use on Day 1, including:

Now you're ready for day 2

Once Day 1 is in place, most customers proceed to tackle one or more of these use cases.

AppWindow

Run apps

Using Gruntwork IaC Library, run your workloads using battle-tested configurations:

  • EKS: Stand up EKS clusters with security, monitoring, and scaling configurations.
  • ECS: Stand upc ECS clusters with service discovery and auto-scaling patterns.
  • Lambda: Run serverless workloads with deployment, monitoring, and security patterns.
Database

Store data

Using Gruntwork IaC Library, store or stream your data using production-grade patterns:

  • RDS: Deploy production-ready relational databases.
  • Aurora: Set up production-ready AWS Aurora clusters.
  • Kinesis: Configure real-time data streaming.
  • MSK: Deploy managed Kafka clusters.
GraduationCap

Level up your DevOps skills

Learn Terragrunt, brush up on OpenTofu, or access 100+ other courses with KodeKloud. Your subscription includes user licenses to KodeKloud PRO, giving you access to courses like:

Headset

Get support

If you run into a snag, engage the Gruntwork Community of thousands of users just like you, or use Gruntwork Support to chat directly with our team.

How it works

Step 1

Review the game plan.

We meet with your team to review our Foundational Architecture patterns for AWS, IaC, and GitHub, and make sure they work in your unique environment.

Step 2

Implement and deploy.

We start deploying the AWS, IaC, and GitHub foundations together with you, one milestone at a time. For each milestone, we supply the right guidance or template, you take the lead, and we meet live with you to answer questions, fill any knowledge gaps, or customize our standard approach. For scale-ups, this process generally takes about a week.

Step 3

Hand off.

We have a final review meeting where we make sure your team understands everything we’ve set up together.

Step 4

Plan next steps.

Once your foundations are in place, we can guide you on how best to proceed with common next steps like running apps, storing data, managing your estate, or leveling up your DevOps skills.

Get started

Set up your DevOps foundations

Work with a Gruntwork Solution Architect to set up your new DevOps platform and AWS architecture, and ensure you’re set up for ongoing success.

Crossed Arms