Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Solutions Architect's Handbook
  • Table Of Contents Toc
Solutions Architect's Handbook

Solutions Architect's Handbook

By : Saurabh Shrivastava, Neelanjali Srivastav
4.2 (20)
Buy this Book
close
close
Solutions Architect's Handbook

Solutions Architect's Handbook

4.2 (20)
By: Saurabh Shrivastava, Neelanjali Srivastav
Buy this Book

Overview of this book

Becoming a solutions architect gives you the flexibility to work with cutting-edge technologies and define product strategies. This handbook takes you through the essential concepts, design principles and patterns, architectural considerations, and all the latest technology that you need to know to become a successful solutions architect. This book starts with a quick introduction to the fundamentals of solution architecture design principles and attributes that will assist you in understanding how solution architecture benefits software projects across enterprises. You'll learn what a cloud migration and application modernization framework looks like, and will use microservices, event-driven, cache-based, and serverless patterns to design robust architectures. You'll then explore the main pillars of architecture design, including performance, scalability, cost optimization, security, operational excellence, and DevOps. Additionally, you'll also learn advanced concepts relating to big data, machine learning, and the Internet of Things (IoT). Finally, you'll get to grips with the documentation of architecture design and the soft skills that are necessary to become a better solutions architect. By the end of this book, you'll have learned techniques to create an efficient architecture design that meets your business requirements.
Table of Contents (18 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Reviews
1
The Meaning of Solution Architecture
Icon
The Meaning of Solution Architecture
Icon
What is solution architecture?
Icon
Evolution of solution architecture
Icon
Why is solution architecture important?
Icon
The benefits of solution architecture
Icon
Addressing the business needs and quality of delivery
Icon
Selecting the best technology platform
Icon
Addressing solution constraints and issues
Icon
Helping in resource and cost management
Icon
Managing solution delivery and project life cycle
Icon
Addressing non-functional requirements
Icon
Solution architecture in the public cloud
Icon
What is the public cloud?
Icon
Public clouds, private clouds, and hybrid clouds
Icon
The public cloud architecture
Icon
Public cloud providers and cloud service offering
Icon
Summary
Lock Free Chapter
2
Solution Architects in an Organization
Icon
Solution Architects in an Organization
Icon
Types of solution architect role
Icon
Enterprise solution architect
Icon
Solution architect
Icon
Technical architect
Icon
Cloud architect
Icon
Architect evangelist
Icon
Infrastructure architect
Icon
Network architect
Icon
Data architect
Icon
Security architect
Icon
DevOps architect
Icon
Understanding a solution architect's responsibilities
Icon
Analyzing user requirements
Icon
Defining non-functional requirements
Icon
Engaging and working with stakeholders
Icon
Handling various architecture constraints
Icon
Making technology selections
Icon
Developing a proof of concept and a prototype
Icon
Designing solutions and staying through delivery
Icon
Ensuring post-launch operability and maintenance
Icon
Working as a technology evangelist
Icon
Solution architects in an agile organization
Icon
Why the Agile methodology?
Icon
Agile manifesto
Icon
Agile process and terminology
Icon
Sprint ceremonies
Icon
Agile tools and terms
Icon
Agile versus waterfall
Icon
Agile architecture
Icon
Summary
3
Attributes of the Solution Architecture
Icon
Attributes of the Solution Architecture
Icon
Scalability and elasticity
Icon
The capacity dilemma in scaling
Icon
Scaling your architecture
Icon
Static content scaling
Icon
Server fleet elasticity
Icon
Database scaling
Icon
High availability and resiliency
Icon
Fault tolerance and redundancy
Icon
Disaster recovery and business continuity
Icon
Extensibility and reusability
Icon
Usability and accessibility
