What does "landing zone" mean in cloud computing?

Simon Edward • 16 February 2024

Landing zones are consoles that IT can use to manage multi-account environments. Learn more about their advantages and how to get started with them.

Landing zones are consoles that IT can use to manage multi-account environments. Learn more about their advantages and how to get started with them.

 

In the world of tech, one sign of technological advancement is when a phrase becomes redundant.

 


Just think of "smartphones". For most people, a phone is a smartphone. Today, you don't specify that your phone is hooked up to the internet – you specify the opposite by talking about a "brick phone" or "dumb phone". These usages reflect the ubiquity of smartphones in our daily lives.

 


Something similar is happening in the world of cloud computing. Once upon a time, "multi-cloud" computing was the boutique option. Today, the vast majority of companies use multi-cloud environments. It would be more noteworthy if all their workloads were running on a single cloud service.

 


This trend towards the multi has all sorts of benefits. But nothing in life is single-edged and for every silver lining, there's a splash of dark grey.

 


With multi-cloud environments, these take the form of security issues, a lack of scalability, a lack of flexibility and a lack of central management.

 


Enter the "landing zone". This is a multi-account environment that allows you to onboard workloads and teams with ease. It's a centralised framework for executing cloud migration successfully and painlessly.

 


In this article, we break down what exactly a landing zone is and does – and when you should consider creating one.

 


What is a landing zone?

 


At its most basic, a landing zone is a secure multi-account environment where you onboard workloads and teams. While you're there, you can secure and isolate workloads, meaning an improved security posture.

Picture representing digital security.

 

Without a landing zone, you can find yourself suffering from a data-induced headache. You may have users with the wrong access permissions. You may have stacks of untagged resources with no clear sense of who's using what when. What's more, you're showing off a large and tempting attack surface to hackers.

 


In short, it's about improved management of a multi-cloud environment – and while it's not a prerequisite of a successful infrastructure, it can provide tangible benefits.

 


What are the benefits of a landing zone?

 


In our book, there are five main advantages to creating a landing zone for multi-account management.

 


1. Better security

 


We're living at a time when security prioritises simplicity above all else: the Age of Zero Trust, you could call it. But that doesn't mean that a single security policy can cover the whole of an enterprise's network.

 


Different workloads need different security policies. A landing zone allows you to administer these with ease.

 


2. Everything in one place

 


Let's say that today's the day you need to onboard a new team to your cloud environments. With a landing zone, you can do this from a single console. It's the enterprise equivalent of controlling your thermostat, lights and CCTV all from your phone.

 

Picture of a home CCTV camera.

 

This makes it easier than ever to onboard new teams and administer security policies at the level of the team, sub-team or individual.

 


3. Let there be light

 


Every IT technician knows what it's like to be confronted with reams of data that are poorly tagged or not tagged at all. A landing zone gives you a single spot where you can tag resources, making it clear who builds what and when it's used.

 


4. Provision just the right amount

 


Cloud sprawl is bad for your budget and your blood pressure. One reason for this is that it can often lead to siloed services that use too much (read: cost too much). From your landing zone, you can ensure that environments are getting the resources they need – and no more.

 


5. Better security

 


"Everything in one place" applies to your management tools – not the data itself. With a landing zone, you can separate accounts. This means that if the day comes when you're hit by a data breach, it will be limited to isolated accounts, not the whole shebang.

 


Landing zones are also places where you can limit access to cloud accounts – an important step towards becoming GDPR-compliant.

 


When should you create a landing zone?

 


In cloud tech, there's no one-size-fits-all solution. It's one reason why cloud consultants can be so helpful – like an expert tailor, they create or fine-tune an infrastructure that's in line with your unique business requirements.

 


Landing zones aren't for everyone. But if any of the following five scenarios ring a bell, a landing zone could be for you.

 

  1. Your infrastructure is multi-cloud, with workloads split between public, private and hybrid clouds or some combination of the three.
  2. You need your data to be isolated, be it for more efficient auditing or recovery.
  3. Your colleagues access workloads via more than one user account.
  4. You don't have a clear understanding of what's being spent on different cloud environments.
  5. You have a security policy that means you need to segment access and resources.

 


How do you create a landing zone?

 


DIY landing zones are possible. But they require plenty of time and expertise. Many enterprises choose instead to turn to one of the big cloud providers or to a cloud consultant for outside help.

 


All the major cloud providers offer landing zones. That includes Google Cloud, AWS Control Tower, Azure and IBM's VPC landing zone.

 


Another option is to work with a cloud consultant. This is the cloud equivalent of having a personal shopper. They'll look at your business goals and requirements and match you up with a solution that works for you.

 


Conclusion

 


Landing zones can simplify the migration, management and administration of workloads and apps. It can lead to better security, more accurate provisioning, better access management and greater visibility. Above all, it can make life easier for you as you manage a complex multi-cloud environment.

 


Are you looking for a cloud migration company ? Our experts are ready to help. Get in touch today to book an introductory chat.

 



 

These days, the majority of enterprises hold huge quantities of data. Find out how big clouds

Why big data depends on big clouds

by Simon Edward 26 February 2025
These days, the majority of enterprises hold huge quantities of data. Find out how big clouds can help.
What are cloud APIs and how can they help your business bloom? Find out in our jargon-free guide.

Cloud basics: APIs and their role in cloud computing

by Simon Edward 24 February 2025
What are cloud APIs and how can they help your business bloom? Find out in our jargon-free guide.
Cloud computing costs are set to rise in 2025. Are you paying too much? Join us as we explore

How much are businesses spending on the cloud in 2025?

by Simon Edward 22 February 2025
Cloud computing costs are set to rise in 2025. Are you paying too much? Join us as we explore the facts.
How can NSX Application Platform (NAPP) help you improve your security posture? Find out

VMware's NSX Application Platform: what does it do?

by Simon Edward 17 February 2025
How can NSX Application Platform (NAPP) help you improve your security posture? Find out in our guide.
Ireland's cloud industry is booming. Join us as we celebrate 6 of the innovators who made it happen.

6 cloud computing innovators from Ireland

by Simon Edward 14 February 2025
Ireland's cloud industry is booming. Join us as we celebrate 6 of the innovators who made it happen.
Cloud costs have a way of snowballing. Find out how to manage them in more complex environments.

How to manage costs when the cloud gets complex

by Simon Edward 11 February 2025
Cloud costs have a way of snowballing. Find out how to manage them in more complex environments.
Consumers and enterprises rely on the cloud for storage. But how does it work? Get to grips with the

Cloud basics: how does storage work in the cloud?

by Simon Edward 7 February 2025
Consumers and enterprises rely on the cloud for storage. But how does it work? Get to grips with the basics.
How can you manage the security and compliance of your cloud workloads? Find out how a CSPM can help

What is cloud security posture management?

by Simon Edward 4 February 2025
How can you manage the security and compliance of your cloud workloads? Find out how a CSPM can help.
What do Reddit users want to know about VMware NSX? Get the questions – and answers – in our article

VMware NSX: Reddit's questions answered

by Simon Edward 27 January 2025
What do Reddit users want to know about VMware NSX? Get the questions – and answers – in our article.

Why is Broadcom pushing private clouds?

by Simon Edward 24 January 2025
Recently, Broadcom has told enterprises that private clouds are the way to go. Find out why in our article. 
More posts