AWS Cloud Operations Blog

Resolve your AWS incidents faster by automatically engaging AWS Managed Services

Modern enterprise environments are increasingly reliant on complex, interconnected IT systems to drive their business and operations. From unexpected application outages to infrastructure issues, the potential for disruptions that can impact business continuity and customer satisfaction is significant. Many organizations struggle with rapid incident resolution due to limited 24/7 AWS expertise. In this post you […]

Authorize different sets of interactive session commands for users using SSM documents

Limit interactive session commands by groups of users using AWS Systems Manager

Customers are looking for a way to limit the types of commands that can be run on their Amazon Elastic Compute Cloud (Amazon EC2) instances when using AWS Systems Manager Session Manager interactive sessions. Allowed commands vary by group, meaning you need to allow different sets of commands based on the group of users. For […]

HEIDI-Q Featured Image

Get Operational Insights Fast with AWS Health and Amazon Q

For organizations with multiple AWS accounts, staying on top of planned AWS service changes and events is critical to keep operations and business running smoothly. Organizations use AWS Health for ongoing visibility into resource performance and the availability of AWS services and accounts, but the volume of notifications from AWS Health can sometimes be overwhelming. […]

Enforcing enterprise-wide preventive controls with AWS Organizations

When managing multiple AWS accounts in AWS Organizations organization, it’s important to implement central access controls that govern both identities and resources. These controls are essential for ensuring security, compliance, and scalability across your environment. AWS Organizations service control policies (SCPs), resource control policies (RCPs), and declarative policies enable you to centrally configure and manage […]

Implementing recommended experiments using the AWS Resilience Hub console

Amazon Web Services (AWS) is excited to introduce an enhanced integration between AWS Resilience Hub and AWS Fault Injection Service for facilitating the process of creating and running chaos experiments. We’ll focus on how to leverage this integration through the AWS Management Console, offering a user-friendly, point-and-click approach. The console interface is ideal for those […]

Implementing recommended experiments using AWS Resilience Hub APIs

Amazon Web Services (AWS) is excited to introduce an enhanced integration between AWS Resilience Hub and AWS Fault Injection Service that streamlines the process of creating and running chaos experiments. We’ll focuses on how to leverage this integration through the AWS Command Line Interface (AWS CLI), catering to users who prefer command-line tools for automation […]

Automate Systems Manager patching reports via email and slack notifications in an AWS Organization

An effective patch management is foremost for maintaining system security, reliability, and compliance across your IT infrastructure. AWS Systems Manager (SSM) provides a comprehensive patching solution, enabling you to automate the deployment of operating system updates to your nodes deployed on AWS, on-premises, and multicloud environments. However, as your organization scales, tracking and reporting on […]

Analyzing AWS Control Tower Drift with Amazon Bedrock

Introduction In order to enforce best practices for governance and compliance across AWS accounts in a centralized way, AWS Control Tower is an easy place to start.  However, ensuring continuous compliance requires regular drift detection and remediation, which Control Tower facilitates by providing a mechanism to detect drift and publish notifications to Amazon Simple Notification […]

Delegated Administrators Guide to Effective Controls in AWS Organizations

Introduction AWS Organizations provides the capability to centrally manage and govern your AWS environment. As an organization, you can delegate administration of specific AWS services integrated with AWS Organizations to authorized individuals or teams. Implementing effective controls for these delegated administrators is essential to ensuring the security, compliance, and operational efficiency of your AWS environment. […]

AWS Organizations, moving an organization member account to another organization: Part 1

December 24, 2024: This post was republished to update terminology for AWS RAM resource shares and to update links. AWS customers use AWS Organizations as the basis of a multi-account AWS environment as defined by the Organizing Your AWS Environment Using Multiple Accounts AWS Whitepaper. Organizations is an AWS service that enables you to centrally […]