This document discusses creating a landing zone in AWS for migrating applications from an on-premise data center environment. It covers setting up account structure with separate accounts for production, non-production and centralized services. It also discusses establishing network connectivity with VPC design, identity and access management using IAM, and using AWS Service Catalog for self-service provisioning by cloud consumers. The overall goal is to discuss best practices for creating a secure and governed landing zone in AWS to migrate and operate applications.