ACAI VECTO Overview

Situation

In today's rapidly evolving cloud landscape, Infrastructure as Code (IaC) has emerged as a transformative approach to cloud infrastructure management. ACAI VECTO leverages IaC, specifically through Terraform, to streamline and secure the IaC CI/CD pipeline for managing AWS Landing Zone Core Accounts. This approach delivers a robust and scalable solution for cloud infrastructure management, ensuring consistency, security, and operational efficiency.

VECTO-USECASES

Use Case 1: A Core Pipeline deploys AWS resources to a single Core Account, applying the principle of least privilege by granting only the necessary permissions required for deployment to the CI/CD principals.

Use Case 2: Multiple Core Pipelines deploy AWS resources to a single Core Account, with carefully managed access controls to prevent privilege escalation while maintaining operational efficiency.

Use Case 3: A single Core Pipeline manages the deployment of AWS resources across multiple Core Accounts, enforcing strict access controls to ensure each account receives only the permissions required for its designated functions.

Solution

ACAI VECTO is a specification-driven solution that automates and streamlines IaC pipeline management, ensuring consistent, secure, and efficient deployment across all AWS Core Accounts.

By automating the deployment and maintenance of IaC pipelines, ACAI VECTO enables organizations to:

Reduce operational overhead
Enhance security posture
Scale cloud infrastructure management with confidence

The current VECTO version supports Microsoft Azure DevOps as the CI/CD platform. Future versions will extend support to additional platforms, including GitHub Actions.

VECTO-OVERVIEW

For additional context, refer to the VECTO Whitepaper.