CloudZone Landing Zone is a solution that helps customers quickly set up a secure, multi-account AWS environment based on AWS best practices. With a large number of design choices, setting up a multi-account environment can take a significant amount of time, involve the configuration of multiple accounts and services, and require a deep understanding of AWS services.

This solution can help save time by automating the set-up of an environment for running secure and scalable workloads while implementing an initial security baseline through the creation of core accounts and resources. It also provides a baseline environment to get started with a multi-account architecture, identity and access management, governance, data security, network design, and logging.

The goal of a Landing Zone is to create a baseline of AWS accounts, networks and security policies – all according to decided best practices.

The basic elements of Landing Zone focus around multi-account monitoring, centralized logging, governance, network design, identity and access management (IAM), automation using infrastructure as code, creating a security baseline and an option to expand AWS environments through an Account Vending Machine add-on.

CloudZone Landing Zone is made for companies that want to set up a multi-account environment but may not have the time or skills to implement a configuration of multiple accounts and services – since this may require an expert understanding of AWS services. Landing Zone will help automate the setup of a multi-account AWS environment that is secure and scalable.