Harnessing the Cloud for Clean Energy: PEA’s Strategic Move to AWS
PEA, needed to migrate their infrastructure to the Cloud. They wanted to establish a robust foundation for their operations and ensure clear and efficient cloud management.
Parque Eólico Arauco is a renewable energy company. Their main goal is to contribute to the national energy matrix and combat climate change by generating clean, competitive, and secure renewable energy. Their mission is to provide sustainable electricity to a wide range of customers while maintaining strict environmental impact controls. They aim to become a leading company in the country, promoting sustainable development, equality, and energy security through the utilization of renewable energy sources.
PEA approached us, Teracloud, with the critical need to migrate their infrastructure to the Cloud. They wanted to establish a robust foundation for their operations and were keen on implementing services aligned with all pillars of the AWS Well-Architected Framework to ensure clear and efficient cloud management.
AWS was chosen because of its flexibility to deploy essential core components as containers within Amazon Elastic Kubernetes Service (EKS). This approach not only streamlines the development and deployment processes but also ensures that the systems can effortlessly scale to meet the demands of the dynamic workload. AWS's extensive suite of cloud services and its reputation for reliability further solidified the decision, allowing us to confidently build a scalable and resilient infrastructure.
As Teracloud, we were thrilled to take on this challenge and collaborate closely with PEA throughout the entire process. Working hand in hand, we designed and implemented a comprehensive cloud solution, leveraging industry best practices. Our goal was to enable PEA to harness the full potential of AWS services, ensuring scalability, security, reliability, performance, and cost optimization.
After considering all needs, requirements, and risks, the solution proposal was presented to PEA who then decided to approve the implementation, following the plan suggested by us.
The outcome was an infrastructure with the following:
Architecture based on containers under Amazon EKS over EC2 instances.
Infrastructure as a Code using Terraform.
Amazon ECR as a private registry for Docker images.
Secure and reliable data stores with Amazon Aurora with Multi-AZ.
Monitoring and visibility enabled by Amazon CloudWatch.
Amazon GuardDuty, AWS SecurityHub, AWS Inspector, and AWS Config, to provide immediate alerts and findings, both security-related and service operations.
Multi-layer designs implementing VPC with subnets for public, private, and data services.
AWS CloudTrail to audit all actions performed.
AWS Organization and IAM Identity Center to organize accounts, authentication and authorization for users.
Amazon KMS for encrypt encryption at rest
Route 53 as DNS solution with Amazon ACM to provide TLS certificates for the Application Load Balance
An architecture diagram follows:.
A three-tier VPC (public, private, and database subnets) deployed in two AZs
A VPN server sitting in the public subnet for accessing the VPC from the outside.
Results and Benefits
The improvements associated with the infrastructure proposal are based on the following metrics:
Deployment time: was significantly reduced using Amazon EKS and GitOps pattern, also reducing the human error rate.
Maintenance time: Amazon EKS and Kubernetes self-healing and auto-scaling features allow the administrators to focus more on continuous improvement and less on maintenance tasks.
Availability: the usage of highly available and reliable services like Amazon EKS with autoscaling, Amazon Aurora, and Application Load Balancers allowed to increase the availability of the services.
Recovery times: this was improved by the self-healing feature of Amazon EKS and the insight archived by Amazon CloudWatch.
Amount of vulnerabilities: it was possible to reduce the number of vulnerabilities in the Docker images by using Amazon Inspector, correcting designs and configuration errors using AWS SecurityHub, and keeping the desired configuration using AWS Config.
About the Partner
Our expertise ranges from designing state-of-the-art cloud architecture to deploying and managing cloud environments through Managed Services including AWS Consulting, Architects, DevOps, DevSecOps, MLOps, 24/7 Support, Automation, Disaster Recovery, and Security. We provide secure, scalable, and highly available solutions for our clients.
We’ve worked with clients coming from a variety of industries such as airlines, healthcare, education, and e-commerce designing, implementing, and managing Cloud workloads with HA architecture under 99.999% uptime SLA and PCI/HIPAA compliance requirements.
Teracloud is a fast-growing AWS Advanced Tier Services Partner company created by certified cloud experts skilled in migrating and deploying startups, enterprises, and everything in between to the Cloud.