nClouds | AWS Case Studies Violet Grey

Why AWS and nClouds

The CTO at Violet Grey reached out to APN Premier Consulting Partner, nClouds, for help in streamlining their AWS infrastructure and enhancing their security and compliance. After a technical deep-dive discussion, Violet Grey moved forward with nClouds’ recommendations and leveraged nClouds' expertise and best practices in DevOps, containers, migration, and security.

Violet Grey leveraged several Amazon Web Services:

• Amazon CloudFront (CloudFront) - A large-scale, global, and feature-rich CDN that provides Violet Grey with secure, scalable, and intelligently integrated application delivery.
• Amazon CloudWatch (CloudWatch) - Monitors applications, responds to systemwide performance changes, optimizes resource utilization, and provides a unified view of operational health.

• Amazon ElastiCache for Redis - An in-memory data structure service to enhance the ease-of-use and power of Redis, and improve availability, reliability, scalability, security, and performance.
• Amazon Elastic Compute Cloud (Amazon EC2) - A web service that provides Violet Grey with secure, resizable compute capacity in the cloud.
• Amazon Elastic Container Registry (Amazon ECR) - A fully-managed Docker container registry integrated with Amazon ECS that makes it easy for Violet Grey to store, manage, and deploy Docker container images.
• Amazon Elastic Container Service (Amazon ECS) - A highly scalable, high-performance container orchestration service that supports Docker containers and enables Violet Grey to run and scale containerized applications on AWS easily.
• Amazon Relational Database Service (Amazon RDS) is a web service that makes it easier to set up, operate, and scale a relational database in the AWS Cloud.
• Amazon Simple Storage Service (Amazon S3) - A flexible way to store and retrieve data, providing Violet Grey with cost optimization, access control, and compliance.
• Amazon Virtual Private Cloud (Amazon VPC) - Enables Violet Grey to provision a logically isolated section on AWS where they can launch AWS resources in a virtual network that they define.
• AWS Application Load Balancer (AWS ALB) - To support content-based routing and applications that run in containers.
• AWS Auto Scaling - Monitors Violet Grey’s applications and automatically adjusts capacity to maintain steady, predictable performance at the lowest possible cost.
• AWS Availability Zone (AWS AZ) - One or more discrete data centers with redundant power, networking, and connectivity in an AWS Region, enabling Violet Grey to operate production applications and databases that are more highly available, fault-tolerant, and scalable than would be possible from a single data center.
• AWS CloudFormation (CloudFormation) - Allows Violet Grey to treat its infrastructure as code, automate operations, and bring up new environments.
• AWS Identity and Access Management (IAM) - To control Violet Grey’s users' access to AWS services.
• AWS Secrets Manager - Helps Violet Grey to protect secrets needed to access applications, services, and IT resources. The service enables Violet Grey to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.
• AWS Systems Manager Parameter Store - Gives Violet Grey access to central, secure, durable, and highly available storage for application configuration and secrets. Parameter Store also integrates with AWS Identity and Access Management (IAM), allowing fine-grained access control to individual parameters or branches of a hierarchical tree.

Violet Grey’s solution stack also included additional, essential third-party tools:

• Alert Logic Web Application Firewall (WAF) as a Service - Fully managed critical web application protection with features such as end-to-end encryption, rate limiting, data masking, and connection throttling.
• CircleCI - A continuous integration and delivery platform that makes it easy for Violet Grey to rapidly build and release quality software at scale.
• Docker - An open-source container platform to build, ship, and run distributed applications.
• Kibana - An open-source front-end application that sits on top of the ELK Stack,, providing search and data visualization capabilities for data indexed in Elasticsearch.
• OpenVPN Access Server - A full-featured SSL VPN software solution to provide fine-grained access control of the infrastructure.