{"id":257,"date":"2025-05-30T09:06:57","date_gmt":"2025-05-30T09:06:57","guid":{"rendered":"https:\/\/finopsschool.com\/blog\/?p=257"},"modified":"2025-05-30T09:06:57","modified_gmt":"2025-05-30T09:06:57","slug":"comprehensive-tutorial-on-organizational-units-ous-in-devsecops","status":"publish","type":"post","link":"https:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/","title":{"rendered":"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">1. Introduction &amp; Overview<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">What are Organizational Units (OUs)?<\/h3>\n\n\n\n<p>Organizational Units (OUs) in the context of DevSecOps are logical containers used within cloud platforms like AWS Organizations to group and manage AWS accounts or resources hierarchically. OUs enable administrators to organize accounts, apply governance policies, and manage access controls efficiently. Unlike Active Directory OUs, which manage on-premises resources like users and computers, AWS OUs focus on cloud account management, providing centralized governance, security, and compliance in DevSecOps pipelines.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">History or Background<\/h3>\n\n\n\n<p>The concept of OUs originated in directory services like Microsoft Active Directory for organizing network resources. AWS adapted this idea with the launch of AWS Organizations in 2017 to address the complexity of managing multiple cloud accounts. As organizations embraced cloud-native DevSecOps practices, OUs became essential for structuring accounts to align with development, security, and operations workflows, ensuring scalability and compliance.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Why is it Relevant in DevSecOps?<\/h3>\n\n\n\n<p>OUs are critical in DevSecOps for:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Security Integration<\/strong>: Applying Service Control Policies (SCPs) to enforce security standards across accounts.<\/li>\n\n\n\n<li><strong>Scalability<\/strong>: Managing multiple environments (e.g., dev, test, prod) with consistent policies.<\/li>\n\n\n\n<li><strong>Collaboration<\/strong>: Enabling cross-team access control while maintaining least privilege principles.<\/li>\n\n\n\n<li><strong>Automation<\/strong>: Integrating with CI\/CD pipelines to automate account provisioning and policy enforcement.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">2. Core Concepts &amp; Terminology<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Key Terms and Definitions<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>AWS Organizations<\/strong>: A service for centrally managing multiple AWS accounts.<\/li>\n\n\n\n<li><strong>Organizational Unit (OU)<\/strong>: A container for grouping AWS accounts or other OUs.<\/li>\n\n\n\n<li><strong>Service Control Policy (SCP)<\/strong>: JSON-based policies attached to OUs to define permissions.<\/li>\n\n\n\n<li><strong>Root OU<\/strong>: The top-level container in an AWS Organization, created automatically.<\/li>\n\n\n\n<li><strong>Management Account<\/strong>: The primary AWS account controlling the organization.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><th>Term<\/th><th>Definition<\/th><\/tr><\/thead><tbody><tr><td><strong>OU (Organizational Unit)<\/strong><\/td><td>Logical container for grouping cloud accounts or directory objects.<\/td><\/tr><tr><td><strong>Root<\/strong><\/td><td>The top-most container under which all OUs and accounts exist.<\/td><\/tr><tr><td><strong>Service Control Policy (SCP)<\/strong><\/td><td>Policy applied to OUs in AWS to manage permissions across accounts.<\/td><\/tr><tr><td><strong>Linked Account<\/strong><\/td><td>An account that is part of an organization and subject to policies.<\/td><\/tr><tr><td><strong>Delegated Administrator<\/strong><\/td><td>Role assigned to manage OUs or policies within a defined scope.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">How OUs Fit into the DevSecOps Lifecycle<\/h3>\n\n\n\n<p>OUs align with the DevSecOps lifecycle by:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Plan<\/strong>: Structuring accounts by environment or team (e.g., Dev, QA, Security).<\/li>\n\n\n\n<li><strong>Develop<\/strong>: Applying SCPs to restrict risky APIs during development.<\/li>\n\n\n\n<li><strong>Test<\/strong>: Isolating test environments to prevent cross-contamination.<\/li>\n\n\n\n<li><strong>Deploy<\/strong>: Automating account provisioning in production OUs.<\/li>\n\n\n\n<li><strong>Monitor<\/strong>: Centralizing logging and compliance checks across OUs.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><th>DevSecOps Stage<\/th><th>Role of OUs<\/th><\/tr><\/thead><tbody><tr><td><strong>Plan<\/strong><\/td><td>Design secure environments with segregated responsibilities.<\/td><\/tr><tr><td><strong>Develop<\/strong><\/td><td>Align development accounts with specific OUs and guardrails.<\/td><\/tr><tr><td><strong>Build\/Test<\/strong><\/td><td>Enforce security and compliance policies in test environments.<\/td><\/tr><tr><td><strong>Release<\/strong><\/td><td>Route pipelines through validated, OU-governed accounts.