Auto-sync: 2026-04-28 20:03
This commit is contained in:
43
wiki/entities/CCOE.md
Normal file
43
wiki/entities/CCOE.md
Normal file
@@ -0,0 +1,43 @@
|
||||
---
|
||||
title: "CCOE"
|
||||
type: entity
|
||||
tags:
|
||||
- Cloud
|
||||
- AWS
|
||||
- Organization
|
||||
sources: []
|
||||
last_updated: 2026-05-07
|
||||
---
|
||||
|
||||
## CCOE
|
||||
|
||||
Cloud Center of Excellence(云卓越中心),是企业内部负责云标准化、合规与治理的核心职能部门。
|
||||
|
||||
## Description
|
||||
|
||||
在 Micro Focus AWS 云转型计划(CTP)中,CCOE 负责:
|
||||
- 提供安全加固的基础镜像(Foundation AMI)
|
||||
- 制定和维护 AMI 路线图
|
||||
- 跨账号共享标准 AMI 和 KMS 密钥
|
||||
- 推动 AWS Landing Zone 的标准化架构落地
|
||||
|
||||
## Key Responsibilities
|
||||
|
||||
- **Foundation AMI 生命周期管理**:基于市场主流 OS(CentOS/Ubuntu/Windows)进行 [[CIS-Benchmark]] 安全基准加固,集成 McAfee EPO 防病毒 + Syslog-ng 日志管理 + AD 单点登录 + [[AWS-SSM]] + SiteScope 监控
|
||||
- **AMI 构建自动化**:通过 [[HashiCorp]] Packer + [[Jenkins]] 流水线实现镜像创建完全自动化
|
||||
- **版本策略**:每两个月更新一次,采用 N-2 版本保留策略
|
||||
- **分发机制**:通过跨账号共享(AMI Sharing)分发至全球多区域,而非物理复制
|
||||
|
||||
## Role in Shared Responsibility
|
||||
|
||||
- **CCOE 负责**:提供安全的基础镜像(Foundation AMI)
|
||||
- **产品团队负责**:在 Foundation AMI 之上构建产品特定 AMI,并负责其生命周期管理
|
||||
|
||||
## Aliases
|
||||
- Cloud Center of Excellence
|
||||
- CCoE
|
||||
- Cloud CoE
|
||||
|
||||
## Sources
|
||||
- [[ctp-topic-26-standard-ami-build-publish-share-processes]] — Foundation AMI 全生命周期管理详解( Srihari/Alan/Praveen 主讲)
|
||||
- [[ctp-topic-50-ami-roadmap-for-aws-amis]] — CCOE AMI 路线图详解
|
||||
Reference in New Issue
Block a user