Icon
Portability and interoperability
Icon
Operational excellence and maintainability
Icon
Security and compliance
Icon
Authentication and authorization
Icon
Web security
Icon
Network security
Icon
Infrastructure security
Icon
Data security
Icon
Cost optimization and budget
Icon
Summary
4
Principles of Solution Architecture Design
Icon
Principles of Solution Architecture Design
Icon
Scaling workload
Icon
Predictive scaling
Icon
Reactive scaling
Icon
Building resilient architecture
Icon
Design for performance
Icon
Using replaceable resources
Icon
Creating immutable infrastructure
Icon
Canary testing
Icon
Think loose coupling
Icon
Think service not server
Icon
Using the right storage for the right need
Icon
Think data-driven design
Icon
Overcoming constraints
Icon
Adding security everywhere
Icon
Automating everything
Icon
Summary
5
Cloud Migration and Hybrid Cloud Architecture Design
Icon
Cloud Migration and Hybrid Cloud Architecture Design
Icon
Benefits of cloud-native architecture
Icon
Creating a cloud migration strategy
Icon
Lift and Shift migration
Icon
Rehost
Icon
Replatform
Icon
Relocate
Icon
Cloud-native approach
Icon
Refactor
Icon
Repurchase
Icon
Retain or retire
Icon
Retain
Icon
Retire
Icon
Steps for cloud migration
Icon
Discovering your workload
Icon
Analyzing the information
Icon
Creating migration plan
Icon
Designing the application
Icon
Performing application migration to the cloud
Icon
Data migration
Icon
Server migration
Icon
Integration, validation, and cutover
Icon
Live migration cutover
Icon
Operating cloud application
Icon
Application optimization in the cloud
Icon
Creating a hybrid cloud architecture
Icon
Designing a cloud-native architecture
Icon
Popular public cloud choices
Icon
Summary
Icon
Further reading
6
Solution Architecture Design Patterns
Icon
Solution Architecture Design Patterns
Icon
Building an n-tier layered architecture
Icon
The web layer
Icon
The application layer
Icon
The database layer
Icon
Creating multi-tenant SaaS-based architecture
Icon
Building stateless and stateful architecture designs
Icon
Understanding SOA
Icon
SOAP web service architecture
Icon
RESTful web service architecture
Icon
Building an SOA-based e-commerce website architecture
Icon
Building a serverless architecture
Icon
Creating a microservice architecture
Icon
Real-time voting application reference architecture
Icon
Building queue-based architecture
Icon
Queuing chain pattern
Icon
Job observer pattern
Icon
Creating event-driven architecture
Icon
Publisher/subscriber model
Icon
Event stream model
Icon
Building cache-based architecture
Icon
Cache distribution pattern in a three-tier web architecture
Icon
Rename distribution pattern
Icon
Cache proxy pattern
Icon
Rewrite proxy pattern
Icon
App caching pattern
Icon
Memcached versus Redis
Icon
Understanding the circuit breaker pattern
Icon
Implementing the bulkheads pattern
Icon
Creating a floating IP pattern
Icon
Deploying an application with a container
Icon
The benefit of containers
Icon
Container deployment
Icon
Database handling in application architecture
Icon
High-availability database pattern
Icon
Avoiding anti-patterns in solution architecture
Icon
Summary
7
Performance Considerations
Icon
Performance Considerations
Icon
Design principles for architecture performance
Icon
Reducing latency
Icon
Improving throughput
Icon
Handling concurrency
Icon
Apply caching
Icon
Technology selection for performance optimization
Icon
Making a computational choice
Icon
Selecting the server instance
Icon
Working with containers
Icon
Docker
Icon
Kubernetes
Icon
Going serverless
Icon
Choosing storage
Icon
Working with block storage and storage area network
Icon
Working with file storage and network area storage (NAS)
Icon
Working with object storage and the cloud data storage
Icon
Choosing the database
Icon
Online transactional processing (OLTP)
Icon
Nonrelational databases (NoSQL)
Icon
Online analytical processing (OLAP)
Icon
Building a data search functionality
Icon
Making the networking choice
Icon
Defining a DNS routing strategy
Icon
Implementing a load balancer
Icon
Applying autoscaling
Icon
Managing performance monitoring
Icon
Summary
