You're reading from Mastering AWS Security Strengthen your cloud environment using AWS security features coupled with proven strategies

Product type Paperback

Published in Apr 2024

Publisher Packt

ISBN-13 9781805125440

Length 370 pages

Edition 2nd Edition

Tools

AWS

Concepts

Cloud Security

Author (1):

Laurent Mathieu

View More author details

Table of Contents (20) Chapters

Preface

1. Part 1: Foundations of AWS Security FREE CHAPTER

2. Chapter 1: Introduction to AWS Security Concepts and the Shared Responsibility Model

3. Chapter 2: Infrastructure Security – Keeping Your VPC secure

4. Chapter 3: Identity and Access Management – Securing Users, Roles, and Policies

5. Chapter 4: Data Protection – Encryption, Key Management, and Data Storage Best Practices

6. Chapter 5: Introduction to AWS Security Services

7. Part 2: Architecting and Deploying Secure AWS Environments

8. Chapter 6: Designing Secure Microservices Architectures in AWS

9. Chapter 7: Implementing Security for Serverless Deployments

10. Chapter 8: Secure Design Patterns for Multi-Tenancy in Shared Environments

11. Chapter 9: Automate Everything to Build Immutable and Ephemeral Resources

12. Part 3: Monitoring, Automation and Continuous Improvement

13. Chapter 10: Advanced Logging, Auditing, and Monitoring in AWS

14. Chapter 11: Security Compliance with AWS Config, AWS Security Hub, and Automated Remediation

15. Chapter 12: DevSecOps – Integrating Security into CI/CD Pipelines

16. Chapter 13: Keeping Up with Evolving AWS Security Best Practices and Threat Landscape

17. Chapter 14: Closing Note

18. Index

Why subscribe?

19. Other Books You May Enjoy

Identity and Access Management – Securing Users, Roles, and Policies

Welcome to the third chapter of our deep dive into AWS security. In this chapter, we will focus on AWS Identity and Access Management (IAM), which is the backbone of AWS security. We will embark on a journey where we will cover the foundational access control models, such as RBAC and ABAC, and their pivotal role in AWS. Transitioning from there, we will explore the vast landscape of IAM identities, shedding light on both human and non-human identities, the nuances of various credential types, and the detailed workings of IAM users, groups, roles, and externally managed identities. As we progress, IAM policies will come to the forefront, where we will discuss everything from their basic structure to advanced use cases and efficient management techniques. Toward the end, we will tackle the challenges posed by IAM in expansive, multi-account AWS deployments, emphasizing the value of centralized IAM management...