Security in the AWS Cloud

Security is the practice of protecting your intellectual property from unauthorised access, use or modification. The confidentiality, integrity and availability triad model highlights the important aspects of information security within an organisation. AWS provides several services you can use to address the needs this model describes

AWS shared responsibility model

AWS is responsible for protecting the global infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure comprises the hardware, software, networking and facilities that run AWS services. As an AWS customer, you are responsible for securing your data, OS, networks, platforms and other resources you create in the AWS cloud.

You are responsible for protecting the confidentiality, integrity, and availability of your data and for meeting any specific business or compliance requirements for your workloads.

Untitled

AWS Well-Architected Framework

The AWS Well-Architected framework denotes best architectural best practices for designing and operating reliable, secure, efficient and cost effective systems in the cloud. It Provides a way for you to consistently measure your architectures against best practices and identify areas for improvement. AWS believes that having well architected systems greatly increases the likelihood of business success

The framework is based on six pillars: