Singtel Business
Product Factsheet
Brochure
Managed
Defense
AWS Landing
ZoneServices
Accelerating AWS migration
with Landing Zone
Available through Singtel, the Landing Zone product eases the way for enterprises to
deploy a secure, multi-account AWS environment.
Landing Zone is a solution to help early-stage customers get started on Amazon Web
Services (AWS). It provides best practice guides and pre-configured templates
encompassing AWS accounts, networking, identity and access management, logging and
security components.
AWS Landing Zone
Enterprise Challenges
For enterprises looking to migrate their applications or deploy new workloads onto AWS Cloud, the prospect can be
daunting. It involves making many design decisions, setting up a multi-account environment and configuring multiple
accounts and services. The process can be laborious and time consuming, especially for the uninitiated.
To help overcome this and accelerate AWS deployment, Singtel offers AWS Landing Zone, a foundational product for
customers looking to migrate applications or build new workloads on the public cloud platform.
AWS Landing Zone
Landing Zone is a solution that helps customers set up a secure, multi-account AWS environment quickly. The Landing Zone
will collect predetermined inputs from the enterprise and create the initial operational environment following prescriptive
guidance and best practice templates that Singtel can deploy into the customer’s initial AWS environment. This
encompasses the fundamental building blocks for a customer to start migrating, or deploying new applications onto the
AWS cloud in a rapid and repeatable fashion.
Features
Landing Zone is a construct of the enterprise’s AWS infrastructure environment which includes AWS accounts, networking,
identity and access management, logging and security components.
Accounts
Develop and validate the AWS account structure.
Networking
Create and implement a network architecture on AWS
• Connectivity to the Internet for Internet-facing applications in one AWS region
• Design of the network inside AWS i.e., a Virtual Private Cloud (VPC) in one AWS region
• Definition of the unique Classless Inter-Domain Routing (CIDR) range based on VPC requirements and design
• Connectivity to the on-premises infrastructure using single or dual IPSec VPN over Internet or
Direct Connect (DX). This facilitates interaction between application system running on cloud and systems
running in their existing data centres, office and other locations.
Identity and access management
Design and implement an IAM architecture leveraging AWS best practices.
• Centralised management of identities using any directory store
• Two Factor Authentication (2FA), password complexity and aging.
• Centralised authorisation using IAM roles for common use cases such as InfraAdmin and SecurityAdmin
Logging
Understand the logging and monitoring requirements from a security and
operations perspective with respect to level of granularity, period of storage and log processing.
• Implementation of AWS environment for storage
• Processing of logs/events following AWS best practices
Security
Includes Security Groups and Network Access Control Lists (NACLs).
• Design and implement fine-grained traffic filtering controls using Security Groups for the foundation layer.
• Implement coarse-grained traffic filtering controls using NACLs for the foundation layer.
Benefits
Provides access to best practices
• Enables enterprises to benefit from best practices that have been developed through experience with
thousands of other AWS customers across the globe.
• These best practices cover domains such as AWS account strategy, networking, security in the cloud,
logging and monitoring.
Accelerates AWS onboarding
• Enables enterprises to save time by automating the set-up of an environment for running secure and
scalable workloads
• Speeds up decision-making using a pre-packaged collection of best practices and considerations.
• Facilitates rapid implementation across AWS accounts, identity and access management, network
infrastructure, and related shared services infrastructure.
Provides a security baseline
• Implements an initial security baseline through the creation of core accounts and resources.
• Security baseline covers areas such as identity and access management, data security and logging.
• Leverages single sign-on to manage user account access
• Permissions and restrictions can be set to enforce policies and compliance
Enhances governance
• Allows rules to be configured to monitor compliance.
• Automatically provides alerts on non-compliant resources.
Why Singtel
Work with the right people
• Largest pool of AWS-certified professionals in Singapore who can architect, transform and manage your
multi-cloud deployments
• Extensive experience in building and managing large scale multi-cloud environments
Work with the right processes
• Accredited as
- AWS Advanced Consulting Partner
- AWS Government Competency Partner
- AWS Channel Partner
- AWS Direct Connect Partner
• Proven methodologies for seamless migration and governance of AWS deployments
Work with the right solutions
Complete range of digital transformation solutions targeted at every step of the AWS journey
• Cloud services
• Cloud Security
• Application Modernisation and Migration Services
• Cloud Connectivity and IoT Solutions
About Singtel
Singtel is Asia's leading communications technology group, providing a portfolio of services from
next-generation communication, technology services to infotainment to both consumers and
businesses. For consumers, Singtel delivers a complete and integrated suite of services, including
mobile, broadband and TV. For businesses, Singtel offers a complementary array of enterprise
mobility solutions, data hosting, cloud, network infrastructure, 5G, IoT, analytics, robotics and
cyber-security capabilities. The Group has presence in Asia, Australia and Africa and reaches 700
million mobile customers. Its infrastructure and technology services for businesses span 21
countries, with more than 428 direct points of presence in 362 cities.
Awards
Frost & Sullivan 2019 Singapore Cloud Infrastructure
Competitive Strategy, Innovation & Leadership Award
2019 VMware Cloud Partner of the Year, SEA & Korea
Telecom Asia Awards 2018
Best Cloud-based Service Award
Frost & Sullivan Best Practices Award 2018
Asia-Pacific Managed Cloud Services Competitive Strategy,
Innovation & Leadership Award
2017 VMware Partnership to provide Cloud Infrastructure
for the Public Sector
2017 VMware Partnership Most Innovative Cloud Provider
of the Year
2017 IBM Top Business Partner of the Year
Winner of IBM Business Partner of the Year for Cloud
2017 Trend Micro Best Cloud & Security Partner
Highest Revenue Growth (G-Cloud & C-Cloud)
November 2019
Frost & Sullivan Best Practices Award 2017
Singapore Managed Cloud Service Provider of the Year
2018 Microsoft Partner of the Year
Driving solid business impact through Microsoft Cloud
technologies (NCS)
For more information
cloud@singtel.com
www.singtel.com/cloud
Copyright © 2019 Singapore Telecommunications Ltd (CRN:199201624D). All rights reserved.
All other trademarks mentioned in this document are the property of their respective owners.