AWS Service Control Policy Architecture
ACM.169 Designing maintainable, readable, and secure service control policies
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
⚙️ Check out my series on Automating Cybersecurity Metrics. The Code.
🔒 Related Stories: AWS Security | IAM | Cloud Governance
💻 Free Content on Jobs in Cybersecurity | ✉️ Sign up for the Email List
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
In the last post, I showed you some of the issues you might face when trying to close an account. There are also some risks you will want to be aware of related to removing accounts from an AWS organization — who in your organization can remove accounts from the organization?
In this post, we want to take a bit deeper dive look at a strategy for designing Service Control Policies on AWS before we start recreating our organization and integrating with Okta.
Service Control Policy Architecture Components
Before we start designing our Service Control Policies, we need to understand a bit about how multiple…
