Using Lambda and “aws:PrincipalOrgID” to centrally manage AWS Cloudwatch alarms at scale.

When AWS announced the introduction of the aws:PricipalOrgID attribute in resource-based policies, it became a lot easier to secure cross-account access to resources within an AWS Organization. It also helped in making these resource policies low maintenance! A practical application is shown below where multiple users and roles from separate accounts within the same AWS … Read more

Managed Kubernetes in the Cloud

A general trend in IT infrastructure is containerization. At FourCo IT Services, we also notice more and more of our customers wanting to use containers for their platform, more specifically running containers on Kubernetes. Nowadays, every major Cloud provider has its own managed Kubernetes solution: AWS: Elastic Kubernetes Services (EKS)  Google Cloud: Google Kubernetes Engine … Read more

AWS Lambda – Build and Deployment Strategies

Serverless – A short primer Serverless is essentially being able to run your application/code ‘somewhere’ and more importantly not be concerned about ‘where’ it runs. The ‘where’ here is not just in reference to location but also the hardware and operating system. Additionally, serverless is meant to scale, infinitely, at least in theory. Serverless has … Read more

Deploying Helm charts using AWS-CDK

In this blog, we will be looking at deploying an application on Kubernetes using infrastructure as code. Describing your infrastructure as code is a good way to build and maintain that infrastructure consistently and securely. There are numerous frameworks available to do this for cloud infrastructure. Some are for multi-cloud usages, like Terraform, others are … Read more