I am Kenneth and an AWS Community Builder focusing on Networking Content & Delivery. I also work as an Enterprise Architect specializing on Connecitvity, Cloud Architecture/Security/Governance (mainly AWS) and Infrastructure.
I am also AWS Certified x3 (Architect associate + professional) and the Network speciality and the security speciality on the way.
I have a blog where I write articles related mainly to AWS technologies..I am also writing a book on AWS networking technologies covering VPC, Route 53, Cloudfront, Network firewall, Direct Connect, VPC lattice, Transit Gateway, AWS Cloudwan, AWS WAF and Shield .....
-
Always use MFA especially for accounts with elevated priviliges
-
Do NOT use the "Root Account" use and create alternatives accounts with the necessary roles and policies
-
Avoid using the default VPC (172.31.x.x) got bitten a number of times due to IP conflicts
-
ALWAYS use a proper Tagging policy
-
Ensure you have Billing alerts set to avoid having surprise
-
If you are using AWS networking, make sure you have a good IP Plan and a good BGP assignment plan and look into IPv6 as we will soon need it :)