Secure, scalable, best-practice DevOps Foundations for modern platform teams
Achieve a state-of-the-art DevOps posture optimized for your business, with ongoing commercial maintenance and support.
Built for
End-to-end infrastructure automation
Vend new AWS accounts at the push of a button
Vend new AWS accounts at the push of a button
Account Factory helps you quickly provision new accounts for your teams that come out-of-the-box with:
Secure baselines and guard rails
Secure network access
SSO Access
A GitOps Infra pipeline
Control Tower Integration
Scaffold new infrastructure from an approved module catalog
Scaffold new infrastructure from an approved module catalog
IaC Library. Gain access to a library containing hundreds of production-ready, fully-tested, well-documented OpenTofu/Terraform modules written by experts.
Curated module catalog. Browse a catalog of approved infrastructure modules, bootstrapped with the Gruntwork Library, and easily filter to find what you need.
Module templates. Select a template to help configure your module for common use cases.
Scaffolding. Scaffold new modules with a keystroke, with intelligent prompts for any configurations exposed in the selected template.
Deploy with confidence using GitOps automated workflows
Deploy with confidence using GitOps automated workflows
GitOps automation. Gruntwork Pipelines will run plan for any infra change pull request, and apply those changes when it gets merged.
Policy enforcement. All pipelines enforce a standard set of company policies, giving you confidence in every change.
Approval Workflows. Add safeguards by requiring approvals depending on the nature of the change.
Secure. Your prod AWS credentials are kept isolated from developers so the blast radius of any changes is kept to a minimum.
Stay up-to-date, automatically
Stay up-to-date, automatically
Automatic Updates. Patcher [BETA] opens PRs automatically when new versions of infrastructure dependencies get released.
Handle breaking changes. Breaking changes for Gruntwork Library modules come with patches that help you update your code automatically.
Promotion workflows. Promote changes across environments — from dev to stage to prod — so you can build confidence at each step.
Commercial maintenance & support. Get ongoing updates to all Gruntwork Library modules, as well as commercial support for all Gruntwork products.
Work with a Gruntwork Solutions Architect to set up your DevOps Foundations
Gruntwork's tools deliver business critical infrastructure to thousands of businesses.
Dedicated Solutions Architect
Work with a Gruntwork Solutions Architect to design, set up, and configure your infrastructure.
Gap assessment
We’ll work with you to understand where you are now, where you’d like to go, and advise you how to get there.
Live video setup calls
Work face-to-face with your Solutions Architect for high bandwidth collaboration.
Learn by doing
Take a hands-on role in the process so you understand your new infrastructure end-to-end.
IaC Foundational patterns
We give you best-practice account baselines, folder structures, and infrastructure patterns.
Network configuration
We’ll help you deploy a first-class network topology.
Many Use Cases.
One Integrated Solution.
Scale to hundreds of teams, thousands of devs
Save time and hassle every time you need to spin up a new team or sandbox account. DevOps Foundations streamlines the process, allowing you to provision new SDLC multi-account infrastructures for your teams in no time, while providing guard rails and controls so you can have confidence in the everything your teams deploy.
Pass audits the first time, and every time
Establish a truly security-first infrastructure with DevOps Foundations. Our CIS AWS Foundations Benchmark compliant module catalog, unique Gruntwork Pipelines security model, and ongoing security patches and compliance updates give you out-of-the-box confidence and ensure you remain secure and compliant over time.
Adopt DevOps and Agile Methodologies
Empower your app teams to deploy the infrastructure they need while providing guard rails and retaining control over your infrastructure.
DevOps Foundations integrates products to deliver end-to-end automation.
Quality in, quality out. Hardened modules from your internal catalog delivered to developers in their native workflow with full control and visibility. True self-service to make your engineers happy and productive.
Account Factory
Quickly provision new AWS accounts and multi-account teams with secure account baselines and network topologies.
Pipelines
Deploy all of your infrastructure changes with secure GitOps workflows.
Patcher
Keep your infrastructure up-to-date, automatically, even in the face of breaking changes.
IaC Library
Leverage a reusable, production-grade, battle-tested, and CIS compliant library of over 300 Terraform modules.
Complete Setup
Work with a dedicated solutions architect to configure your foundations to suit the needs of your business and your teams.
Maintenance and Support
Get commercial support, and regular updates for everything in the Gruntwork IaC library.
Built to Gruntwork standards
Standards compliant
All your new AWS accounts will meet the Center for Internet Security (CIS) AWS Foundations Benchmark.
Secure by default
We build every product with security-first principles, so you can have confidence in everything you deploy.
Well-architected, enterprise-grade
Well tested, thoroughly documented, built for high availability, scalability, and durability in accordance with the AWS well-architected framework.
Quality code
All code we write adheres to a set of publicly published coding standards, for consistently legible code that’s easy to extend as needed.
Commercially maintained
Gruntwork code is backed by automated tests and maintained by our DevOps experts, so your deployment keeps improving.
Commercially supported
We support Terragrunt, all Gruntwork-authored Terraform/OpenTofu code, Pipelines, Patcher, and Account Factory.
It’s like expert consulting — only better
Tired of traditional consulting? So are we! Our DevOps Foundations solution provides unique benefits over both DIY and traditional consulting.
Do it yourself | Consultant | ||
Starting point | An enterprise platform fed with battle-hardened code | From scratch | From scratch |
Incentives | Build an amazing product | Minimize investment of time | Maximize billable hours |
Scope of work | End-to-end expertise | Unknown unknowns | Often over budget and skill constrained |
Time to launch | 2-4 weeks (highly predictable) | 6 – 18 months (highly variable) | 3 – 12 months (highly variable) |
Cost | Annual Subscription | $400,000+ per year (2 Devs) | $1,650,000+ per year (2 Consultants at $350/hr) |
Maintenance | Automated low-maintenance | Time consuming | Expensive hourly cost |
Support | Commercial support | Self-Help | Expensive hourly cost |
7.8k
Stars on Github
7.3k
Stars on Github
20k
Stars on Github
We may be experts, but don’t take our word for it
Lay your new DevOps Foundations today.
Chat with a DevOps expert and see how our integrated solution can meet the needs of your business and your teams.
Frequently Asked Questions
What version of OpenTofu and Terraform are supported?
What cloud providers do you support?
What Version Control System do you support?
Is an annual subscription required?
Can I purchase products individually?
© 2024 Gruntwork