AWS re:Invent 2021 - Day 1: Top Announcements

AWS re:Invent 2021 - Day 1: Top Announcements

165e39a4daf9546cb3db7a234d691835

Konstantinos Bessas

Let’s take a look at the top announcements from Day 1 of re:Invent 2021, always with some extra notes on why they made it to the list. A lot to talk about already!

Announcements

New Amazon Inspector

Amazon Inspector originally launched in 2015. It is a software vulnerability discovery and management service. It monitors your fleet of services for vulnerabilities and gives recommendations on mitigation actions. It looks at operating system and installed applications as well as on configuration settings.

The biggest gains from this announcement is that Amazon Inspector can now run continuously. On top of that, it automatically identifies resources instead of explicitely selecting resources for Inspector to target.

These changes make Amazon Inspector a more robust product and make it a great addition from a security perspective to every solution’s landing zone in AWS.

Please see here for a complete article by AWS on the release.

AWS Well-Architected Custom Lenses

The Well-Architected Framework and its 5 pillars have been a stronghold for the best practices of developing and deploying solutions with AWS. Within Sentia, as an MSP partner of AWS, we have been strongly co-relating all our solutions to the framework. On-boarding workloads has always been followed by a review based on the framework’s best practices.

With this change, it is now possible to enrich the Well-Architected Tool with custom internal best practices that you can validate every target environment against.

custom lenses aws well architected

Please see here for a complete article by AWS on the release.

Karpenter – An Open-Source High-Performance Kubernetes Cluster Autoscaler

An open-source Kubernetes (K8S) related service that takes a completely new approach for the naming convention. Typically, all K8S related products use nautical terms from the Greek language. An interesting choice has been made on this one, by leveraging the term Carpenter, substituting the first letter with a “K”, just like in K8S. I am not sure if we can get more information on this naming choice but I would be all ears.

Karpenter is designed to work with any Kubernetes cluster running in any environment, including all major cloud providers and on-premises environments. To get started with Karpenter in a Kubernetes cluster, you can install it using the Helm charts provided in the public repository. Karpenter also requires the proper permissions to scale the compute resources on the provider of choice.

Please see here for a complete article by AWS on the release.

AWS Control Tower Account Factory for Terraform

Any update to Control Tower is a BIG THING! Control Tower is the recommended way by AWS to manage your AWS Landing Zone. Until now it only worked with CloudFormation. There are many companies that have a technology gap when it comes to managing resources with CloudFormation, with a strong preference for Terraform. For these companies, Control Tower was not a welcome addition to the tools and services they use to manage their Landing Zone.

The new solution is a Terraform module maintained by the AWS Control Tower team that allows you to provision and customize AWS accounts through Terraform using a deployment pipeline.

Please see here for a complete article by AWS on the release.

Conclusion

These are only a few cherry picked announcements from a great first day of re:Invent 2021. Exciting things are happening. For a complete list of all announcements check the following pages.

aws.amazon.com/new
AWS News Blog - Top Announcements re:Invent 2021