<\/td><\/tr><tr><td><strong>Deploy<\/strong><\/td><td>Restrict deploy actions based on OU-level controls.<\/td><\/tr><tr><td><strong>Operate<\/strong><\/td><td>Monitor, audit, and manage access in production OUs.<\/td><\/tr><tr><td><strong>Monitor<\/strong><\/td><td>Enable logging and alerts scoped to OUs for security compliance.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">3. Architecture &amp; How It Works<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Components and Internal Workflow<\/h3>\n\n\n\n<p>OUs form a hierarchical structure under the Root OU, containing accounts or nested OUs. SCPs applied at the OU level cascade to all accounts within, defining allowed or denied actions. The management account oversees OU creation, policy attachment, and account management.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Architecture Diagram Description<\/h3>\n\n\n\n<p>The OU structure resembles a tree:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Root OU<\/strong>: Contains all OUs and accounts.<\/li>\n\n\n\n<li><strong>Top-Level OUs<\/strong>: E.g., Security, Workloads, Sandbox.<\/li>\n\n\n\n<li><strong>Nested OUs<\/strong>: Under Workloads, sub-OUs like Dev, Test, Prod.<\/li>\n\n\n\n<li><strong>Accounts<\/strong>: Each OU contains accounts (e.g., Dev-Account-1, Prod-Account-1).<br>SCPs flow from the Root OU downward, with more restrictive policies overriding broader ones at lower levels.<\/li>\n<\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>            +------------------+\n            |   Organization   |\n            +------------------+\n                     |\n         +-----------+------------+\n         |                        |\n+-----------------+     +-------------------+\n|    OU: DevOps   |     |     OU: Prod      |\n+-----------------+     +-------------------+\n|  Account: Dev1  |     |  Account: Prod1   |\n|  Account: Dev2  |     |  Account: Prod2   |\n+-----------------+     +-------------------+\n<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Integration Points with CI\/CD or Cloud Tools<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>CI\/CD Pipelines<\/strong>: AWS CodePipeline deploys resources to accounts within specific OUs, with SCPs ensuring compliance.<\/li>\n\n\n\n<li><strong>IaC Tools<\/strong>: Terraform or AWS CloudFormation provisions accounts and attaches them to OUs.<\/li>\n\n\n\n<li><strong>Monitoring<\/strong>: AWS CloudTrail and Config integrate with OUs for centralized logging and compliance checks.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">4. Installation &amp; Getting Started<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Basic Setup or Prerequisites<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>An AWS account with administrative access.<\/li>\n\n\n\n<li>AWS CLI installed and configured (<code>aws configure<\/code>).<\/li>\n\n\n\n<li>Permissions to create an AWS Organization.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Hands-On: Step-by-Step Beginner-Friendly Setup Guide<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>Create an AWS Organization<\/strong>:<\/li>\n<\/ol>\n\n\n\n<pre class=\"wp-block-code\"><code>   aws organizations create-organization --feature-set ALL<\/code><\/pre>\n\n\n\n<p>This creates an organization with a management account and a Root OU.<\/p>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>Create an OU<\/strong>:<\/li>\n<\/ol>\n\n\n\n<pre class=\"wp-block-code\"><code>   aws organizations create-organizational-unit --parent-id &lt;root-ou-id&gt; --name DevOU<\/code><\/pre>\n\n\n\n<p>Replace <code>&lt;root-ou-id&gt;<\/code> with the Root OU ID from the previous step.<\/p>\n\n\n\n<ol start=\"3\" class=\"wp-block-list\">\n<li><strong>Create an Account and Add to OU<\/strong>:<\/li>\n<\/ol>\n\n\n\n<pre class=\"wp-block-code\"><code>   aws organizations create-account --email dev-account@example.com --account-name DevAccount\n   aws organizations move-account --account-id &lt;account-id&gt; --source-parent-id &lt;root-ou-id&gt; --destination-parent-id &lt;dev-ou-id&gt;<\/code><\/pre>\n\n\n\n<ol start=\"4\" class=\"wp-block-list\">\n<li><strong>Apply an SCP<\/strong>:<\/li>\n<\/ol>\n\n\n\n<pre class=\"wp-block-code\"><code>   aws organizations create-policy --content '{\"Version\":\"2012-10-17\",\"Statement\":&#091;{\"Effect\":\"Deny\",\"Action\":\"s3:DeleteBucket\",\"Resource\":\"*\"}]}' --name RestrictS3Delete --type SERVICE_CONTROL_POLICY\n   aws organizations attach-policy --policy-id &lt;policy-id&gt; --target-id &lt;dev-ou-id&gt;<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\">5. Real-World Use Cases<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Scenario 1: Multi-Environment Isolation<\/h3>\n\n\n\n<p>A fintech company uses OUs to separate Dev, Test, and Prod environments. Each OU has tailored SCPs to restrict production data access, ensuring developers cannot access sensitive customer data.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Scenario 2: Compliance Enforcement<\/h3>\n\n\n\n<p>A healthcare organization uses OUs to enforce HIPAA compliance. The Compliance OU contains accounts with SCPs restricting non-compliant services (e.g., unencrypted storage), integrated with AWS Config for monitoring.