Services
Cloud Solutions
Industries
E-commerce & Retail
Product
A multi-brand retailer based in Canada, it specializes in selling designer fashion and high-end streetwear. Since 2003, the platform has grown to deliver products to 114 countries worldwide, supporting websites in multiple languages, including Chinese, French, English, Japanese, and Korean. It generates an average of 100 million monthly page views.
Business needs
- Develop a new e-commerce system functionality to improve the return of goods, loyalty programs, customer notifications, etc.
- Adapt the AWS infrastructure to be more scalable and flexible, allowing for efficient handling of varying workloads and growth.
- Develop a more effective access control system to minimize risks of cross-environment errors and grant developers the necessary autonomy.
- Distribute AWS resource ownership and management to alleviate bottlenecks and enhance agility in the development process.
- Establish a comprehensive business continuity and disaster recovery strategy aligned with application needs and infrastructure capabilities.
- Restructure the AWS accounts to enable precise cost tracking and attribution, facilitating better financial management and decision-making.
Suggested solutions from svitla
- Focused on implementing new features and developing new pages in the e-commerce system, prioritizing customer needs and feedback to enhance the overall user experience.
- Deployed AWS Control Tower to enforce and manage governance, security, operations, and compliance across AWS accounts. A well-architected multi-account environment was established via Landing Zone, setting a baseline for multi-tenant architecture and security.
- Structured AWS accounts within Organizational Units (OUs) for application environments, set permissions, restrictions and policies at the OU level, and ensured all accounts followed a standardized baseline configuration.
- Utilized AWS Security Hub service to collect data across all accounts into the “Security” account, giving the Security team full visibility and ensuring compliance. Consolidated AWS CloudTrail logs, AWS Config, and VPC Flow Logs into the “Log Archive” account for enhanced security management.
- Provided all user access to AWS accounts through Active Directory group memberships, managed by an ITOPS ticketing system, and centralized all AWS account access and permissions via AWS Single Sign-On, moving away from IAM users to IAM roles with short-living access keys.
- Platform teams centrally managed Terraform code for Legacy and Shared accounts, while domain teams managed infrastructure in a distributed manner for domain-dedicated AWS accounts.
- Replaced VPC-peered environments with modern network architecture using multiple AWS accounts, AWS Transit Gateways, Route53 private resolvers, Security Groups, VPC endpoints and prefix lists, and site-to-site VPN to the office’s network. Multiple application deployments in the same environment could speak to each other via a shared account, and the Cisco CSR router controls outbound connections.
- Developed a re-platform scenario to migrate self-managed services to native cloud services. Among them, Kubernetes cluster, MongoDB databases and ElastiCache were migrated to Amazon EKS, Amazon DocumentDB, and Amazon ElastiCache, respectively.
- Implemented, tested, and documented disaster recovery scenarios, leveraging the built-in DR features of AWS cloud services like Amazon DocumentDB global cluster and IaC approach using Terraform.
Technologies
Frontend: Vue.js, JavaScript, CSS, HTML
Backend: Node.js, TypeScript, Express.js
Databases: MySQL, MongoDB, Amazon DynamoDB, Amazon DocumentDB, AWS RDS
Cloud: AWS, Amazon EC2, Amazon S3, AWS Lambda, AWS Step Functions, AWS Control Tower, AWS Organizations, AWS Single Sign-On, AWS Security Hub, AWS CloudTrail, AWS EKS
Unit Testing: Mocha, Chai, Jest
CI/CD: Jenkins, Kubernetes, Docker
Networking: AWS VPC, VPC Endpoints, SG, AWS Transit Gateway, Amazon CloudFront, Amazon Route53, Amazon API Gateway
Monitoring: Amazon CloudWatch, AWS X-Ray, AWS Elastic Beanstalk
Value delivered
- Successfully increased profits by seamlessly integrating a new customer loyalty program, directly contributing to higher customer retention and increased sales.
- Upgraded the e-commerce admin platform, enabling the onsite marketing team to efficiently manage orders, tracking, returns, accommodation services, and email notifications, thereby enhancing operational efficiency.
- Significantly improved the visual representation of goods and overall user interface, leading to a better shopping experience and higher customer satisfaction.
- Old-fashioned single-account setup was transformed into multi-account domain-dedicated AWS accounts providing significant security and observability.
- Migrating to AWS cloud-native services enhanced our system's resilience and manageability, supporting scalable growth while simplifying maintenance. This move to fully managed cloud services further ensured GDPR compliance and boosted application performance and availability with serverless services.
- Effectively tackled the high risk of mistakes, scalability issues, and the complexity of access control by transitioning to isolated yet integrated application environments, ensuring scalable, secure, and efficient infrastructure management.
- Implemented disaster recovery scenario significantly improves business continuity and data protection.
See more cases
Digital Transformation for a Real-Time Crime Center Platform
Svitla created a secure RTCC (Real-time crime center) platform that integrates video, drone, and incident data into a single operational dashboard for law enforcement.
Open-Source Security Improvement
Svitla helped an open-source management platform transform its vulnerability detection by enriching its CVE database, automating analysis, and delivering real-time, risk-based insights. This upgrade positioned the company as a frontrunner in open-source security management.
State-of-the-Art SOC for a Global Travel Guidance Platform
We built a high-performing Security Operations Center for a global travel guidance platform, enabling real-time threat detection and response. The system is optimized for processing high number of alerts, significantly reducing detection and response times while ensuring compliance with industry standards.