Skip to content

From Zero to One Hundred: Building an AWS Landing Zone for a Leading Commercial Vehicle Manufacturer

Vision

  • Maximum Efficiency: Optimization of provisioning processes and resource utilization.
  • Increased Security: Enhanced protection and compliance.
  • Agility and Scalability: Flexible adaptation to business needs.

Challenge

Daimler Truck faced the demanding task of developing an entirely new IT infrastructure and a unified AWS Landing Zone (LZ), necessitated by the division of a large corporation into two independent entities. The challenge was to find a solution that met both the highest security requirements and the compliance guidelines of the corporation.

The Solution

The solution to the outlined challenges was implemented within an extremely demanding timeframe. An early access version for business-critical applications was available in about three months, followed by an LZ assessment by the AWS ProServe team. A smooth go-live occurred after an additional three months.

Initially, a central account vending solution, including AWS Control Tower, was implemented to enable efficient and secure account management. The provisioning time for new AWS accounts was reduced from hours to around 20 minutes. This solution was seamlessly integrated with EntraID (formerly Azure Active Directory – AAD) to ensure consistent and reliable identity and access management.

A comprehensive automation concept was realized, integrating various systems such as AWS, ServiceNow, GitHub, and EntraID. This integration not only facilitated IT resource management and monitoring but also increased operational efficiency and reduced staffing needs.

A central aspect of the solution was the use of AWS services such as AWS Control Tower Account Factory for Terraform (AFT), Systems Manager, Security Hub, GuardDuty, EventBridge, Step Functions, and Secrets Manager. These services played a crucial role in improving the governance and automation of the IT infrastructure. They enabled the creation of a secure and efficient cloud environment that met both the technical requirements and the legal and financial conditions of the DT Cloud.

Transformation

  • Technological Advancement: Introduction of cutting-edge cloud technology for future-oriented IT structures.
  • Efficiency Boost: Optimization of provisioning processes through automation and improved cloud integration.
  • Security and Performance Improvement: Enhanced data security and IT infrastructure performance.

Hans Wagner, Tech Lead AWS at Devoteam Germany, summarizes the success of the collaboration:

“Our collaboration with the customer during the carve-out process enabled the establishment of an efficient AWS setup within just six months. This project was a crucial step for the future IT infrastructure and a great success in supporting Daimler Truck’s cloud-native applications.”

Hans Wagner Tech Lead AWS at Devoteam Germany