Last updated on June 30, 2023
Operational Excellence
Security
Reliability
Performance Efficiency
Cost Optimization
Sustainability
Bookmarks
What is the AWS Well-Architected Framework?
The AWS Well-Architected Framework is basically a body of knowledge that describes the various design principles, key concepts, design and architectural best practices that can help companies design and run highly efficient workloads in the AWS platform. This framework ensures that the company’s cloud architecture is in accordance with the AWS best practices. It also comes with related AWS features, services and tools that you can utilize to measure the overall efficiency of your design. The AWS Well-Architected Framework will empower you to improve your existing IT infrastructure in terms of your overall operations, security, reliability, efficiency, cost optimization, and sustainability.
Having well-architected systems greatly increases the plausibility of business success, which is why AWS created the AWS Well-Architected Framework. This framework is composed of six pillars that help you understand the pros and cons of the decisions you make while building cloud architectures and systems on the AWS platform. You will learn the architectural best practices for designing and operating reliable, efficient, cost-effective and secure systems in the cloud by using the framework. This framework also provides a way to consistently measure your architectures against best practices and identify areas for improvement.
How do you use the AWS Well-Architected Framework?
In its raw form, the AWS Well-Architected Framework is simply a body of knowledge that is compiled in a single PDF document or included in the online AWS documentation. It contains specific best practices, design patterns, and other concepts that you can use to review your existing cloud architecture. The AWS Well-Architected Framework contains key architectural questions that can help you verify and measure the quality of your systems.
Say, for example, you are developing an online solution that handles sensitive financial information. Your system has passed all the integration tests and is finally ready for production deployment any time soon. However, you still want to ensure that your cloud infrastructure in AWS is indeed secure as part of your corporate security compliance.
You can check the security pillar of the AWS Well-Architected Framework that focuses on protecting your data, files, and overall systems. This includes key topics on data integrity, managing user permissions, and establishing controls to detect security incidents.
In essence, you can improve your cloud designs by simply answering the evaluation questions and following the best practices provided by this framework. These questions will shed light on your existing or new architecture in the AWS Cloud. It has questions like:
- “How do you protect your data at rest?”
- “How do you protect your data in transit?”
- “How do you manage identities for people and machines?”
- …and so on and so forth.
Your answer to these questions can show if your cloud architecture is secure or not. If you responded “I don’t know” in the “How do you protect your data at rest?” question, then that means your architecture is not secure and has a high number of security vulnerabilities. This signifies that you don’t employ encryption and tokenization schemes in your system.
The same goes for the “How do you protect your data in transit?” query. If you answer that you do not protect your data in transit, then that indicates your architecture has no firewall rules, network authentication, secure key management, and other mechanisms to keep your sensitive data safe as it traverses through different systems and networks. With this realization, you can now resolve the deficiencies in your system by following the prescriptive guidance provided by the AWS Well-Architected Framework.
What are the AWS Well-Architected Framework Pillars?
1. Operational Excellence
- The ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures.
- There are four best practice areas and tools for operational excellence in the cloud:
- Organization – AWS Cloud Compliance, AWS Trusted Advisor, AWS Organizations
- Prepare – AWS Config
- Operate – Amazon CloudWatch
- Evolve – Amazon Elasticsearch Service
- Key AWS service:
- AWS CloudFormation for creating templates. (See AWS Management Tools Cheat Sheet)
2. Security
- The ability to protect information, systems, and assets while delivering business value through risk assessments and mitigation strategies.
- There are six best practice areas and tools for security in the cloud:
- Security – AWS Shared Responsibility Model, AWS Config, AWS Trusted Advisor
- Identity and Access Management – IAM, Multi-Factor Authentication, AWS Organizations
- Detective Controls – AWS CloudTrail, AWS Config, Amazon GuardDuty
- Infrastructure Protection – Amazon VPC, Amazon CloudFront with AWS Shield, AWS WAF
- Data Protection – ELB, Amazon Elastic Block Store (Amazon EBS), Amazon S3, and Amazon Relational Database Service (Amazon RDS) encryption, Amazon Macie, AWS Key Management Service (AWS KMS)
- Incident Response – IAM, Amazon CloudWatch Events
- Key AWS service:
- AWS Identity and Access Management (IAM)
3. Reliability
- The ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues.
- There are four best practice areas and tools for reliability in the cloud:
- Foundations – IAM, Amazon VPC, AWS Trusted Advisor, AWS Shield
- Change Management – AWS CloudTrail, AWS Config, Auto Scaling, Amazon CloudWatch
- Failure Management – AWS CloudFormation, Amazon S3, AWS KMS, Amazon Glacier
- Workload Architecture – AWS SDK, AWS Lambda
- Key AWS service:
- Amazon CloudWatch
4. Performance Efficiency
- The ability to use computing resources efficiently to meet system requirements, and to maintain that efficiency as demand changes and technologies evolve.
- There are four best practice areas for performance efficiency in the cloud:
- Selection – Auto Scaling for Compute, Amazon EBS and S3 for Storage, Amazon RDS and DynamoDB for Database, Route53, VPC, and AWS Direct Connect for Network
- Review – AWS Blog and What’s New section of the website
- Monitoring – Amazon CloudWatch
- Tradeoffs – Amazon Elasticache, Amazon CloudFront, AWS Snowball, Amazon RDS read replicas.
