Simple Technology Solutions

Google Cloud Platform (GCP) Serverless Project

Description

Enabling a large US Federal Agency to bring ready-to-use Google Cloud Platform (GCP) projects online in the cloud environment in under 24 hours.

Categories

Cloud Security
Cloud Networking
Cloud Enterprise Architecture

PDF

BACKGROUND

A large US Federal Agency was exploring multi-platform cloud solutions to host resources with an efficient and standardized method for generating an operational environment. 

Project Requirements: 

  • The ability for the cloud environment to house all the necessary functional resources (networking resource access could be controlled by a single host project.) 
  • Permissions for access control driven by user identities and roles established externally from GCP. 
  • Cloud standard services, names, IP allocations, logging and substantial time savings.

ANALYSIS

Simple Technology Solutions (STS) Engineers identified two key project components: 

    • Assessing the cloud project startup parameters that were most commonly required for successful GCP implementation.  
    • GCP-specific architecture to host non-production and production environments. 

SOLUTION

STS Engineers determined that a programmatic approach to project provisioning (utilizing the GCP Python client libraries and its associated service APIs), would provide the most streamlined access to GCP resources and services. GCP serverless architecture was used to house and execute the necessary code to create the cloud environment. The team employed Cloud Pub/Sub function execution from within the same GCP organization entity where all projects would ultimately reside. Then, they designed user identities and access controls to synchronize with the Google Cloud Identity. The user groups and roles were based on the principle of granting the least privileges needed to execute a function and leveraging Identity Access Management (IAM) permissions.

BENEFIT

STS Engineers leveraged event-driven, serverless design patterns to create a highly available, scalable, low-cost tool that rapidly grew the customer’s GCP footprint.

SOLUTION ARCHITECTURE DIAGRAM

STS Engineers determined that a programmatic approach to the project would provide the most streamlined access to GCP resources and services.

Share This