8
Security Considerations
Icon
Security Considerations
Icon
Designing principles for architectural security
Icon
Implementing authentication and authorization control
Icon
Applying security everywhere
Icon
Reducing blast radius
Icon
Monitoring and auditing everything all the time
Icon
Automating everything
Icon
Protecting data
Icon
Preparing a response
Icon
Selecting technology for architectural security
Icon
User identity and access management
Icon
FIM and SSO
Icon
Kerberos
Icon
AD
Icon
Amazon Web Services (AWS) Directory Service
Icon
Security Assertion Markup Language (SAML)
Icon
OAuth and OpenID Connect (OIDC)
Icon
Handling web security
Icon
Web app security vulnerabilities
Icon
Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks
Icon
SQLi attacks
Icon
XSS attacks
Icon
Cross-Site Request Forgery (CSRF) attacks
Icon
Buffer overflow and memory corruption attacks
Icon
Web security mitigation
Icon
Web Application Firewall (WAF)
Icon
DDoS mitigation
Icon
Securing an application and its infrastructure
Icon
Application and operating system hardening
Icon
Software vulnerabilities and secure code
Icon
Network, firewall, and trusted boundary
Icon
IDS/IPS
Icon
Host-based IDS
Icon
Network-based IDS
Icon
Data security
Icon
Data classification
Icon
Data encryption
Icon
Encryption key management
Icon
Envelope encryption
Icon
AWS Key Management Service (KMS)
Icon
HSM
Icon
Data encryption at rest and in transit
Icon
Security and compliance certifications
Icon
The cloud's shared security responsibility model
Icon
Summary
9
Architectural Reliability Considerations
Icon
Architectural Reliability Considerations
Icon
Design principles for architectural reliability
Icon
Making systems self-healing
Icon
Applying automation
Icon
Creating a distributed system
Icon
Monitoring capacity
Icon
Performing recovery validation
Icon
Technology selection for architecture reliability
Icon
Planning the RTO and RPO
Icon
Replicating data
Icon
Synchronous versus asynchronous replication
Icon
Replication methods
Icon
Planning disaster recovery
Icon
Backup and restore
Icon
Pilot light
Icon
Warm standby
Icon
Multi-site
Icon
Applying best practices for disaster recovery
Icon
Improving reliability with the cloud
Icon
Summary
10
Operational Excellence Considerations
Icon
Operational Excellence Considerations
Icon
Designing principles for operational excellence
Icon
Automating the operation
Icon
Making incremental and reversible changes
Icon
Predicting failures and responding
Icon
Learning from the mistake and refining
Icon
Keeping operation's runbook updated
Icon
Selecting technologies for operational excellence
Icon
Planning for operational excellence
Icon
IT Asset Management (ITAM)
Icon
Configuration management
Icon
The functioning of operational excellence
Icon
Monitoring system health
Icon
Infrastructure monitoring
Icon
Application monitoring
Icon
Platform monitoring
Icon
Log monitoring
Icon
Security monitoring
Icon
Handling alerts and incident response
Icon
Improving operational excellence
Icon
ITOA
Icon
RCA
Icon
Auditing and reporting
Icon
Achieving operational excellence in the public cloud
Icon
Summary
11
Cost Considerations
Icon
Cost Considerations
Icon
Design principles for cost optimization
Icon
Calculating the total cost of ownership
Icon
Planning the budget and forecast
Icon
Managing demand and service catalogs
Icon
Keeping track of expenditure
Icon
Continuous cost optimization
Icon
Techniques for cost optimization
Icon
Reducing architectural complexity
Icon
Increasing IT efficiency
Icon
Applying standardization and governance
Icon
Monitoring cost usage and report
Icon
Cost optimization in the public cloud
Icon
Summary
12
DevOps and Solution Architecture Framework
chevron up
Icon
DevOps and Solution Architecture Framework
Icon
Introducing DevOps
Icon
Understanding the benefits of DevOps
Icon
Understanding the components of DevOps
Icon
CI/CD
Icon
Continuous monitoring and improvement
Icon
IaC
Icon
Configuration management (CM)
Icon
Introducing DevSecOps
Icon
Combining DevSecOps and CI/CD
Icon
Implementing a CD strategy
Icon
In-place deployment
Icon
Rolling deployment
Icon
Blue-green deployment
Icon
Red-black deployment
