About Takeaway
Takeaway, originally under Thuisbezorgd.nl, is a Dutch dot-com company specialized in online food ordering and home delivery. It is an intermediary online portal between the customer and the restaurants, where customers can order food online from restaurants’ menus, and have it delivered by the restaurants directly to their home.
The Challenge
After a company’s takeover, the existing AWS (Amazon Web Services) infrastructure has to be evaluated and secured. This must be followed by a step-by-step optimization of the costs. Our input for Takeaway was exactly to help them in this process.
It’s a fact that in order to accomplish success, a company has to grow. Sometimes, the best way to achieve this is by acquiring other companies. Takeaway and Food Express is such a case (Read more…). By acquiring the food delivery service Food Express, Takeaway had also taken over its Amazon-cloud-hosted pickup delivery software solution. Following the ownership transition, the corresponding AWS account needed to be adapted and secured accordingly.
The Solution
First, all the services and, above all, every user access had been included to the IT resources’ database and subjected to a rigorous security screening. Then, we grouped and restricted permissions in AWS Identity and Access Management (IAM) for access to AWS resources, and changed the structure of policy documents.
These analyses of IT architecture started being reflected in account’s security structure. By optimizing resources, adapting instance variables, shifting static content to AWS S3, and switching off the test environments overnight, we managed to achieve significant cost reduction.
Our Contribution
One of PCG’s DevOps engineers had been assigned to assist Takeaway Express’s newly-formed interdisciplinary development team. Many of the software components corresponding to the discovered security deficiencies had been modified, their access restricted as much as possible.
In a later phase of the project, user authentication and authorization solutions were implemented on the basis of OpenID Connect with Keycloak. Further evaluations and adjustments in the field of traffic routings were added afterwards.
Results and Benefits
Generally speaking, the transfer of an unknown software stack in the context of a company takeover is always accompanied by risks. This is where PCG came into the picture and helped Takeaway Express secure its AWS account and optimize its IT infrastructure. By doing so, we significantly reduced the risks for our client, freed him from further worries, and enabled him to concentrate on the most important aspect: integrating the software stack into their IT ecosystem.
The Upshot
Every AWS account should be operated from the outset on the basis of a solid security concept. Poorly backed-up servers and services are a target for hackers or competitors. Those who try to save money by cutting down on the wrong costs end up paying double.
About PCG
Public Cloud Group (PCG) supports companies in their digital transformation through the use of public cloud solutions.
With a product portfolio designed to accompany organisations of all sizes in their cloud journey and competence that is a synonym for highly qualified staff that clients and partners like to work with, PCG is positioned as a reliable and trustworthy partner for the hyperscalers, relevant and with repeatedly validated competence and credibility.
We have the highest partnership status with the three relevant hyperscalers: Amazon Web Services (AWS), Google, and Microsoft. As experienced providers, we advise our customers independently with cloud implementation, application development, and managed services.