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Scenario 3: Team-Based Access Control<\/h3>\n\n\n\n<p>A software company creates OUs for Engineering, QA, and Security teams. Each OU has accounts with role-based access, and SCPs limit actions (e.g., Security OU denies code deployment).<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Scenario 4: Sandbox for Innovation<\/h3>\n\n\n\n<p>A startup creates a Sandbox OU for experimental projects. SCPs allow broad permissions but restrict public resource exposure, integrated with CI\/CD for rapid prototyping.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">6. Benefits &amp; Limitations<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Key Advantages<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Centralized Governance<\/strong>: Simplifies policy management across accounts.<\/li>\n\n\n\n<li><strong>Security Enforcement<\/strong>: SCPs ensure compliance with security standards.<\/li>\n\n\n\n<li><strong>Scalability<\/strong>: Supports thousands of accounts in a hierarchical structure.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Common Challenges or Limitations<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Complexity<\/strong>: Over-nesting OUs can lead to management overhead.<\/li>\n\n\n\n<li><strong>SCP Limitations<\/strong>: SCPs only restrict permissions, requiring IAM policies for access.<\/li>\n\n\n\n<li><strong>Learning Curve<\/strong>: Requires understanding of AWS Organizations and JSON policies.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">7. Best Practices &amp; Recommendations<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Security Tips<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Use least privilege SCPs to minimize attack surfaces.<\/li>\n\n\n\n<li>Regularly audit OU policies with AWS CloudTrail.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Performance and Maintenance<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Limit OU depth to 5 levels to avoid complexity.<\/li>\n\n\n\n<li>Automate account provisioning using AWS SDKs or Terraform.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Compliance Alignment and Automation<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Align SCPs with standards like GDPR or HIPAA.<\/li>\n\n\n\n<li>Use AWS Config Rules to monitor OU compliance automatically.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">8. Comparison with Alternatives<\/h2>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><th><strong>Feature<\/strong><\/th><th><strong>AWS OUs<\/strong><\/th><th><strong>Azure Management Groups<\/strong><\/th><\/tr><\/thead><tbody><tr><td><strong>Purpose<\/strong><\/td><td>Group AWS accounts for policy management<\/td><td>Group subscriptions for policy and access control<\/td><\/tr><tr><td><strong>Policy Type<\/strong><\/td><td>SCPs (restrictive)<\/td><td>Azure Policies (restrictive and granting)<\/td><\/tr><tr><td><strong>Integration<\/strong><\/td><td>AWS CI\/CD, CloudTrail<\/td><td>Azure DevOps, Monitor<\/td><\/tr><tr><td><strong>Use Case<\/strong><\/td><td>Multi-account cloud governance<\/td><td>Enterprise subscription management<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">When to Choose OUs<\/h3>\n\n\n\n<p>Choose AWS OUs for multi-account AWS environments, centralized governance, or strict security policies. Opt for Azure Management Groups in Azure-centric environments or when needing both restrictive and granting policies.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">9. Conclusion<\/h2>\n\n\n\n<p>OUs in AWS Organizations are a cornerstone of DevSecOps, enabling structured account management, security enforcement, and CI\/CD integration. As cloud adoption grows, OUs will likely evolve with features like AI-driven policy recommendations. <\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\" \/>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>1. Introduction &amp; Overview What are Organizational Units (OUs)? Organizational Units (OUs) in the context of DevSecOps are logical containers used within cloud platforms like AWS Organizations to group and manage AWS accounts or resources hierarchically. OUs enable administrators to organize accounts, apply governance policies, and manage access controls efficiently. Unlike Active Directory OUs, which &#8230; <a title=\"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps\" class=\"read-more\" href=\"https:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/\" aria-label=\"Read more about Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps\">Read more<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-257","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.3 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps - FinOps School<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps - FinOps School\" \/>\n<meta property=\"og:description\" content=\"1. Introduction &amp; Overview What are Organizational Units (OUs)? Organizational Units (OUs) in the context of DevSecOps are logical containers used within cloud platforms like AWS Organizations to group and