Icon
Immutable deployment
Icon
Implementing continuous testing in the CI/CD pipeline
Icon
A/B testing
Icon
Using DevOps tools for CI/CD
Icon
Code editor
Icon
Source code management
Icon
CI server
Icon
Code deployment
Icon
Code pipeline
Icon
Implementing DevOps best practices
Icon
Summary
13
Data Engineering and Machine Learning
Icon
Data Engineering and Machine Learning
Icon
What is big data architecture?
Icon
Designing big data processing pipelines
Icon
Data ingestion
Icon
Technology choices for data ingestion
Icon
Ingesting data to the cloud
Icon
Storing data
Icon
Technology choices for data storage
Icon
Structured data stores
Icon
Relational databases
Icon
Data warehousing
Icon
NoSQL databases
Icon
SQL versus NoSQL databases
Icon
Types of NoSQL data store
Icon
Search data stores
Icon
Unstructured data stores
Icon
Data lakes
Icon
Processing data and performing analytics
Icon
Technology choices for data processing and analysis
Icon
Visualizing data
Icon
Technology choices for data visualization
Icon
Understanding IoT
Icon
What is ML?
Icon
Working with data science and ML
Icon
Evaluating ML models – overfitting versus underfitting
Icon
Understanding supervised and unsupervised ML
Icon
Summary
14
Architecting Legacy Systems
Icon
Architecting Legacy Systems
Icon
Learning the challenges of legacy systems
Icon
Difficulty in keeping up with user demand
Icon
Higher cost of maintenance and update
Icon
Shortage of skills and documentation
Icon
Vulnerable to corporate security issues
Icon
Incompatibility with other systems
Icon
Defining a strategy for system modernization
Icon
Benefits of system modernization
Icon
Assessment of a legacy application
Icon
Defining the modernization approach
Icon
Documentation and support
Icon
Looking at legacy system modernization techniques
Icon
Encapsulation, rehosting, and re-platforming
Icon
Refactoring and rearchitecting
Icon
Redesigning and replacing
Icon
Defining a cloud migration strategy for legacy systems
Icon
Summary
15
Solution Architecture Document
Icon
Solution Architecture Document
Icon
Purpose of the SAD
Icon
Views of the SAD
Icon
Structure of the SAD
Icon
Solution overview
Icon
Business context
Icon
Conceptual solution overview
Icon
Solution architecture
Icon
Solution delivery
Icon
Solution management
Icon
Appendix section of SAD
Icon
IT procurement documentation for a solution architecture
Icon
Summary
16
Learning Soft Skills to Become a Better Solution Architect
Icon
Learning Soft Skills to Become a Better Solution Architect
Icon
Acquiring pre-sales skills
Icon
Presenting to C-level executives
Icon
Taking ownership and accountability
Icon
Defining strategy execution and OKRs
Icon
Thinking big
Icon
Being flexible and adaptable
Icon
Design thinking
Icon
Being a builder by engaging in coding hands-on
Icon
Becoming better with continuous learning
Icon
Being a mentor to others
Icon
Becoming a technology evangelist and thought leader
Icon
Summary
17
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Combining DevSecOps and CI/CD

A DevSecOps practice needs to be embedded with every step of the CI/CD pipeline. DevSecOps ensures the security of the CI/CD pipeline by managing the right access and roles assigned to each server and making sure the build servers such as Jenkins are hardened to be protected from any security glitch. In addition to that, we need to make sure that all artifacts are validated, and code analysis is in place. It's better to be ready for incident response by automating continuous compliance validation and incident response remediation.

The following screenshot provides us with multiple stages to test security boundaries and catch security issues and compliance with policies as early as possible:

DevSecOps and CI/CD

At each integration point, you can identify different issues, as illustrated in the preceding diagram:

  • In the coding phase, scan all code to make sure no secret key or access key is hardcoded in between code lines.
  • During the build, include all...
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Solutions Architect's Handbook
End of Section 12
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon