KO TECHNOLOGIES
DEVOPS & AWS EKS MODERNISATION
For the UK segment of a major German automotive manufacturer (VAG), the challenge was to rapidly meet a demanding platform security posture by modernising their existing Kubernetes infrastructure. KO Technologies delivered a comprehensive DevOps & AWS EKS Modernisation solution, centered on moving their existing Linux EC2 workloads and EKS self-managed nodes to AWS EKS Fargate. This shift eliminated the operational burden of server patching, introduced robust secrets management via AWS Secrets Manager, and implemented a fully automated Terraform and CI/CD deployment pipeline, resulting in a significantly more secure, scalable, and efficient platform.
Official Partner
The Client
The client is the UK segment of a German automotive manufacturer (VOLKSWAGEN – SEAT – CUPRA – SKODA), with a turnover of £Billions per annum. They required a fast-paced project to modernise their core platform to meet stringent business deadlines for security and operational efficiency.
Name
UK segment of a German automotive manufacturer
Turnover
£Billions per annum
Location
United Kingdom
Challenges
- Node Migration: Move the EKS Self Hosted Nodes (running on EC2) to EKS Fargate to remove the operational burden of patching and security.
- Secrets Management: Introduce robust secrets management and eliminate the insecure use of AWS Access Keys in plain text.
- Automation & CI/CD: Implement CI/CD and Terraform automation for deployments to EKS, as there was a lack of existing automation and documentation.
- Operational Overhead:Reduce high operational costs and time spent on manual server patching.
- Upskilling:Train and upskill teams in the organisation on new DevOps ways of working.
Solutions
- EKS Fargate Migration
Successfully migrated Linux EC2 workloads into Docker images and deployed them to a newly built EKS Fargate cluster, significantly reducing the Kubernetes data plane management overhead.
- Secrets Manager Integration
Integrated EKS with AWS Secrets Manager to secure all application and infrastructure secrets.
- CI/CD Implementation
Introduced Jenkins pipelines for building, storing (in AWS ECR), and deploying applications to the EKS Fargate cluster.
- Security Enhancement
Switched internet traffic from NLB to ALB and implemented security group restrictions controlled by Imperva.
Results
A well-architected delivery for EKS modernisation.
Security: Enhanced security posture by implementing Secrets Manager and tightening network access controls.
Operations: Replatforming Linux EC2 workloads reduced operational overhead and eliminated the need for Kubernetes data plane management.
Reliability: Ensured reliable and repeatable delivery via Terraform Automation and automated CI/CD.
Tools Used
- AWS
- EKS
- FARGATE
- ECR
- SECRETS
- MANAGER
- TERRAFORM
- JENKINS
- IMPERVA
- WAF
- ALB
- NLB
- DOCKER
- KUBERNETES
Get Started Today!
Partner with KO Technologies and unleash the power of the Cloud & DevOps
