Hi @tana_sakakimiya ,
I allow myself copy and paste brilliant answer on similar question provided by user Isi:
"Option A: Multiple Databricks accounts and multiple AWS accounts
This model offers the highest level of isolation. Each environment lives in its own Databricks and AWS account, allowing for complete separation of resources, users, and billing. Itโs good if you are a large organization. But itโs also the most expensive and complex to maintain, since it involves duplicating configurations, user management, pipelines, and access control. I wouldnโt recommend this option unless you have very strong isolation or compliance requirements.
Option B: A single Databricks account with multiple workspaces and multiple AWS accounts
It enables environment separation at the infrastructure level using different AWS accounts, while still maintaining centralized management of workspaces under a single Databricks account. It strikes a balance between isolation and operational efficiency. I would recommend this setup because itโs an easy way to work: you just need to manage cross-account access in AWS, and everything stays centralized on the Databricks side.
Option C: A single Databricks account with multiple workspaces and a single AWS account
This setup is common in small to medium companies. Isolation is achieved through separate networks (e.g., different subnets or VPCs), IAM policies, and logical separation of data using S3 buckets or Unity Catalog. Itโs a simple, effective, and easy-to-manage approach. While it doesnโt offer the same level of isolation as the previous options, itโs often more than enough for most use cases.
If youโre a small company and donโt have very strict isolation needs, Iโd go with this option. Just keep in mind that, since everything lives in a single AWS account, youโll need to clearly separate whatโs dev/pre/pro and put extra care into access policies to ensure everything is properly segmented."
Source: Solved: Best Practices for Mapping Between Databricks and ... - Databricks Community - 120788
