AWS Access Analyzer Policy Checks Explained

AWS launched Access Analyzer Policy Checks to help you develop valid, secure policies and review existing policies. This post explains what the four types of policy checks do and how to start using them. The checks are available via console, CLI, and API...

Why are good AWS security policies so difficult?

Creating good AWS security policies is difficult for two reasons. First, the powerful AWS security model is complex and difficult to understand.  Second, application deployments are changing and growing rapidly. Why is AWS IAM so @!#^$ hard?One of our favorite...