From Terraform Drifts to a Standardized, Scalable Cloud with a Centralized Control Plane

About

Headquarters
Industry

If you’re running any workload on a public cloud, you already know that maintaining compliance and security is critical.

A leading virtual education platform serves millions of students and educators worldwide. It manages a distributed architecture on AWS and relies heavily on Terraform to orchestrate its infrastructure. With over five years of Terraform code spread across 50 repositories, it faced challenges in managing large-scale cloud environments, such as Terraform drifts, inconsistent configurations, and a lack of visibility.

They turned to ControlMonkey to address these issues, aiming to modernize its Terraform operations and create a standardized, scalable infrastructure.

The Challenges

Before adopting ControlMonkey, the DevOps team encountered several operational challenges that worsened as they scaled.

  • Terraform Drifts: Years of Terraform code and multiple users modifying resources in production through ClickOps have led to mismatched versions and frequent drifts, necessitating hours of manual investigation.
  • Lack of Visibility: Understanding the state of resources across 50 repositories was challenging without a central control plane.
  • Inconsistent CI/CD Pipelines: Each repository used different CI scripts, leading to inefficiencies, confusion, and lack of standardization.
  • Compliance Audits: Ensuring compliance with CIS and PCI standards in multiple regions was time-consuming, especially during audit preparation.

The Solution

After discovering ControlMonkey through an online search, they quickly started a POC and began implementing the platform. Within a day, they had onboarded their first organization, and its benefits became evident to other DevOps team members and engineering group teams. The POC’s results were promising, so they chose ControlMonkey as its Terraform Automation Platform. 

The Key capabilities leveraged by the DevOps team include the following:

  1. Drift Detection & Remediation: Real-time detection of infrastructure drifts with one-click remediation significantly reduced manual investigation time, saving the DevOps team countless hours. 
  2. Terraform CI/CD: Unified pipelines with GitOps standardization ensured compliance across all repositories, simplifying audits for standards like CIS and PCI. This boosted developer confidence in Terraform and made it more user-friendly.
  3. Complete Asset Inventory: A centralized control plane provided a clear yet deep view of the infrastructure, allowing the team to fully understand the current state of their cloud resources and transition from reactive to proactive management.
  4. Identifying Unused Resources: With the missing visibility provided by the ControlMonkey platform, the team was able to identify and eliminate zombie resources, resulting in immediate savings that covered the cost of the platform.

The Results

Within a year of using ControlMonkey to automate and govern cloud infrastructure, they have achieved:

  • Improved DevOps Efficiency: Terraform task lead times were cut by an average of 20%, freeing the team to focus on higher-value work and strategic innovations. 
  • Terraform Accessibility and Collaboration: ControlMonkey is used by 15 DevOps engineers daily and by more than 100 developers weekly.
    ControlMonkey is a cross-team infrastructure collaboration platform that makes Terraform more accessible to less proficient developers. 
  • Standardization Across Repos: ControlMonkey brought consistency to their CI/CD pipelines, reducing errors and misconfigurations, enhancing reliability, and ensuring compliance. 
  • Increased Scalability: The ControlMonkey platform enabled faster, more efficient scaling of cloud resources on AWS infrastructure. 
  • Cost Savings: Identifying unused VPCs and other zombie resources has already saved the company significant costs.

“The cost savings were so significant that we could cover the annual expense of the ControlMonkey platform, which I found remarkable.”

Ivan Carrion, Principal DevOps Engineer

Future Plans

ControlMonkey is helping the DevOps team to implement new Terraform CI/CD policies to restrict resource usage, enhance compliance, and cut costs.
The platform has allowed for the complete shutdown of console operations (ClickOps), enabling them to fully utilize Infrastructure as Code (IaC) and maximize Terraform’s potential.

Conclusion

ControlMonkey has been crucial in helping the DevOps team modernize its Terraform operations, improve visibility, and reduce costs. By resolving significant bottlenecks and optimizing workflows with Terraform Automation, they are better prepared to scale infrastructure and concentrate more on innovation.

Headquarters
United States
Industry
Cyber Security

If you’re running any workload on a public cloud, you already know that maintaining compliance and security is critical.

“ControlMonkey gave us the confidence to start our Terraform migration project and enabled us to shorten the time span significantly while minimizing DevOps hours required to accomplish the task”

Roei Aharoni

CTO

“ControlMonkey helped us shift to Infrastructure as Code easily and swiftly, while saving 80% of the migration time. Now we manage our AWS Infrastructure in a GitOps methodology through the ControlMonkey platform, with no ClickOps operations, saving countless hours of the DevOps time for infrastructure provisioning and management.”

Doron Gutman

Head of DevOps

“ControlMonkey helped us discover which resources were not managed by Infrastructure as Code and easily migrate them into Terraform with a single click. ControlMonkey shortened our migration project timeline by 53% and saved valuable DevOps hours.“

Ron Gruner

VP R&D (Granulate)

“As a DevOps team with members spread across multiple time zones, it was crucial for us to work with one centralized system responsible for modifying our infrastructure in production. Thanks to ControlMonkey’s CI/CD solution, we now manage more infrastructure in less time and our productivity has increased by 30%.”

Anton Yurchenko

Director of DevOps & Data

“As a company that manages huge clusters of AWS resources, the ControlMonkey Platform and specifically its GitOps pipeline capabilities is an integral part of our infrastructure deployment process, enabling us to shift left our infrastructure policies, best practices, and guardrails to make sure our production environment is stable, compliant and secure.”

Yoni Farin

CTO

After a year of using ControlMonkey, the results have been nothing short of transformative for our DevOps team and the entire organization. It’s completely changed how we manage and scale our cloud infrastructure.
Ivan Carrion
Principal DevOps Engineer
Headquarters
Redwood City, California
Industry
Ed-Tech

A 30-min meeting will save your team 1000s of hours

Let's Talk
Also available on:
Platform
Solutions
Customers
Resources
Company
Icon-linkedin Youtube
© 2025 ControlMonkey LTD. All rights reserved
Compliant AWS environments in minutes, with Self-service Infrastructure
Learn how to enable other teams such as Dev and QA to launch pre-defined compliant AWS environments in minutes, by using Terraform.

Contact us

We look forward to hearing from you

AWS Governance & DevOps Productivity with Terraform

Learn how how to shift-left cloud governance with Terraform in this webinar brought to you by AWS and ControlMonkey.

We look forward to hearing from you!

ControlMonkey

Terraform Best Practices with ControlMonkey Webinar

Check out our latest webinar with DoIT International.

In this webinar we showcase together with DoIT how ControlMonkey is helping DevOps teams to make the transition from ClickOps to GitOps easily with Terraform.

This website uses cookies. We use cookies to ensure that we give you the best experience on our website. Privacy policy

Accept