The snapshot
1
Daimler Truck needed to establish a new, secure IT infrastructure on AWS after separating from its parent company.
2
Devoteam used AWS Control Tower, automated processes, and integrated various systems like ServiceNow and EntraID to streamline operations.
3
A secure and efficient AWS Landing Zone was created in just 6 months, improving provisioning time and meeting compliance requirements.
Vision
- Maximum Efficiency: Optimization of provisioning processes and resource utilization.
- Increased Security: Enhanced protection and compliance.
- Agility and Scalability: Flexible adaptation to business needs.
Challenge
Daimler Truck faced the demanding task of developing an entirely new IT infrastructure and a unified AWS Landing Zone (LZ), necessitated by the division of a large corporation into two independent entities. The challenge was to find a solution that met both the highest security requirements and the compliance guidelines of the corporation.
The Solution
The solution to the outlined challenges was implemented within an extremely demanding timeframe. An early access version for business-critical applications was available in about three months, followed by an LZ assessment by the AWS ProServe team. A smooth go-live occurred after an additional three months.
Initially, a central account vending solution, including AWS Control Tower, was implemented to enable efficient and secure account management. The provisioning time for new AWS accounts was reduced from hours to around 20 minutes. This solution was seamlessly integrated with EntraID (formerly Azure Active Directory – AAD) to ensure consistent and reliable identity and access management.
A comprehensive automation concept was realized, integrating various systems such as AWS, ServiceNow, GitHub, and EntraID. This integration not only facilitated IT resource management and monitoring but also increased operational efficiency and reduced staffing needs.
A central aspect of the solution was the use of AWS services such as AWS Control Tower Account Factory for Terraform (AFT), Systems Manager, Security Hub, GuardDuty, EventBridge, Step Functions, and Secrets Manager. These services played a crucial role in improving the governance and automation of the IT infrastructure. They enabled the creation of a secure and efficient cloud environment that met both the technical requirements and the legal and financial conditions of the DT Cloud.
Transformation
- Technological Advancement: Introduction of cutting-edge cloud technology for future-oriented IT structures.
- Efficiency Boost: Optimization of provisioning processes through automation and improved cloud integration.
- Security and Performance Improvement: Enhanced data security and IT infrastructure performance.
Hans Wagner, Tech Lead AWS at Devoteam Germany, summarizes the success of the collaboration:
Our collaboration with the customer during the carve-out process enabled the establishment of an efficient AWS setup within just six months. This project was a crucial step for the future IT infrastructure and a great success in supporting Daimler Truck’s cloud-native applications.
Reduced AWS account provisioning time from hours to 20 minutes.
Enabled a secure and efficient cloud environment with AWS Control Tower, Systems Manager, and Security Hub.
Successfully supported Daimler Truck’s cloud-native applications with a new AWS setup within six months.
Your Success Starts Here
Partner with Devoteam to leverage award-winning tech expertise, agile execution, and a culture of continuous learning.