In this video, you will be introduced to the Separation of Duties concept. You will learn the reasons for separation of duties, and will learn techniques for how to implement Separation of Duties in your organization. You will also learn how to achieve Separation of Duties for your root AWS account, including the use of Multifactor Authentication
- [Voiceover] Now that we understand…the AWS shared responsibility model…and breadth of AWS security services,…let's explore how to configure your AWS account…in accordance with best practices.…What better place to start than…by implementing Separation of Duties…and Multi-Factor Authentication.…Separation of Duties is a concept…that requires more than one person to perform an action.…Implemented properly, Separation of Duties…reduces the chances of a security compromise.…Auditors love Separation of Duties and for a good reason.…
Implementing this best practice within your AWS account…will definitely get you style points when it comes time…for your annual IT audit.…In this video, let's explore how to protect your account…by implementing Separation of Duties…in concert with Multi-Factor Authentication.…When you sign up for an AWS account…and login for the first time, you enter your email address…and password.…These two items combine…to make up your root account credentials.…As the name implies, these root credentials…
Sharif Nijim couples pragmatic advice with practical examples that educate organizations on how to create a secure infrastructure within Amazon Web Services. Sharif explores the shared responsibility model of security, which splits duties between your company and AWS, and introduces key identity and access management concepts: users, groups, roles, and policies. At the end of the course, he helps you prepare for the inevitable audit of your AWS account(s).
This course includes trademarks owned by Amazon Web Services. This course has not been prepared, approved, or endorsed by Amazon Web Services.
- The AWS shared responsibility model and security landscape
- Enabling CloudTrail
- Configuring AWS Identity and Access Management (IAM)
- Troubleshooting IAM policies
- Granting temporary access
- Incorporating least privilege
- Controlling access to Simple Storage Service (S3)
- Preparing for security audits
- Getting audit help from Trusted Advisor