As your organization develops, expands and continues to build more and more solutions within your AWS environment, it won't be too long before the need to implement multiple accounts arises. Running multiple accounts brings many benefits, but also some challenges as well. One of those challenges is how to manage, implement and monitor your resources for security threats, vulnerabilities and weaknesses both effectively and in a centralized manner for ease of operational support. This learning path will look at how to implement controls to resolve this challenge by analyzing some of the AWS services and features available to you to help you implement refined security controls across all of your accounts.
- Implementing cross-account access using IAM
- Configuring GuardDuty to manage multiple accounts for threat detection
- How to share CMKs across multiple accounts using KMS
- How to share resources across multiple accounts using Resource Access Manager
Due to the nature of the content involved, the courses within this learning path are recommended for those that already have a foundational understanding of AWS and security, in addition to a working knowledge of some of the AWS security services.
Please contact us at firstname.lastname@example.org if you need help or guidance with this content. We welcome all questions, comments, and feedback.
Learning Path Steps
Implementing Mechanisms to Enforce Multi-Account Security in AWS - Introduction
This course introduces the Implementing Mechanisms to Enforce Multi-Account Security in AWS learning path.
This course covers how to implement cross-account access using AWS IAM.
This course looks at how to collate and manage findings from multiple AWS accounts with Amazon GuardDuty.
This course shows how to use the Key Management Service for encryption across multiple AWS accounts.
How to Share Resources Across Multiple Accounts Using AWS Resource Access Manager
This course shows you how to share resources between AWS accounts or within your AWS organization using the AWS Resource Access Manager.
Configuring Multiple AWS Accounts with Amazon Macie to Protect PII Data in S3
This course demonstrates how to configure multiple AWS accounts with Amazon Macie to protect PII data in S3.
This course explains how to share secrets between different AWS accounts through the use of resource-based policies and AWS Secrets Manager.
Final Exam: Enforce Multi-Account Security in AWS
About the Author
Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data centre and network infrastructure design, to cloud architecture and implementation.
To date, Stuart has created 60++ courses relating to Cloud, most within the AWS category with a heavy focus on security and compliance
He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.
In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.
Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.