- Version
- Download 1
- File Size 1.15 MB
- File Count 1
- Create Date May 23, 2023
- Last Updated May 23, 2023
AWS security is the practice of protecting your data, applications, and infrastructure on AWS cloud. AWS provides a range of security services and features that you can use to secure your workloads and applications in the cloud. AWS security covers four main areas: identity and access management, detection and response, network and application protection, and data protection.
Identity and access management (IAM) helps you securely manage identities and access to AWS services and resources. You can use IAM to create users, groups, roles, and policies that define who can access what resources and how. You can also use other AWS identity services such as AWS Single Sign-On, Amazon Cognito, and AWS Directory Service to manage access for your workforce and customers.
Detection and response helps you identify potential security misconfigurations, threats, or unexpected behaviors, so you can quickly respond to potentially unauthorized or malicious activity occurring within your environment. You can use services such as AWS Security Hub, Amazon GuardDuty, Amazon Inspector, and AWS Config to monitor your AWS environment and receive alerts and recommendations for remediation.
Network and application protection helps you enforce fine-grained security policy at network control points across your organization. You can use services such as Amazon Virtual Private Cloud (VPC), AWS Firewall Manager, AWS WAF, and AWS Shield to protect your network perimeter, inspect and filter traffic, and prevent distributed denial-of-service (DDoS) attacks.
Data protection helps you protect your data, accounts, and workloads from unauthorized access. You can use services such as AWS Key Management Service (KMS), AWS Certificate Manager (ACM), Amazon Macie, and Amazon S3 encryption to encrypt your data at rest and in transit, manage encryption keys and certificates, and discover sensitive data.
AWS security is a shared responsibility between AWS and you. AWS is responsible for security of the cloud, such as protecting the global infrastructure that runs all of the services offered in the AWS cloud. You are responsible for security in the cloud, such as configuring your resources, managing your data, and applying security best practices.