Security Checklist - General
Click on each item to learn more
Protect your root account.
1
Protect your access keys the same way you protect your private banking access.
Protect your CloudTrail and your Billing S3 Bucket.
2
Limit access to users and roles on a “need-to-know” basis.
Activate region based CloudTrail.
3
Ensure visibility and traceability of all your AWS account activities.
Create administration roles with limited privileges.
4
Use IAM policies to limit access only to services needed.
5
Familiarize yourself with AWS Security Token Service (STS) and roles.
AWS STS is a service that enables you to request temporary, limited-privilege credentials.
6
Familiarize yourself with AWS Detailed Billing and monitor your monthly usage regularly.
AWS Detailed Billing provides you with a “by-the-hour” insight of resources used and costs incurred.
