Let’s Architect! Architecting for DevOps

{"value":"Under a DevOps model, the development and operations teams work together and share their skills and knowledge. Sometimes, these teams are merged into a single team where the engineers work across the entire application lifecycle, from development to deployment.\n\nThe objective of DevOps is to deliver applications and services quickly and efficiently. This faster pace allows companies to better adapt to their customers’ needs and changes in the market.\n\nIn this edition of Let’s Architect!, we’ll talk about DevOps culture and share content to provide helpful mental models and strategies for your work as an architect or engineer.\n\n\n### **[Automating cross-account CI/CD pipelines](https://www.youtube.com/watch?v=AF-pSRSGNks)**\n\n\nCompanies often use the cloud to run their microservices. This means they’re working with different AWS accounts and hosting each microservice in a dedicated account.\n\nThis method can be helpful to isolate different environments for software deployment pipelines. A well-designed pipeline is fundamental to releasing software quickly because it allows DevOps engineers to automate the software deployment process.\n\nThis video shows the mindset to adopt while designing pipelines for deploying resources across different environments. You’ll learn how to design a pipeline, how to build it using [AWS CDK](https://aws.amazon.com/cdk/), and see how everything looks in the AWS Console.\n\n\n\n[AWS X-Ray](https://aws.amazon.com/cn/xray/?trk=cndc-detail) helps developers analyze distributed applications, such as those built using a microservices architecture\n\n\n### **[Automating safe, hands-off deployments](https://aws.amazon.com/builders-library/automating-safe-hands-off-deployments/?did=ba_card&trk=ba_card)**\n\n\nAmazon adopted continuous delivery across the company as a way to automate and standardize how software is deployed and to reduce the time it takes for changes to reach production. In this system, improvements to the release process build up over time. Once deployment risks are identified, teams iterate on the release process and add extra safety in the automated pipeline.\n\nA typical continuous delivery pipeline has four major phases—source, build, test, and production (prod). This article describes the mental models and approaches that engineer use at Amazon to help you understand the design considerations for each step of the pipeline and learn some recommended practices.\n\n\n\nEach pipeline has these four major steps; however, more granularity is often added in the testing stage to take advantage of multiple pre-production environments\n\n\n### **[Covert ops on DevOps: Leveraging security to shift left](https://www.youtube.com/watch?v=ScCtjwDy-nI)**\n\n\nArchitects often deal with complexity and ambiguity while designing architectures and interacting with stakeholders. Consequently, their architectures evolve and grow in complexity.\n\nWhen your workload becomes more complex, security is an important area to consider and requires attention during the entire Software Development Life Cycle (SDLC). This [video ](https://www.youtube.com/watch?v=ScCtjwDy-nI)shows some methods to add security in a DevOps culture. You’ll learn about shifting your security left to create collaborations between developers and the security team. It will also show you how to uncover vulnerabilities in the SDLC as well as the strategies to implement and automate security in the process through a security as code mindset.\n\n\n\nAt a high level, people build applications with source code, version control, CI/CD, registries and deployments, and during each step we should design to prevent specific vulnerabilities\n\n\n### **[Instrumenting distributed systems for operational visibility](https://aws.amazon.com/builders-library/instrumenting-distributed-systems-for-operational-visibility/?did=ba_card&trk=ba_card)**\n\nEvery member of a development team works like an owner and operator of the service, whether that member is a developer, manager, or another role. Software developers and architects usually work with logs to see the status of their systems. Logs act as the mechanism to share what’s happening in the software that is running. This information is used for troubleshooting and performance improvement.\n\nThis article describes some approaches to feed data into operational dashboards to measure real-time metrics, invoke alarms, and engage with operators to diagnose problems. You’ll learn some mental models and best practices to design a logging system through a set of stories, considerations, and common examples with code samples.\n\n\n\n[AWS X-Ray](https://aws.amazon.com/cn/xray/?trk=cndc-detail) helps developers analyze distributed applications, such as those built using a microservices architecture\n\n\n### **Related information**\n\n\nIf you want to learn more about DevOps, check *[What is DevOps?](https://aws.amazon.com/devops/)*, a public resource with plenty of examples and introductory articles.\n\n\n### **See you next time!