Member-only story

AWS Security Best Practices

A checklist for Cloud Admins to live by

Thilina Ashen Gamage
Platform Engineer
11 min readMar 13, 2023

--

In today’s fast-paced digital world, securing cloud resources is a top priority for organizations. As more and more businesses adopt the cloud, they must level up their traditional IT strategy to face new attack surfaces on the cloud, protect sensitive data, maintain the confidentiality, integrity, and availability of resources, and comply with regulatory requirements.

In this blog post, we’ll delve into the key security best practices that organizations can follow to secure their AWS cloud environment.

#1 — Secure Identity & Access Management (IAM)

AWS IAM Resources Breakdown (Image: msp360.com)

AWS IAM (Identity and Access Management) is one of the most crucial services that contribute to the overall security of your AWS infrastructure. Here are some ways to enforce and increase security for AWS IAM accounts.

Set a strong password policy: Enforce the use of strong and unique passwords for all IAM users, and rotate them regularly.

$ aws iam get-account-password-policy
{
"PasswordPolicy": {
"MinimumPasswordLength": 12,
"RequireSymbols": true,
"RequireNumbers": true,
"RequireUppercaseCharacters": true,
"RequireLowercaseCharacters": true,
"AllowUsersToChangePassword"…

--

--

Platform Engineer
Platform Engineer

Published in Platform Engineer

Solving unanswered questions in high-scale web applications

Thilina Ashen Gamage
Thilina Ashen Gamage

Written by Thilina Ashen Gamage

Cloud Consultant & Trainer | 2M+ Reach | For work projects, reach out to me via LinkedIn: https://www.linkedin.com/in/thilinaashengamage/

Responses (1)