Back to Portfolio
AWS · Terraform · IaC
Earth from space at night showing city lights and cloud infrastructure metaphor for AWS global regions
Cloud Infrastructure · 2025Terraform IaC

AWS Infrastructure
as Code with Terraform

Provisioned and managed production AWS infrastructure using modular Terraform. Version-controlled, repeatable, and zero manual console clicks.

8+
AWS Services
6
Terraform Modules
3 AZ
High Availability
100%
IaC Coverage
01 — ARCHITECTURE

Cloud Architecture

🌐 Internet / Users
Route53 DNS
CloudFront CDN
VPC — 10.0.0.0/16
Public Subnets (3 AZ)
ALB
NAT Gateway
Bastion
Private Subnets (3 AZ)
EKS Nodes
RDS Multi-AZ
ElastiCache
02 — SERVICES

AWS Services Used

🔒
VPC

Multi-AZ private networking with public/private subnets

⚙️
EKS

Managed Kubernetes clusters with node auto-scaling

🗄️
RDS

Multi-AZ PostgreSQL with automated backups

📦
S3

Object storage with versioning and lifecycle policies

🌐
CloudFront

CDN with WAF integration for edge security

🛡️
IAM

Least-privilege roles, OIDC federation for CI/CD

🔀
Route53

DNS management with health checks and failover

⚖️
ALB

Application load balancer with SSL termination

03 — TERRAFORM

Terraform Module Structure

terraform/modules/
📁 networking/# VPC, subnets, route tables, NAT gateways, security groups~320 lines
📁 eks-cluster/# EKS control plane, node groups, IRSA, add-ons~280 lines
📁 rds/# RDS instances, parameter groups, subnet groups, backups~180 lines
📁 iam/# Roles, policies, OIDC providers, service accounts~240 lines
📁 cdn/# CloudFront distributions, WAF rules, S3 origins~160 lines
📁 monitoring/# CloudWatch alarms, dashboards, SNS topics~120 lines
04 — PRINCIPLES

Engineering Principles

Everything is Code

Zero manual clicks in AWS console. Every resource defined in Terraform, reviewed in PRs, deployed via CI/CD.

Modular by Design

Reusable Terraform modules for each service layer. Compose environments by mixing modules, not copy-pasting.

Least Privilege

IAM roles scoped to exact permissions needed. OIDC federation eliminates long-lived credentials in CI/CD.

Multi-AZ Resilience

All stateful services span 3 availability zones. No single point of failure in the critical path.

AWS cloud infrastructure visualization showing global network of interconnected data centers and regions
Multi-Region Ready
Infrastructure that scales from dev to global production
All ProjectsNext: Monitoring & Observability