**\n\n\nThanks for reading! See you in a couple of weeks when we discuss strategies for applying the AWS Well-Architected framework to your workloads.\n\n\n### **Other posts in this series**\n\n\n- [Let’s Architect! Using open-source technologies on AWS](https://aws.amazon.com/blogs/architecture/lets-architect-using-open-source-technologies-on-aws/)\n- [Let’s Architect! Architecting for Sustainability](https://aws.amazon.com/blogs/architecture/lets-architect-1-architecture-and-sustainability/)\n- [Let’s Architect! Architecting for Machine Learning](https://aws.amazon.com/blogs/architecture/architecting-for-machine-learning/)\n- [Let’s Architect! Architecting for Security](https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-security/)\n- [Let’s Architect! Tools for Cloud Architects](https://aws.amazon.com/blogs/architecture/lets-architect-tools-for-cloud-architects/)\n- [Let’s Architect! Architecting for Blockchain](https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-blockchain/)\n- [Let’s Architect! Architecting microservices with containers](https://aws.amazon.com/blogs/architecture/lets-architect-architecting-microservices-with-containers/)\n- [ Let’s Architect! Serverless architecture on AWS](https://aws.amazon.com/blogs/architecture/lets-architect-serverless-architecture-on-aws/)\n- [Let’s Architect! Creating resilient architecture](https://aws.amazon.com/blogs/architecture/lets-architect-creating-resilient-architecture/)\n- [Let’s Architect! Architecting for governance and management](https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-governance-and-management/)\n- [Let’s Architect! Architecting for front end](https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-front-end/)\n- [Let’s Architect! Understanding the build versus buy dilemma](https://aws.amazon.com/blogs/architecture/lets-architect-understanding-the-build-versus-buy-dilemma/)\n\n\n### **Looking for more architecture content?**\n\n[AWS Architecture Center](https://aws.amazon.com/architecture/) provides reference architecture diagrams, vetted architecture solutions, [Well-Architected](https://aws.amazon.com/architecture/well-architected/) best practices, patterns, icons, and more!\n\n\n\n\n\n### **Luca Mezzalira**\n\nLuca is Principal Solutions Architect based in London. He has authored several books and is an international speaker. He lent his expertise predominantly in the solution architecture field. Luca has gained accolades for revolutionizing the scalability of front-end architectures with micro-frontends, from increasing the efficiency of workflows, to delivering quality in products.\n\n\n\n\n### **Laura Hyatt**\n\nLaura Hyatt is a Solutions Architect for AWS Public Sector and helps Education customers in the UK. Laura helps customers not only architect and develop scalable solutions but also think big on innovative solutions facing the education sector at present. Laura's specialty is IoT, and she is also the Alexa SME for Education across EMEA.\n\n\n\n### **Vittorio Denti**\n\nVittorio Denti is a Solutions Architect at AWS based in London. After completing his M.Sc. in Computer Science and Engineering at Politecnico di Milano (Milan) and the KTH Royal Institute of Technology (Stockholm), he joined AWS. Vittorio has a background in Distributed Systems and Machine Learning, and a strong interest in cloud technologies. He’s especially passionate for software engineering, building ML solutions, and putting ML into production.\n\n\n\n### **Zamira Jaupaj**\n\nZamira is an Enterprise Solutions Architect based in the Netherlands. She is highly passionate IT professional with over 10 years of multi-national experience in designing and implementing critical and complex solutions with containers, serverless, and data analytics for small and enterprise companies.","render":"<p>Under a DevOps model, the development and operations teams work together and share their skills and knowledge. Sometimes, these teams are merged into a single team where the engineers work across the entire application lifecycle, from development to deployment.</p>\n<p>The objective of DevOps is to deliver applications and services quickly and efficiently. This faster pace allows companies to better adapt to their customers’ needs and changes in the market.</p>\n<p>In this edition of Let’s Architect!, we’ll talk about DevOps culture and share content to provide helpful mental models and strategies for your work as an architect or engineer.</p>\n<h3><a id=\\"Automating_crossaccount_CICD_pipelineshttpswwwyoutubecomwatchvAFpSRSGNks_7\\"></a><strong><a href=\\"https://www.youtube.com/watch?v=AF-pSRSGNks\\" target=\\"_blank\\">Automating cross-account CI/CD pipelines</a></strong></h3>\n<p>Companies often use the cloud to run their microservices. This means they’re working with different AWS accounts and hosting each microservice in a dedicated account.</p>\n<p>This method can be helpful to isolate different environments for software deployment pipelines. A well-designed pipeline is fundamental to releasing software quickly because it allows DevOps engineers to automate the software deployment process.