Packt+ | Advance your knowledge in tech

0

All Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Mastering AWS Security

You're reading from Mastering AWS Security Create and maintain a secure cloud ecosystem

Product type Paperback

Published in Oct 2017

Publisher Packt

ISBN-13 9781788293723

Length 252 pages

Edition 1st Edition

Tools

AWS

Concepts

Information Security

Author (1):

Albert Anthony

View More author details

Table of Contents (16) Chapters

Title Page

Credits

About the Author

About the Reviewers

www.PacktPub.com

Customer Feedback

Preface

1. Overview of Security in AWS FREE CHAPTER

2. AWS Identity and Access Management

3. AWS Virtual Private Cloud

4. Data Security in AWS

5. Securing Servers in AWS

6. Securing Applications in AWS

7. Monitoring in AWS

8. Logging and Auditing in AWS

9. AWS Security Best Practices

IAM Authorization

When you create an AWS account, it has a user known as root user. This user has, by default, access to all AWS service and resources. No other user (or any IAM entity) has any access by default and we have to explicitly grant access for all users. In this section, we'll talk about authorization in IAM or access management, it is made up of the following two components:

Permissions
Policy

Permissions

Permissions let you take actions on AWS resources. It allows your users (AWS identities) to perform tasks in AWS. When you create a new user (except for the root user), it has no permission to take any action in AWS. You grant permissions to the user by attaching a policy to that user. So, for example, you can give permission to a user to access certain S3 buckets or to launch an EC2 instance.

Permissions can be assigned to all AWS identities such as users, groups, and roles. When you give permission to a group, all members of that group get that permission and if you remove a permission...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $15.99/month. Cancel anytime

Authors (1)

Albert Anthony

Albert Anthony

Albert Anthony is a seasoned IT professional with 18 years of experience working with various technologies and in multiple teams spread all across the globe. He believes that the primary purpose of information technology is to solve problems faced by businesses and organizations. He is an AWS certified solutions architect and a corporate trainer. He holds all three AWS associate-level certifications along with PMI-PMP and Certified Scrum Master certifications. He has been training since 2008 on project management, cost management, and people management, and on AWS since 2016. He has managed multiple projects on AWS that runs big data applications, hybrid mobile application development, DevOps, and infrastructure monitoring on AWS. He has successfully migrated multiple workloads to AWS from on-premise data centers and other hosting providers. He is responsible for securing workloads for all his customers, with hundreds of servers; processing TBs of data; and running multiple web, mobile, and batch applications.

See other products by Albert Anthony

Other recommended products

Related to this chapter

AWS: Security Best Practices on AWS

AWS: Security Best Practices on AWS

With organizations moving their workloads, applications, and infrastructure to the cloud at an unprecedented pace, security of all these resources has been a paradigm shift for all those who are responsible for security; experts, novices, and apprentices alike.

Mar 2018 3h 56m

Practical AWS Networking

Practical AWS Networking

Amazon Web Services has dominated the public cloud market by a huge margin and continues to be the first choice for many organizations. Networking has been an area of focus for all the leading cloud service providers. AWS has a suite of network-related products which help in performing network related task on AWS.

Jan 2018 8h 36m

AWS Certified Security – Specialty Exam Guide

AWS Certified Security – Specialty Exam Guide

Amazon has come up with Specialty certifications which validates a particular user's expertise that he/she would want to build a career in. This Guide will be a companion to getting skilled with complex and creative security solutions.

Sep 2020 18h 36m

Designing AWS Environments

Designing AWS Environments

AWS is one of the most popular public clouds available in the market today. Small to medium-sized businesses, as well as large business organizations, utilize AWS to set up highly scalable and agile infrastructure to meet faster time to market. This book provides hands-on details with respect to the fundamentals of designing an AWS environment with security and governance.

Sep 2018 5h 48m

AWS Networking Cookbook

AWS Networking Cookbook

With a lot of enterprises moving towards cloud, the need for advanced cloud networking has significantly increased. This book follows a recipe-based approach starting with basic topics to covering the pain points of cloud networking, and will teach you to perform complex networking tasks.

Aug 2017 12h 12m

Amazon Fargate Quick Start Guide

Amazon Fargate Quick Start Guide

AWS Fargate allows you to run containers without having to manage servers or clusters. It lets you focus on designing and building your applications without managing the infrastructure. The book will explain what Fargate is and the benefits of using Fargate launch type. It will teach you about using Fargate with a load balancer, an ECS CLI, and CloudWatch logs.

Jul 2018 6h 20m

Building Serverless Applications with Python

Building Serverless Applications with Python

Serverless architectures allow you to build and run applications and services without having to manage the infrastructure. Many companies have adopted this architecture to save cost and improve scalability. This book will help you design serverless architectures for your applications with AWS and Python.

AWS Security Cookbook

AWS Security Cookbook

AWS Security Cookbook lists all the practical solutions to the common problems faced by individuals or organizations in securing their instances. Here readers will learn to troubleshoot security concerns and understand additional patterns and services for securing AWS infrastructure.

Feb 2020 14h 40m

AWS Tools for PowerShell 6

AWS Tools for PowerShell 6

Amazon Web Services is the leading cloud platform today. Using Windows PowerShell, this book shows you exactly how to automate all aspects of AWS. You can take advantage of the amazing power of the cloud, yet add powerful scripts and mechanisms to perform common tasks faster than ever before. In this book, you will learn to use Amazon Web Services to automate and manage Windows servers. You will also gain a good understanding of automating the AWS infrastructure using simple coding.

Aug 2017 12h 24m

Implementing Identity Management on AWS

Implementing Identity Management on AWS

This book will help you overcome the challenges faced when implementing identity and access management on AWS. You'll be able to approach the topic from a use-case-driven practitioner's perspective informed by real-world experience of solving challenges within some of the largest enterprise AWS environments in the world.

Oct 2021 16h 48m

Cloud Security Automation

Cloud Security Automation

In the current market, enterprise organizations are moving rapidly towards the cloud infrastructure because of its flexibility and cost effectiveness. Hence, it has become extremely important to have a security framework in place. Automating security functions will play a key role when it comes to cloud governance. This book supplies best security practices for locking down your public and private cloud.

Mar 2018 11h 8m

AWS Certified Developer - Associate Guide

AWS Certified Developer - Associate Guide

With rapid adaptation of the cloud platform, the need for cloud certification has also increased. This is your one stop solution and will help you transform yourself from zero to certified. This guide will help you gain technical expertise in the AWS platform and help you start working with various AWS Services.

Jun 2019 27h 4m

Personalised recommendations for you

Based on your interests and search pattern

Cloud Security Handbook

Cloud Security Handbook

This book provides complete coverage of every cloud security aspect—from initial design to ongoing maintenance. Packed with best practices, it helps you smoothly transition to the public cloud, while keeping your environments secure and compliant.

Apr 2025 16h 4m

CompTIA CySA+ (CS0-003) Certification Guide

CompTIA CySA+ (CS0-003) Certification Guide

Prepare for CompTIA CySA+ (CS0-003) exam with this study guide—covering security ops, incident response, and vulnerability management in depth to level up your cybersecurity career. Includes exam-style questions, 2 practice tests, and flashcards.

Apr 2025 24h 44m

Cyber Security Kill Chain - Tactics and Strategies

Cyber Security Kill Chain - Tactics and Strategies

Learn how the cyber kill chain, a structured model that outlines the stages of a cyberattack, guides you through understanding threat actor behaviors and bolstering their ability to defend against evolving cyber threats.

May 2025 10h 16m