manage AWS accounts or resources hierarchically. OUs enable administrators to organize accounts, apply governance policies, and manage access controls efficiently. Unlike Active Directory OUs, which ... Read more\" \/>\n<meta property=\"og:url\" content=\"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/\" \/>\n<meta property=\"og:site_name\" content=\"FinOps School\" \/>\n<meta property=\"article:published_time\" content=\"2025-05-30T09:06:57+00:00\" \/>\n<meta name=\"author\" content=\"priteshgeek\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"priteshgeek\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/\",\"url\":\"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/\",\"name\":\"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps - FinOps School\",\"isPartOf\":{\"@id\":\"https:\/\/finopsschool.com\/blog\/#website\"},\"datePublished\":\"2025-05-30T09:06:57+00:00\",\"author\":{\"@id\":\"https:\/\/finopsschool.com\/blog\/#\/schema\/person\/a51d0791fd3a1d6d8e24354ec5f0f671\"},\"breadcrumb\":{\"@id\":\"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/finopsschool.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/finopsschool.com\/blog\/#website\",\"url\":\"https:\/\/finopsschool.com\/blog\/\",\"name\":\"FinOps School\",\"description\":\"FinOps NoOps Certifications\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/finopsschool.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/finopsschool.com\/blog\/#\/schema\/person\/a51d0791fd3a1d6d8e24354ec5f0f671\",\"name\":\"priteshgeek\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/finopsschool.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/231a0e8b7a02636f2fbacf8dcf4494cb1cc0d49ecc9a8165fbaeaeeaf102641a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/231a0e8b7a02636f2fbacf8dcf4494cb1cc0d49ecc9a8165fbaeaeeaf102641a?s=96&d=mm&r=g\",\"caption\":\"priteshgeek\"},\"url\":\"https:\/\/finopsschool.com\/blog\/author\/priteshgeek\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps - FinOps School","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/","og_locale":"en_US","og_type":"article","og_title":"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps - FinOps School","og_description":"1. Introduction &amp; Overview What are Organizational Units (OUs)? Organizational Units (OUs) in the context of DevSecOps are logical containers used within cloud platforms like AWS Organizations to group and manage AWS accounts or resources hierarchically. OUs enable administrators to organize accounts, apply governance policies, and manage access controls efficiently. Unlike Active Directory OUs, which ... Read more","og_url":"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/","og_site_name":"FinOps School","article_published_time":"2025-05-30T09:06:57+00:00","author":"priteshgeek","twitter_card":"summary_large_image","twitter_misc":{"Written by":"priteshgeek","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/","url":"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/","name":"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps - FinOps School","isPartOf":{"@id":"https:\/\/finopsschool.com\/blog\/#website"},"datePublished":"2025-05-30T09:06:57+00:00","author":{"@id":"https:\/\/finopsschool.com\/blog\/#\/schema\/person\/a51d0791fd3a1d6d8e24354ec5f0f671"},"breadcrumb":{"@id":"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/finopsschool.com\/blog\/comprehensive-tutorial-on-organizational-units-ous-in-devsecops\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/finopsschool.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Comprehensive Tutorial on Organizational Units (OUs) in DevSecOps"}]},{"@type":"WebSite","@id":"https:\/\/finopsschool.com\/blog\/#website","url":"https:\/\/finopsschool.com\/blog\/","name":"FinOps School","description":"FinOps NoOps Certifications","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/finopsschool.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/finopsschool.com\/blog\/#\/schema\/person\/a51d0791fd3a1d6d8e24354ec5f0f671","name":"priteshgeek","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/finopsschool.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/231a0e8b7a02636f2fbacf8dcf4494cb1cc0d49ecc9a8165fbaeaeeaf102641a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/231a0e8b7a02636f2fbacf8dcf4494cb1cc0d49ecc9a8165fbaeaeeaf102641a?s=96&d=mm&r=g","caption":"priteshgeek"},"url":"https:\/\/finopsschool.com\/blog\/author\/priteshgeek\/"}]}},"_links":{"self":[{"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/257","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/comments?post=257"}],"version-history":[{"count":1,"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/257\/revisions"}],"predecessor-version":[{"id":258,"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/257\/revisions\/258"}],"wp:attachment":[{"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/media?parent=257"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/categories?post=257"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/finopsschool.com\/blog\/wp-json\/wp\/v2\/tags?post=257"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}