- Key AWS service:
- Amazon CloudWatch
5. Cost Optimization
- The ability to avoid or eliminate unneeded cost or suboptimal resources.
- There are five best practice areas and tools for cost optimization in the cloud:
- Cloud Financial Management – Amazon QuickSight, AWS Cost and Usage Report (CUR)
- Cost-Effective Resources – Cost Explorer, Amazon CloudWatch and Trusted Advisor, Amazon Aurora for RDS, AWS Direct Connect with Amazon CloudFront
- Matching supply and demand – Auto Scaling
- Expenditure Awareness – AWS Cost Explorer, AWS Budgets
- Optimizing Over Time – AWS News Blog and the What’s New section on the AWS website, AWS Trusted Advisor
- Key AWS service:
- Cost Explorer
6. Sustainability
- The ability to increase efficiency across all components of a workload by maximizing the benefits from the provisioned resources.
- There are six best practice areas for sustainability in the cloud:
- Region Selection – AWS Global Infrastructure
- User Behavior Patterns – Auto Scaling, Elastic Load Balancing
- Software and Architecture Patterns – AWS Design Principles
- Data Patterns – Amazon EBS, Amazon EFS, Amazon FSx, Amazon S3
- Hardware Patterns – Amazon EC2, AWS Elastic Beanstalk
- Development and Deployment Process – AWS CloudFormation
- Key AWS service:
- Amazon EC2 Auto Scaling
Related AWS Certified Cloud Practitioner CLF-C01 Resources:
Are you preparing for your AWS Certified Cloud Practitioner CLF-C01 Exam?
Get Actual AWS Hands-On Labs, Full 65-Question Timed Practice Test, Flashcards plus many more with our highly-visual AWS Certified Cloud Practitioner CLF-C01 Video course — all for a price of lunch!
Reference:
https://d1.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf
Anniversary Sale – $3 OFF ALL Reviewers!
Be Inspired and Mentored with Cloud Career Journeys!
Enroll Now – Our Azure Certification Exam Reviewers
Enroll Now – Our Google Cloud Certification Exam Reviewers
Tutorials Dojo Exam Study Guide eBooks
FREE AWS Exam Readiness Digital Courses
Subscribe to our YouTube Channel
FREE Intro to Cloud Computing for Beginners
FREE AWS, Azure, GCP Practice Test Samplers
Recent Posts
- Entra ID
- Azure Blob Storage
- Setting Up Development Environments with AWS Cloud9
Written by: Jon Bonso
Jon Bonso is the co-founder of Tutorials Dojo, an EdTech startup and an AWS Digital Training Partner that provides high-quality educational materials in the cloud computing space. He graduated from Mapúa Institute of Technology in 2007 with a bachelor's degree in Information Technology. Jon holds 10 AWS Certifications and is also an active AWS Community Builder since 2020.
AWS, Azure, and GCP Certifications are consistently amongthe top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over$150,000 per year with an AWS, Azure, or GCP certification!
Follow us on LinkedIn, YouTube, Facebook, or join our Slack study group. More importantly, answer as manypractice exams as you can to help increase your chances of passing your certification exams on your first try!
View Our AWS, Azure, and GCP Exam Reviewers Check out our FREE courses
Our Community
~98%
passing rate
Around 95-98% of our students pass the AWS Certification exams after training with our courses.
200k+
students
Over 200k enrollees choose Tutorials Dojo in preparing for their AWS Certification exams.
~4.8
ratings
Our courses are highly rated by our enrollees from all over the world.
What our students say about us?
I’m deeply impressed by the quality of the practice tests from Tutorial Dojo. They are extremely well-written, clean and on-par with the real exam questions. Their practice tests and cheat sheets were a huge help for me to achieve 958 / 1000 — 95.8 % on my first try for the AWS Certified Solution Architect Associate exam. Perfect 10/10 material. The best $14 I’ve ever spent!
S. M. Shoaib
Khulna, Bangladesh
Given the enormous number of students and therefore the business success of Jon's courses, I was pleasantly surprised to see that Jon personally responds to many, including often the more technical questions from his students within the forums, showing that when Jon states that teaching is his true passion, he walks, not just talks the talk. I much respect and thank Jon Bonso.
The explanation to the questions are awesome. Lots of gap exposed in my learning. I used the practice tests along with the TD cheat sheets as my main study materials. This is a must training resource for the exam.
Using the practice exam helped me to pass. I think I wouldn't have passed if not for Jon's practice sets.
Jessica Chen
Guangzhou, China
I can say that Tutorials Dojo is a leading and prime resource when it comes to the AWS Certification Practice Tests. I also tried other courses but only Tutorials Dojo was able to give me enough knowledge of Amazon Web Services. My favorite part of this course is explaining the correct and wrong answers as it provides a deep understanding in AWS Cloud Platform. The course I purchased at Tutorials Dojo has been a weapon for me to pass the AWS Certified Solutions Architect - Associate exam and to compete in Cloud World. A Big thank you to Team Tutorials Dojo and Jon Bonso for providing the best practice test around the globe!!!
I highly recommend Jon and Tutorials Dojo!!!
