DEV Community

Cover image for From Good to Great: Using AWS Well-Architected Tool for Cloud Excellence
Ahmed Srebrenica for AWS Community Builders

Posted on • Originally published at srebreni3.Medium

From Good to Great: Using AWS Well-Architected Tool for Cloud Excellence

Operation excellence, Security, Reliability, Performance Efficiency, Cost Optimisation, Sustainability


A few years ago, AWS provided us with the AWS Well-Architected Framework on their website, which describes key concepts, design principles, and architectural best practices for designing and running workloads in the cloud. The page features six pillars: Operational Excellence, Security, Reliability, Performance Efficiency, Cost Optimization, and Sustainability. For each pillar, there is an option to read more about it, as well as a lab option. After some time, AWS enabled us to define workloads through the service AWS Well-Architected Tool. Today, I will write more about how excellent this service is and how it can help our workload function better than before.

Downloaded from:


Create AWS Account. I already have an AWS Account, so I won’t be creating a new one.

Define a workload

You need to do a few steps to define your workload:

  1. Go to your account on AWS Console and type in the search bar AWS Well-Architected Tool.


2. Click the Define workload orange button.


3. You need to define a few parameters for your workload, such as N*ame, Description, Review owner, Environment, and Region. Every other parameter is optional. When you are finished, press the Next* button



4. If you want, you can create a profile or search for it. I won’t do that.


5. By default the AWS Well-Architected Framework is checked. Click the Define workload button.


Workload overview part I

Now that we have our workload, let’s see what options we have available. In the overview section, we have basic information such as:

  • Last updated

  • Overall questions answered

  • Overall risks

  • Workload notes


The Milestones section is very important. In it, we store upgrades, for example, we receive results after the first review, and then based on the results we change certain things related to our application and want to perform a new upgrade. The new upgrade will be displayed in the Milestones section, just like the old one, which will remain there.

The Properties section has properties of our workload that we set before.


In the Shares section, we can share this with the other Principals.

Start reviewing

It’s time to answer the questions for each lens, just click the Start reviewing button.


We have six pillars on the left side, and each pillar has several questions.


In the middle, we have the main question and several sub-questions.


On the right side, we have explanations for every sub-question.


Our task now is to go through each pillar, each question, and each sub-question, and after we finish, it’s necessary to press the Save and exit button and Save milestone button.


Name your milestone and click the Save button.


Workload overview part II

What did you get after you answered the questions? I got 16 high-risk and 4 medium-risk and I have to do everything to minimize the risk.


How can you do the same?

Scroll down and you will see Lenses. Click the High risks number (16).


You will see under the improvement plan what you need to improve.


For example, the question is How do you securely operate your workload? Click the recommended improvement items and you will see something like this:


In my case, I will go to my app and I do as recommended.Don’t forget to click every recommendation, it will guide you to AWS documentation.

Continue reviewing

If you have fixed what was risky, you can go to Continue Reviewing and check off what you have fixed. Go to your workload under the AWS Well-Architected tool and click the Continue reviewing button.


After you have checked off what you have fixed, you need to click the Save Milestone button. I will name it basketball-scoreboard-1.1.


Under the Milestones section, you will see your versions of the AWS Well-Architected tool.



The AWS Well-Architected Tool is essential if you want your workload to operate according to the best AWS practices. Speaking from my experience, the AWS Well-Architected Tool has helped me a lot, especially in terms of security, so I highly recommend using it. As for pricing, there is no additional charge for the AWS Well-Architected Tool. You pay only for your underlying AWS resources.

Top comments (0)