Case Study

Revamping AWS Cloud Infrastructure through Well-Architected Review and Remediation for EdTech

Download the Case Study



AWS IAM, AWS Systems Manager, Amazon CloudWatch, Amazon ELB, EBS encryption, Amazon Guard Duty, Amazon Macie, Amazon Inspector


WAR Review and Remediation

About the Client

Galvanize Me is a global EdTech that offers test prep, admission counseling, and comprehensive services for students worldwide. With a presence in 190+ countries, they have assisted over 1 million students in securing university admissions. 


Proactive Threat Monitoring

Amazon GuardDuty

Confidentiality Measures

AWS Secrets Manager

Enhanced Access Security

AWS IAM Access Analyzer

The Challenge

The client wants to enhance their AWS cloud infrastructure in line with the pillars of the AWS Well-Architected Framework, addressing challenges in operational excellence, security, efficiency, and cost optimization. CloudThat assisted the client with re-architecting their environment to meet these requirements comprehensively. 


  • Implemented Multifactor Authentication (MFA) for both the AWS Root account and IAM users, enhancing security through an additional layer of verification. 
  • Implement the AWS Single Sign-On (SSO) to streamline access management, providing a unified login for multiple AWS accounts and applications, and simplifying user authentication. 
  • Implemented AWS Systems Manager for centralized operational data and automated tasks across AWS resources, facilitating remote patching activities for improved availability. 
  • Configured the Amazon CloudWatch logs and metrics for monitoring the web application, ensuring proactive identification and response to performance issues. 
  • Advised the deletion of unwanted or underutilized servers and snapshots for cost optimization, aligning resources with actual needs. 
  • Enabled termination protection on all running servers in the AWS account to prevent accidental termination and ensure operational continuity. 
  • Implemented encryption for Amazon EBS volumes attached to Amazon EC2 instances and Amazon S3 buckets storing data, bolstering data security. 
  • Provided the documentation to enable AWS GuardDuty to continuously monitor the AWS account for unauthorized activity, enhancing threat detection and response capabilities and the client has enabled the AWS GuardDuty. 

The Results

Improved security through audits, access controls, automated threat detection, optimized cost tracking, and infrastructure integrity 

Download the Case Study

AWS Partner - Migration Competency

Pioneering space by being an AWS Partner - Migration Competency.

Learn more

An authorized partner for all major cloud providers

A cloud agnostic organization with the rare distinction of being an authorized partner for AWS, Microsoft, Google and VMware.

Learn more

A house of strong pool of certified consulting experts

150+ cloud certified experts in AWS, Azure, GCP, VMware, etc.; delivered 200+ projects for top 100 fortune 500 companies.

Learn more

Get The Most Out Of Us

Our support doesn't end here. We have monthly newsletters, study guides, practice questions, and more to assist you in upgrading your cloud career. Subscribe to get them all!