HealthTech Startup Migrates Microservices to Amazon EKS for Enhanced Availability and Agility

Solutions

• Provisioning and implementing Amazon VPC design following security best practices and network requirements for stage and prod environments.
• Provisioning an AWS EKS cluster for high availability and autoscaling of microservices in different environments with load balancing using the right instance types.
• Implementing a CI/CD architecture to better build management in both stage and prod environments.
• Deploying continuous delivery process for applications using Argo CD and Argo CD Rollouts.
• Implement a monitoring and alerting system by using Prometheus and Amazon CloudWatch to monitor CPU and memory utilization of nodes and infrastructure monitoring on Amazon EKS.
• Implementing Amazon OpenSearch stack for centralized log aggregation with Amazon CloudWatch logs.
• Implementing container security using the Grype tool to scan and check Docker images for vulnerabilities before pushing them to Amazon ECR, with image tagging in place.
• Deploying required configs using configMaps for Data Encryption and secure storage.
• Implementing auto-scaling for pod and nodes based on custom metrics.
• Implementing a secure Amazon EKS cluster with restricted access, private subnet, dedicated AWS IAM roles and service accounts, secure authentication, and image vulnerability checks.