</p>\n<p>This video shows the mindset to adopt while designing pipelines for deploying resources across different environments. You’ll learn how to design a pipeline, how to build it using <a href=\\"https://aws.amazon.com/cdk/\\" target=\\"_blank\\">AWS CDK</a>, and see how everything looks in the AWS Console.</p>\\n<p><img src=\\"https://dev-media.amazoncloud.cn/bc9cb8e88fc7469a87064ec71cd393bb_image.png\\" alt=\\"image.png\\" /></p>\n<p>AWS X-Ray helps developers analyze distributed applications, such as those built using a microservices architecture</p>\n<h3><a id=\\"Automating_safe_handsoff_deploymentshttpsawsamazoncombuilderslibraryautomatingsafehandsoffdeploymentsdidba_cardtrkba_card_21\\"></a><strong><a href=\\"https://aws.amazon.com/builders-library/automating-safe-hands-off-deployments/?did=ba_card&amp;trk=ba_card\\" target=\\"_blank\\">Automating safe, hands-off deployments</a></strong></h3>\n<p>Amazon adopted continuous delivery across the company as a way to automate and standardize how software is deployed and to reduce the time it takes for changes to reach production. In this system, improvements to the release process build up over time. Once deployment risks are identified, teams iterate on the release process and add extra safety in the automated pipeline.</p>\n<p>A typical continuous delivery pipeline has four major phases—source, build, test, and production (prod). This article describes the mental models and approaches that engineer use at Amazon to help you understand the design considerations for each step of the pipeline and learn some recommended practices.</p>\n<p><img src=\\"https://dev-media.amazoncloud.cn/84cab71961134b01a2efab15b4270ee0_image.png\\" alt=\\"image.png\\" /></p>\n<p>Each pipeline has these four major steps; however, more granularity is often added in the testing stage to take advantage of multiple pre-production environments</p>\n<h3><a id=\\"Covert_ops_on_DevOps_Leveraging_security_to_shift_lefthttpswwwyoutubecomwatchvScCtjwDynI_33\\"></a><strong><a href=\\"https://www.youtube.com/watch?v=ScCtjwDy-nI\\" target=\\"_blank\\">Covert ops on DevOps: Leveraging security to shift left</a></strong></h3>\n<p>Architects often deal with complexity and ambiguity while designing architectures and interacting with stakeholders. Consequently, their architectures evolve and grow in complexity.</p>\n<p>When your workload becomes more complex, security is an important area to consider and requires attention during the entire Software Development Life Cycle (SDLC). This <a href=\\"https://www.youtube.com/watch?v=ScCtjwDy-nI\\" target=\\"_blank\\">video </a>shows some methods to add security in a DevOps culture. You’ll learn about shifting your security left to create collaborations between developers and the security team. It will also show you how to uncover vulnerabilities in the SDLC as well as the strategies to implement and automate security in the process through a security as code mindset.</p>\\n<p><img src=\\"https://dev-media.amazoncloud.cn/c6cacafd2e644ed6b8324c2735fb8381_image.png\\" alt=\\"image.png\\" /></p>\n<p>At a high level, people build applications with source code, version control, CI/CD, registries and deployments, and during each step we should design to prevent specific vulnerabilities</p>\n<h3><a id=\\"Instrumenting_distributed_systems_for_operational_visibilityhttpsawsamazoncombuilderslibraryinstrumentingdistributedsystemsforoperationalvisibilitydidba_cardtrkba_card_45\\"></a><strong><a href=\\"https://aws.amazon.com/builders-library/instrumenting-distributed-systems-for-operational-visibility/?did=ba_card&amp;trk=ba_card\\" target=\\"_blank\\">Instrumenting distributed systems for operational visibility</a></strong></h3>\n<p>Every member of a development team works like an owner and operator of the service, whether that member is a developer, manager, or another role. Software developers and architects usually work with logs to see the status of their systems. Logs act as the mechanism to share what’s happening in the software that is running. This information is used for troubleshooting and performance improvement.</p>\n<p>This article describes some approaches to feed data into operational dashboards to measure real-time metrics, invoke alarms, and engage with operators to diagnose problems. You’ll learn some mental models and best practices to design a logging system through a set of stories, considerations, and common examples with code samples.</p>\n<p><img src=\\"https://dev-media.amazoncloud.cn/5efe2587ceed457c9e6b5092b6a13288_image.png\\" alt=\\"image.png\\" /></p>\n<p>AWS X-Ray helps developers analyze distributed applications, such as those built using a microservices architecture</p>\n<h3><a id=\\"Related_information_56\\"></a><strong>Related information</strong></h3>\\n<p>If you want to learn more about DevOps, check <em><a href=\\"https://aws.amazon.com/devops/\\" target=\\"_blank\\">What is DevOps?</a></em>, a public resource with plenty of examples and introductory articles.