CarSaver: A complete one-stop solution for all your car buying requirements
Services: Managed Engineering Teams, AWS Managed Service ECS, DevOps, Cloud Architecture Design, and review
- 40-50% reduction in development and staging infrastructure cost
- Reduced the overall downtime of the system by 3X
- Infrastructure as a code, hence faster provisioning
CarSaver’s platform offers an all-in-one solution for buying, renting, leasing, insuring, and upgrading cars from 30+ automobile brands, including Hyundai, Mercedes-Benz, Mazda, Volvo, and Porsche. The platform is built on AWS using secure, multi-tenant infrastructure, AWS database services, and infrastructure-as-code principles to ensure regulatory compliance and simplify management for CarSaver’s customers.
- To build an efficient and secure multi-tenant solution.
- Checking the eligible customers for Upgrades and generating deals for them
- Configuring a recurring process for marketing and nurturing the leads
- Displaying suitable trades to upgrade their current vehicles
- Generating different offers for the customers
- Displaying proper finance amounts and calculations
- The client wanted a trade recommendation service for trades in second-hand cars
- For security and compliance purposes,the client wanted to audit each and every incoming request that comes into their network
- The client wanted to ensure that the database is compliant with data protection policies to ensure compliance with regulatory requirements
- The client wanted to ensure the configuration of the AWS resources and environment should be in compliance state, and the security team should be notified in case of violation.
- To make infrastructure management less error-prone.
- Remote access to AWS resources was required, and it should be integrated with their existing SSO.
- A reliable and secure code was required.
Proposed Solution & Architecture
- For checking eligible customers and generating deals, our team developed a system using AWS ECS as the container orchestration service. The system leveraged AWS Lambda functions to perform the necessary calculations and used DynamoDB as the database service to store customer data.
- To fulfill the client’s marketing and lead nurturing needs, we integrated third-party tools like Iterable for marketing automation and Voile for customer management. These tools were seamlessly integrated within the AWS ECS infrastructure, ensuring efficient marketing and lead nurturing processes.
- To display the best trades for users looking to upgrade their vehicles, our experts utilized Offerlogix, a recommendation engine integrated with the AWS ECS environment. Additionally, Amazon RDS was utilized as the data storage service for storing trade-related data.
- To provide users with different offers, Offerlogix, integrated with AWS ECS, was used to dynamically display various deals based on user preferences and requirements.
- For finance amount calculations, AWS Lambda functions within the AWS ECS environment were employed to perform the calculations and return the results to users.
- Our team leveraged its expertise in AWS ECS to develop a reliable and secure multi-tenant solution for CarSaver. The database architecture utilized Amazon Aurora, providing high performance and scalability, while ensuring data protection compliance. The AWS Backup service was employed to ensure robust data protection and compliance with data retention policies.
- We utilized AWS ECS to efficiently manage and orchestrate containerized resources. AWS Config was set up to enable the client to assess, audit, and evaluate the configurations of their AWS resources and environment, ensuring compliance and security.
- To define and deploy cloud infrastructure as code, Simform’s experts leveraged the AWS Cloud Development Kit (AWS CDK), a modern and developer-friendly approach. This allowed for efficient and consistent deployment of infrastructure resources using AWS CloudFormation, seamlessly integrated with AWS ECS.
- To manage common access and security requirements, we implemented a Hub and Spoke networking model using AWS native networking tools, including AWS Client VPN, network firewall, transit gateway, VPC, and more. This architecture ensured centralized management, enhanced security, and efficient network traffic routing within the AWS ECS environment.
- To enforce secure access control, our experts ensured that all the AWS services within the ECS environment communicated with IAM roles and permissions. This granular control ensured that only authorized entities could interact with resources, minimizing the risk of unauthorized access and maintaining robust security measures throughout the system. By leveraging IAM, CarSaver achieved fine-grained control over permissions, enhancing security and aligning with best practices for managing access to AWS services.
- With Simform’s expertise in AWS ECS, CarSaver benefited from a reliable and secure multi-tenant solution. The implementation showcased the power of AWS ECS in providing scalable container orchestration, ensuring compliance with data protection policies, streamlining infrastructure management through infrastructure-as-code, and implementing robust security measures for network and code-level security.
Metrics for Success
- Reduced development and staging cost by 40-50%: The expenses for development and staging infrastructure were lowered by 40-50%.
- System downtime decreased by 3X: The system is now down for 1/3 of the original duration, reducing overall downtime.
- Faster provisioning with infrastructure as code: Using infrastructure as code allowed for faster provisioning of resources.
- Granular IAM-based access control is enforced for all AWS services within ECS, minimizing unauthorized access, enhancing security, and aligning with best practices.
AWS Services Used
- AWS Lambda:– We ran ETL jobs on AWS Lambda to generate prospects for the client, for marketing, for nurturing these prospects, and for generating deals for the users.
- Amazon Aurora:– Database storage solution that we used for database compliance purposes also.
- Amazon CloudWatch:– We used AWS Cloudwatch to generate alarms and for application log generation and as a monitoring solution to monitor the resource utilization metrics.
- Amazon CloudFront:– We have used Cloudfront to serve static content.
- Amazon S3 buckets:– We used AWS S3 buckets to store configuration files and to store customer data files.
- Amazon Elastic Container Service:– All application services run in the container service. Thus we used the Amazon Elastic Container Service for application deployment as a container orchestration tool.
- Elastic Load Balancing:– The AWS elastic load balancing service is used as a service load balancer.
- AWS Auto Scaling:– The client wanted a scalable solution. So we used AWS autoscaling to scale up or down according to incoming traffic/load.
- AWS ELasticache:– To cache sessions and common data to reduce pressure on backend databases.
- AWS CDK & CloudFormation:– For IaC(infrastructure as a code).
- AWS ALB:– We are using it for load balancing.
- AWS WAF:– AWS WAF helps us to protect against common web exploits and bots that can affect availability, compromise security, or consume excessive resources.
- AWS Config:– AWS Config is a fully managed service that tracks the configuration history and configuration change notifications to use security and governance.
- AWS client VPN:– A fully-managed remote access VPN solution we use to securely access resources within AWS.
- AWS network firewall:– AWS Network Firewalls intrusion prevention system (IPS) provides active traffic flow inspection so we can identify and block vulnerability exploits.
- AWS Security Hub:- AWS Security Hub provides a comprehensive view of our security state in AWS and helps check our environment against security industry standards and best practices.