# Cloud Adoption Framework

# Guiding Principles

* **Business enablement:** Align to organization's business objective and risk framework
    

Foundations of Zero Trust

1. Identity
    
2. Devices
    
3. Network
    
4. Applications
    
5. Data
    

![Created with Bing Image Creator](https://cdn.hashnode.com/res/hashnode/image/upload/v1701045873422/2c2d81b3-a727-48bf-b144-76f69034f1eb.png align="center")

* ## Zero trust principles
    
* 1. **Assume breach**
        
* 1. **Explicit verification**
        
    2. **Least-privileged access**
        

### **Example of a tailored Azure landing zone hierarchy**

![Diagram that shows a tailored Azure landing zone hierarchy.](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/landing-zone/media/alz-tailor-hierarchy-2-additional.png align="left")

## **Points to consider**

* Tailoring the hierarchy isn't mandatory. The default archetypes and hierarchy we provide are suitable for most scenarios.
    
* **Don't re-create your organizational hierarchy**, teams, or departments in archetypes.
    
* Always try to build on the existing archetypes and hierarchy to meet new requirements.
    
* **Only create new archetypes when they're truly needed.**
    
* Don't create archetypes for environments like development, test, and production.
    

> # Green field. New environment
> 
> # Brown Field. Existing environment

## **References**

* [https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/landing-zone/tailoring-alz#what-is-a-landing-zone-archetype-in-azure-landing-zones](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/landing-zone/tailoring-alz#what-is-a-landing-zone-archetype-in-azure-landing-zones)
    
* [https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/organize/cloud-security](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/organize/cloud-security)
    
* [https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/strategy/define-security-strategy](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/strategy/define-security-strategy)