</p>\n<h3><a id=\\"See_you_next_time_62\\"></a><strong>See you next time!</strong></h3>\\n<p>Thanks for reading! See you in a couple of weeks when we discuss strategies for applying the AWS Well-Architected framework to your workloads.</p>\n<h3><a id=\\"Other_posts_in_this_series_68\\"></a><strong>Other posts in this series</strong></h3>\\n<ul>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-using-open-source-technologies-on-aws/\\" target=\\"_blank\\">Let’s Architect! Using open-source technologies on AWS</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-1-architecture-and-sustainability/\\" target=\\"_blank\\">Let’s Architect! Architecting for Sustainability</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/architecting-for-machine-learning/\\" target=\\"_blank\\">Let’s Architect! Architecting for Machine Learning</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-security/\\" target=\\"_blank\\">Let’s Architect! Architecting for Security</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-tools-for-cloud-architects/\\" target=\\"_blank\\">Let’s Architect! Tools for Cloud Architects</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-blockchain/\\" target=\\"_blank\\">Let’s Architect! Architecting for Blockchain</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-architecting-microservices-with-containers/\\" target=\\"_blank\\">Let’s Architect! Architecting microservices with containers</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-serverless-architecture-on-aws/\\" target=\\"_blank\\"> Let’s Architect! Serverless architecture on AWS</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-creating-resilient-architecture/\\" target=\\"_blank\\">Let’s Architect! Creating resilient architecture</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-governance-and-management/\\" target=\\"_blank\\">Let’s Architect! Architecting for governance and management</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-architecting-for-front-end/\\" target=\\"_blank\\">Let’s Architect! Architecting for front end</a></li>\\n<li><a href=\\"https://aws.amazon.com/blogs/architecture/lets-architect-understanding-the-build-versus-buy-dilemma/\\" target=\\"_blank\\">Let’s Architect! Understanding the build versus buy dilemma</a></li>\\n</ul>\n<h3><a id=\\"Looking_for_more_architecture_content_85\\"></a><strong>Looking for more architecture content?</strong></h3>\\n<p><a href=\\"https://aws.amazon.com/architecture/\\" target=\\"_blank\\">AWS Architecture Center</a> provides reference architecture diagrams, vetted architecture solutions, <a href=\\"https://aws.amazon.com/architecture/well-architected/\\" target=\\"_blank\\">Well-Architected</a> best practices, patterns, icons, and more!</p>\\n<p><img src=\\"https://dev-media.amazoncloud.cn/4c64dff19f4646f0971c4d56fa30ef62_image.png\\" alt=\\"image.png\\" /></p>\n<h3><a id=\\"Luca_Mezzalira_93\\"></a><strong>Luca Mezzalira</strong></h3>\\n<p>Luca is Principal Solutions Architect based in London. He has authored several books and is an international speaker. He lent his expertise predominantly in the solution architecture field. Luca has gained accolades for revolutionizing the scalability of front-end architectures with micro-frontends, from increasing the efficiency of workflows, to delivering quality in products.</p>\n<p><img src=\\"https://dev-media.amazoncloud.cn/cdb5ea88ad5c44c19ebb272fdc671c0d_image.png\\" alt=\\"image.png\\" /></p>\n<h3><a id=\\"Laura_Hyatt_100\\"></a><strong>Laura Hyatt</strong></h3>\\n<p>Laura Hyatt is a Solutions Architect for AWS Public Sector and helps Education customers in the UK. Laura helps customers not only architect and develop scalable solutions but also think big on innovative solutions facing the education sector at present. Laura’s specialty is IoT, and she is also the Alexa SME for Education across EMEA.</p>\n<p><img src=\\"https://dev-media.amazoncloud.cn/3ebc33b194d4491e9d1587d7e4ece70c_image.png\\" alt=\\"image.png\\" /></p>\n<h3><a id=\\"Vittorio_Denti_106\\"></a><strong>Vittorio Denti</strong></h3>\\n<p>Vittorio Denti is a Solutions Architect at AWS based in London. After completing his M.Sc. in Computer Science and Engineering at Politecnico di Milano (Milan) and the KTH Royal Institute of Technology (Stockholm), he joined AWS. Vittorio has a background in Distributed Systems and Machine Learning, and a strong interest in cloud technologies. He’s especially passionate for software engineering, building ML solutions, and putting ML into production.</p>\n<p><img src=\\"https://dev-media.amazoncloud.cn/e78a94cfaf014c6abaf798db99ca5f72_image.png\\" alt=\\"image.png\\" /></p>\n<h3><a id=\\"Zamira_Jaupaj_112\\"></a><strong>Zamira Jaupaj</strong></h3>\\n<p>Zamira is an Enterprise Solutions Architect based in the Netherlands. She is highly passionate IT professional with over 10 years of multi-national experience in designing and implementing critical and complex solutions with containers, serverless, and data analytics for small and enterprise companies.</p>\n"}