When flooding took out SEIU‘s New York data center, the national nonprofit needed a plan for migrating to the AWS cloud
Through third-party and cloud-native tools, we provided the infrastructure, resources, and products necessary for an efficient application migration.
The national nonprofit serves branches of the organization with centralized IT based out of its New York offices. When NYC was hit by Hurricane Sandy in 2012, it led to flooding of the organization’s data center, housed in the basement of the building. The resulting outage took a week to recover from. The nonprofit needed a cloud-based backup solution and rapid application migration to ensure that it could be prepared against future disasters.
We began with an assessment of the organization’s data center posture, then created a migration plan and proposed architecture to support the nonprofit moving forward in AWS. We configured VPCs, subnets, networking, and configured access policies. We also connected a third-party disaster recovery service to ensure consistent synching of information between on-premises and cloud servers.
Peace of Mind
After going without its critical IT infrastructure for a week, the nonprofit had confidence its cloud infrastructure would be highly available.
The AWS infrastructure included VPN connectivity to the on-premises network in order to replicate Active Directory and SQL databases to ensure ongoing operations.
In addition to an initial VPN connection, our team configured remote VPN connectivity from field offices in seven east coast cities to ensure all users could access the environment in the event of a failure.
Effectual worked with a federal government customer to provide information for local land-use and emergency response planning to avoid development in hazardous zones and to plan evacuation routes to communities along low-lying coastlines vulnerable to tsunamis.
The customer engaged our team to quickly and effectively move their public-facing web applications and internal applications to the AWS cloud for greater resiliency and availability as well as to implement real-time logging, data analytics, and continuous monitoring for tsunami data.
To collect data that would help scientists understand tsunamis and develop effective strategies for improving tsunami preparedness and disaster response, our team implemented a solution utilizing Amazon CloudWatch, AWS CloudTrail, alarms, and Serverless storage.
We implemented Amazon CloudWatch in order to schedule data collection that self-triggers when a tsunami is detected. This innovative continuous monitoring and observability service allows you to detect anomalous behavior in environments, set alarms, visualize logs and metrics side by side, take automated actions, troubleshoot issues, and discover insights to keep applications running smoothly.
By deploying AWS CloudTrail, we were able to provide the customer greater accessibility to critical tsunami data analytics for helping scientists understand the sources of local tsunamis and mitigate the impacts of future events.
Real Time Logging
Our team set up Serverless storage to collect data from seismic networks to process key components in the impact of tsunamis.
This Federal Government customer looked to our team to migrate its on-premises infrastructure to a serverless infrastructure on AWS. The client was in need of a centralized data catalog, management solution for users, and data access for environmental issues.
We supported the client with a serverless solution that consisted of Amazon API Gateway, Amazon Cognito User Pools, AWS Lambda, and AWS Step Functions. This ensured the customer’s ability to make high-volume, complex data accessible to stakeholders, policymakers, and managers to facilitate data-driven conversations about environmental issues in a secure setting.
Our team implemented API Gateway to handle the tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls to process any surge of traffic on its website.
We implemented AWS Cognito User Pools for control over user authentication and user access for the website. This allowed for secure token handling and management of authenticated users from all identity providers.
We implemented Lambda functions to run code in a serverless environment and process its large data sets related to environmental issues. The client was able to reduce cost by 80%.
RFD & Associates, Inc., is an IT Technical Services Company with over 30 years of experience delivering IT solutions to public and private sector clients.
RFD delivers IT solutions from Mainframe to Mobile and everything inbetween. They have helped hundreds of organizations design, build, purchase and implement optimal technology solutions to achieve business goals. RFD needed help designing and developing a scalable, Amazon Web Services (AWS) cloud hosted, multi-tenant web and mobile friendly application. The proposed solution had a requirement to integrate with external APIs to ensure flexibility for future enhancements and integration with third-party tools. The application was also required to be compliant with Personally Identifiable Information (PII) and the U.S. Health Insurance Portability and Accountability Act (HIPAA) security.
Effectual Provided Guidance in the following areas
- AWS design and architectural services to include making RFD’s multi-tenant hosting environment PII/HIPAA compliant
- Provided AWS Training and best practices guidance on how to leverage AWS resources
- Assisted in helping RFD achieve its defined goals:
- Identify the challenges presented in third-party hosting of AWS.
- Evaluate the use of cloud services to meet RFD business and technical requirements.
- Determine portable containerization services.
- Evaluate architectural decisions in AWS Commercial and GovCloud Regions.
A four-phased approach was developed to implement an AWS hosted environment for RFD:
- Phase 1: Discovery, AWS Service Selection, and PII/HIPAA Security Requirements Determination.
- Phase 2: AWS Foundation Build. Provisioned appropriate environments and access; established AWS accounts
- Phase 3: AWS Service Build. Provisioned AWS services to include: EC2, Route53, S3, WAF, etc.
- Phase 4: Process Documentation and Environment Review. Created AWS documentation of resources and provided reports on overall solution, security and cost.
We configured EC2 instances that are PII/HIPAA compliant ensuring adequate capacity to meet traffic demands and compute capacity. In addition, we implemented automated launch configurations to allow RFD to quickly launch and/or scale application severs in target environments in the future.
Security & Compliance
The implementation of AWS Compute, Storage, and PII and HIPAA compliant Database services to ensure the security of sensitive data used in the environment.
To maximize the functionality of many services, AWS CloudWatch was configured to help RFD set thresholds/alarms to monitor custom metrics for auto-scaling needs.