This post is the first in a two-part series on migrating workloads from Azure Commercial Cloud to Azure Government Cloud (AGC), with FedRAMP High compliance as a core requirement.
Our client, a full-stack edge computing platform provider, deployed their solutions on Azure Kubernetes Service (AKS) with 40+ microservices for enterprise customers. The platform served this customer base well, but a new government contract changed the stakes. Workloads now had to meet FedRAMP High compliance, which enforces strict controls for handling government data.
The client's infrastructure deployment pipelines relied on GitHub Actions, which are not FedRAMP-compliant. Without a compliant automation framework, provisioning and managing more than 40 microservices would be a challenge.
(more…)