VMware, a renowned company in virtualization software development, focuses on various areas such as application modernization, cloud, networking, security, and digital workspaces. With a large number of employees and AWS accounts, VMware uses Cloudgate to manage workloads in public clouds like AWS, Azure, and GCP. To streamline account creation, closure, and modification at scale, VMware leverages AWS APIs and organizations features. To maintain efficient AWS account lifecycle management, VMware has developed automated processes using CloseAccount API for account closure. The article outlines VMware‘s best practices for AWS account creation and closure, emphasizing the importance of maintaining an audit trail and governance during these processes.
By migrating all functionality to AWS Organizations, VMware strengthens its controls around compliance, security, and cost management across its AWS account fleets. Their centralized access and governance mechanisms reduce the attack surface for cloud resources, enabling a seamless transition of accounts between organizations during mergers or acquisitions. Through the successful implementation of multi-account governance, VMware has achieved efficient account management at scale. This approach and the outlined best practices can be beneficial for any organization managing AWS accounts in a large-scale environment.
The authors of this article, including Thiru Bhat, Satya Pattanaik, Rami Kandah, and Scott Webber, bring a wealth of experience and expertise in technical leadership, solutions architecture, technical account management, and customer solutions management. Their insights and practices shared in this post provide valuable guidance for organizations looking to optimize their AWS account management processes, enhance security, and streamline governance in the cloud.
Article Source
https://aws.amazon.com/blogs/mt/vmwares-cloud-journey-aws-account-management-at-scale/