Government Contractor Partners with FP Complete to deploy a secure and compliant cluster onto AWS GovCloud
FP Complete architects and deploys a more complex AWS GovCloud configuration to help a government contractor adhere to higher security and compliance standards.
FP Complete establishes a secure, compliant, highly available, and easily maintained cluster within AWS GovCloud.
A government contractor, faced with higher security standards due to their data’s sensitive and confidential nature, was challenged with deploying a secure and compliant cluster onto AWS GovCloud. This required a more complex configuration than many standard region deployments to meet their specific regulatory requirements. So, they called in reinforcements from FP Complete to update their system and:
Software & Technology Services
To minimize the risk of an unstable environment, we opted to deploy Nomad, as Kubernetes was known to be unreliable within the GovCloud environment. Nomad provided a similar feature set to Kubernetes but utilized fewer cloud services, making it an ideal choice at the time for a dependable GovCloud setup. FP Complete recommended a hybrid approach that leverages Nomad Clusters on AWS GovCloud and bare metal AWS EC2 instances to provide a consistent experience across their AWS GovCloud environment. As their needs change, the Client can quickly shift software license entitlements from on-premise nodes to bare metal AWS EC2 instances.
We used Terraform to build the infrastructure necessary for hosting the Nomad cluster and leveraged AWS Key Management Service (KMS) to contrive the necessary encryptions. For additional security, we deployed Hashicorp Vault for secure credentials management.
AWS, GovCloud, Terraform, Nomad,
This project revolved around regulated data, GovCloud, and Nomad. While we have worked with all three concepts individually in the past, this was the first project where we got to combine all three. The integration went well and presented fewer obstacles than we expected.
The selected combination of tools integrated well, fully supported the AWS GovCloud environment, and delivered a stable platform for our client. This project taught us that with proper planning and execution, even complex projects can be accomplished easily. If you are considering deploying a secure and compliant cluster onto AWS GovCloud or any other cloud platform, do not hesitate to ask us for guidance and support.