Implementing an AWS cloud migration for a revolutionary pharmacy

October 1, 2024

Professional Services

Public sector‎ ‎ ‎ ‎ |‎ ‎ ‎ ‎

Case study

Creating a cost-effective and highly available AWS solution for an electronic pharmacy serving citizens across Africa. 

Share

AWS cloud migration

A company in the health services industry, using cellular devices to co-ordinate pharmaceutical logistics, needed to migrate to the Amazon Web Services (AWS) platform to attain a highly available and cost-effective cloud solution.

As an electronic pharmacy serving a variety of African countries, a fault-tolerant and highly available system is a critical requirement. The solution leverages a mobile application used by pharmaceutical distribution unit administrators, drivers and client administrators to track the end-to-end delivery of medical packages. In addition, we deliver ongoing operational support and managed services to ensure the mobile solution's AWS environment operates reliably, securely, and efficiently.

Objectives

BBD assisted in implementing and designing the architecture for the mobile solution on AWS. Optimising the operational cost associated with running applications on the AWS platform—while taking into consideration the appropriate availability, scale and security concerns—had been an integral component to the cloud consulting services delivered. We have provisioned the components and services on AWS to operate the mobile solution’s pre-production and production environments. Operational and billing alerts were set up to notify relevant stakeholders of operational failures and higher-than-expected billing accruing.

Overview of the solution

The company relies heavily on high availability as it offers a 24/7 service to clients. This requirement is catered for by the AWS platform, as it provides high availability in various forms. The current platform, developed with assistance from BBD, has a traditional three-tier architecture.

  • The Route 53 service provides Domain Name System (DNS) availability and a 100% available Service
    Level Agreement (SLA) from AWS
  • A CloudFront managed content delivery network, with a 99.9% availability SLA for content distribution
  • Simple Storage Service (S3) for static content hosting, with a 99.9% availability SLA
  • Elastic Compute Cloud (EC2), including elastic load balancers for the application tier, in a multiple availability zone (multi-AZ) deployment model
  • Relational Database Services (RDS) for the persistence tier in a multi-AZ deployment model. RDS instances deployed in a multi-AZ fashion have a 99.95% availability SLA

AWS provides a 99.99% availability SLA for EC2, where non-availability is defined as either complete unavailability of an entire EC2 region or more than one availability zone. CloudFront enables the company to seamlessly distribute static content via the AWS Content Delivery Network (CDN) at edge locations across the world. The launch of AWS CloudFront points of presence in South Africa has allowed clients to download content at a significantly lower latency. Together with AWS S3 static website hosting, CloudFront is used to serve web content for the single page application. Using CloudFront dramatically reduces operational concerns by making use of the serverless computation paradigm.

Amazon Certificate Manager makes certificate management a non-concern and its integration with CloudFront allows for cross-cutting enforcement of encrypted network traffic. By using CloudFront to serve both static content from S3 and dynamic content from APIs running on auto-scaled EC2 instances, the Web Application Firewall (WAF) and Shield service makes it very easy to protect against common web attacks such as SQL injection and DDoS attacks from a security perspective. AWS RDS add immense value to the stack due to features such as multi-AZ deployments, automatic backups, point-in-time restore and easy set-up of read-replicas. Multi-AZ deployments with RDS means that it is possible to conduct operational tasks on the primary database and database operations will seamlessly be redirected to the secondary instance.

BBD additionally provides ongoing managed services and operational support to ensure the mobile solution’s AWS environment remained reliable, secure, and cost-effective. This included continuous monitoring, performance optimisation, and proactive maintenance of the infrastructure. Our team ensures that any issues are quickly identified and resolved, while regular assessments and adjustments are made to align the environment with evolving business needs. This operational support guarantees seamless performance and scalability, enabling the client to focus on delivering value to their users. 

Overview of the solution

The company relies heavily on high availability as it offers a 24/7 service to clients. This requirement is catered for by the AWS platform, as it provides high availability in various forms. The current platform, developed with assistance from BBD, has a traditional three-tier architecture.

  • The Route 53 service provides Domain Name System (DNS) availability and a 100% available Service
    Level Agreement (SLA) from AWS
  • A CloudFront managed content delivery network, with a 99.9% availability SLA for content distribution
  • Simple Storage Service (S3) for static content hosting, with a 99.9% availability SLA
  • Elastic Compute Cloud (EC2), including elastic load balancers for the application tier, in a multiple availability zone (multi-AZ) deployment model
  • Relational Database Services (RDS) for the persistence tier in a multi-AZ deployment model. RDS instances deployed in a multi-AZ fashion have a 99.95% availability SLA

AWS provides a 99.99% availability SLA for EC2, where non-availability is defined as either complete unavailability of an entire EC2 region or more than one availability zone. CloudFront enables the company to seamlessly distribute static content via the AWS Content Delivery Network (CDN) at edge locations across the world. The launch of AWS CloudFront points of presence in South Africa has allowed clients to download content at a significantly lower latency. Together with AWS S3 static website hosting, CloudFront is used to serve web content for the single page application. Using CloudFront dramatically reduces operational concerns by making use of the serverless computation paradigm.

Amazon Certificate Manager makes certificate management a non-concern and its integration with CloudFront allows for cross-cutting enforcement of encrypted network traffic. By using CloudFront to serve both static content from S3 and dynamic content from APIs running on auto-scaled EC2 instances, the Web Application Firewall (WAF) and Shield service makes it very easy to protect against common web attacks such as SQL injection and DDoS attacks from a security perspective. AWS RDS add immense value to the stack due to features such as multi-AZ deployments, automatic backups, point-in-time restore and easy set-up of read-replicas. Multi-AZ deployments with RDS means that it is possible to conduct operational tasks on the primary database and database operations will seamlessly be redirected to the secondary instance.

BBD additionally provides ongoing managed services and operational support to ensure the mobile solution’s AWS environment remained reliable, secure, and cost-effective. This included continuous monitoring, performance optimisation, and proactive maintenance of the infrastructure. Our team ensures that any issues are quickly identified and resolved, while regular assessments and adjustments are made to align the environment with evolving business needs. This operational support guarantees seamless performance and scalability, enabling the client to focus on delivering value to their users. 

Approach

BBD implemented a robust framework to deliver managed services and operational support for the client’s AWS environment. This included integrating the environment with BBD’s comprehensive ITSM toolchain, comprising CloudWatch, Grafana, and Jira, to enable real-time monitoring, issue tracking, and streamlined incident management. 

 The team configured alerts to notify the team of anomalies or operational failures, ensuring rapid resolution through proactive support. Regular system reviews and automated maintenance processes were conducted to optimise performance, enhance scalability, and align with the client’s evolving needs. This proactive approach ensured the environment remained secure, reliable, and cost-efficient. 

Impact of BBD's Partnership

  • Enhanced system reliability with real-time monitoring and rapid issue resolution through integrated tools 
  • Improved operational efficiency with automated maintenance and streamlined incident management 
  • Cost savings through continuous performance optimisation and resource alignment 
  • Greater scalability and adaptability to evolving business needs, ensuring long-term platform sustainability 
  • Improved stakeholder confidence with proactive alerts and seamless communication of issues via Jira

Case Studies

Success stories

BBD achieves AWS Cloud Operations Competency
Sustaining a telecom giant through Cloud Managed Services
Implementing a cloud-native solution for a Forex trade project
Migrating a retail banking platform
Modernising financial services through automation
Streamlining company-wide container platform adoption
Leveraging technology to drive ESG data outcomes for Element22
Decoupling and replicating a monolith application
Enhancing capital investment planning with a rapid migration
Futureproofing a retail website with the cloud