Client
A renowned Property & Casualty (P&C) insurer enhancing its cloud foundation with reusable infrastructure templates and disaster recovery patterns to ensure resilience, scalability, and secure operations.
Business Challenge
- Inconsistent DR Readiness: Application teams lacked standardized, reusable frameworks to implement disaster recovery for AWS services.
- IAM Credential Rotations: Frequent disruptions occurred due to expiring IAM credentials, affecting deployment continuity.
- Manual Resource Setup: High-effort configurations slowed time to market and introduced deployment errors.
- Siloed Environments: Applications had tight coupling to shared infrastructure, making independent scaling difficult.
Approach
Trianz developed reusable, automation-driven patterns to industrialize disaster recovery across the enterprise cloud environment:
- Reusable CDK Library Creation: Built standardized infrastructure-as-code templates using AWS CDK for S3 with CRR, MRAP, and IAM.
- Multi-Region Resiliency: Enabled Active-Active and Active-Passive replication strategies to support DR tiers across business units.
- CloudForge Offerings: Published two modular DR components to an internal marketplace for self-service adoption.
- IAM Hardening: Introduced trusted policies to bypass secret expiration bottlenecks, improving continuity in 90-day deployment cycles.
- S3 + RDS DR Templates: Developed preconfigured patterns for S3 and Amazon RDS with cross-region support and role-based access.
- CI/CD Enablement: Integrated reusable libraries into CI/CD workflows for automated, consistent infrastructure deployment.
- IAM Access Patterns: Standardized shared IAM user strategies to reduce friction and improve secret management.
- Containerized Platform: Adopted ECS Fargate to deploy DR control plane apps with minimal operational overhead.
- Automated Monitoring: Leveraged CloudWatch for DR readiness tracking and audit compliance reporting.
- Cross-Team Enablement: Trained internal squads to implement DR patterns independently using the newly created modules.
Technology Components
Cloud Services
- Amazon S3 (CRR, MRAP)
- Amazon RDS PostgreSQL
- Amazon ECS Fargate
- AWS IAM
- Amazon Secrets Manager
- Amazon SNS
- Amazon CloudWatch
- Amazon KMS
- Amazon CloudTrail
- AWS VPC
Application Stack
- Django
- Python
- TypeScript
- AWS CDK
- CloudFormation Templates (CFTs)
Infrastructure Tools
- Amazon Application Load Balancer
- Amazon Route 53
- AWS Pricing Calculator, Trusted Advisor, Cost Explorer
Transformational Effects
- Standardized DR Frameworks: Enabled faster, repeatable deployments of disaster recovery infrastructure across application teams
- Increased Deployment Agility: Reduced IAM credential issues and streamlined onboarding of new teams
- Reusable Infrastructure Templates: Empowered engineers with plug-and-play components via internal marketplace
- Improved Cost Visibility: TCO analysis guided right-sized provisioning and long-term cost predictability
- Decoupled Workloads: Product squads achieved independence from shared buckets and could evolve DR logic freely
