Which design principle is a best practice for the company to implement?
Organize accounts based on security and operational needs.
Assign multiple sets of related workloads to each production account.
Deploy workloads to the organization’s management account.
Combine production workloads and non-production workloads.
Explanations:
Organizing accounts based on security and operational needs allows for better isolation, governance, and compliance, reducing the risk of security breaches and operational issues.
Assigning multiple sets of related workloads to each production account can lead to resource contention and management challenges, violating the principle of account separation.
Deploying workloads to the organization’s management account is a bad practice because the management account should be used for managing the AWS Organization, not for workload deployment.
Combining production workloads and non-production workloads can create risk and complexity, making it difficult to manage permissions, security, and resource usage effectively.