Insights / Hyperscalers
AWS for startups: where to begin (delivered with Datagnu)
A grounded starting point for AWS, and how Lambdaserve delivers AWS work together with its partner Datagnu.
Amazon Web Services is one of the most widely adopted cloud platforms in the world, with a deep catalogue that covers nearly every kind of workload a software team is likely to build. For a startup, that depth is reassuring rather than daunting, because you do not have to use all of it. The teams that begin well on AWS choose a small set of services that match their first product, learn those services properly, and grow into the rest of the platform as their needs become clearer. At Lambdaserve we run our own systems on the cloud and deliver AWS engagements together with our partner Datagnu, and the advice below reflects how we actually start.
Start small and grow into the platform
The most useful thing to understand about AWS is that you are not expected to adopt the whole catalogue at once. A first product rarely needs more than a handful of services, and a small team is better served by knowing a few of them well than by spreading itself thinly across many. Choose the services that map directly to what you are building, get comfortable operating them, and add to the picture only when a real requirement appears.
This approach keeps your architecture easy to reason about, which matters more in the early stage than any single technology choice. It also keeps your costs legible, because you can see exactly what each part of the system is doing and why. If you are still deciding between AWS and the other major platforms, our guide to choosing a hyperscaler is a good place to begin, since all three are mature and broadly comparable, and the right answer usually depends on your team and your product rather than on the platform itself.
The core building blocks
Almost every product needs compute, a database, file storage, delivery, identity controls, networking, and monitoring. AWS has a named service for each of these, and understanding what each one does is enough to put together a working first system.
For compute, which is where your code runs, AWS offers several styles. AWS Lambda runs your code in response to events without you managing any servers, and it suits small pieces of logic and request handling that do not need to run continuously. AWS Fargate runs containers without you managing the underlying machines, which fits teams that already package their work as containers and want to keep operating effort low. Amazon EC2 gives you virtual machines that you control directly, which is useful when you need full control over the environment or want long-running instances.
For managed databases, Amazon RDS provides relational databases such as PostgreSQL and MySQL with backups, patching, and recovery handled for you, and it is a sensible default for most products that need structured, transactional data. Amazon DynamoDB is a managed database designed for predictable performance at scale and for access patterns based on keys, and it pairs naturally with event-driven and serverless designs.
Amazon S3 holds files of almost any kind, from user uploads to build artefacts to static assets, with durability and access controls built in. Amazon CloudFront serves your content from locations close to your users so that pages and assets load quickly. AWS IAM controls who and what can access your resources, and getting this right early is one of the best investments you can make. Amazon VPC gives your resources a private network with the boundaries and routing you define, and Amazon CloudWatch collects logs, metrics, and alarms so that you can see how your system is behaving and be notified when something needs attention. These services work together and each one can be extended or replaced as your needs grow.
A sensible first architecture
It is easier to picture a starting point as a story than as a list of settings. Imagine a small product with a web frontend and an API behind it. A visitor opens your application, and the static parts of the site are delivered through Amazon CloudFront so that they arrive quickly. When the application needs to do something, it calls your API, which runs on compute chosen to match the work: AWS Lambda for request handling that comes and goes, AWS Fargate if you are working with containers, or Amazon EC2 if you need a machine you control. That code reads and writes your data in Amazon RDS when the information is relational, or in Amazon DynamoDB when your access patterns suit it. Files that users upload, along with anything else you need to keep, live in Amazon S3.
Surrounding all of this, Amazon VPC defines the private network your resources sit in, AWS IAM decides what each part is allowed to do, and Amazon CloudWatch watches the whole system and tells you when something is wrong. The goal of a first architecture is to give your team something small enough to understand completely and solid enough to build a real product on, so that you can change it with confidence as you learn. Every piece of this can be replaced or extended later without rebuilding the rest.
Setting up your account on a sound footing
Before you build very much, it is worth giving some thought to how your account is organised. Separating your environments, keeping permissions tight through AWS IAM, and laying out your resources in a consistent way are decisions that are easy to make at the start and harder to retrofit once a system is in use. Treating this groundwork as part of building the product, rather than as something to fix later, saves a great deal of effort.
This is the territory of landing zones and infrastructure as code, where the structure of your account and the definition of your resources are written down and version-controlled rather than assembled by hand. Our guide to landing zones and infrastructure as code covers how to set this up so that your environment grows in an orderly way.
AWS Activate and early-stage support
AWS runs a programme called AWS Activate that is aimed at startups and can provide credits and support to eligible early-stage companies. Eligibility, benefits, and terms change over time and often depend on factors such as your stage and how you are connected to the AWS ecosystem. Rather than rely on any figures you might read elsewhere, including here, check the current details directly with AWS. If your company qualifies, the support can give you useful room to experiment while you are still finding your footing.
The Cape Town region for South African teams
AWS operates an Africa (Cape Town) Region, known as af-south-1. For South African startups this region is worth considering as the home for your primary workloads, for two reasons. The first is latency: serving your users from a region close to them generally makes your application feel faster than serving it from Europe or North America. The second is data residency: if you have regulatory or contractual obligations to keep certain data within the country, hosting it in af-south-1 helps you meet them.
As with any region, not every service is necessarily available in af-south-1, so it is worth confirming that the specific services you plan to use are offered there before you commit your architecture to it. Choosing your region deliberately at the start is far easier than moving data and workloads once they have grown.
Keeping costs in view from the beginning
Cloud spending is easiest to manage when you watch it from the first day rather than the first surprise. Set up billing alerts early so that you are notified when costs move outside the range you expect, and use Amazon CloudWatch to understand which parts of your system are doing the most work. The charges that catch teams out are often the quiet ones, such as data transfer or storage that accumulates without anyone noticing, so visibility matters more than any single optimisation.
Choosing compute that matches your actual usage also helps. Services that scale with demand mean you are not paying for capacity you are not using, which is particularly valuable while your traffic is still small and uneven. Our guide to cloud cost optimisation for startups sets out the habits that keep a bill predictable as a product grows.
How Lambdaserve can help
Lambdaserve is a South African software studio and cloud-engineering practice. We build our own products, including Formgang, which is live at formgang.com, with an Asset Management product, a Payment Gateway, and a Debit Order product still to come, and we help other teams build on and migrate to AWS, Azure, and Google Cloud. Our AWS engagements are delivered together with our partner Datagnu, which means you work with a team that runs on the cloud every day and respects what the platform can do.
If you are starting a new product on AWS, evaluating where to host it, or reviewing an existing setup before it grows, we are available for focused work: architecture design, account and landing zone setup, deployment to af-south-1, and hands-on delivery. You are welcome to get in touch through the contact page.
Written by the Lambdaserve team as general, informational guidance for founders and engineers. It is not legal, financial or tax advice. Third-party product names, programmes and logos belong to their respective owners and are referenced for identification only.