Mergers and divestitures patterns for organizations on AWS
Patterns and best practices for managing AWS Organizations through mergers, acquisitions, and divestitures at enterprise scale.
Unlock new possibilities: AWS Organizations service control policy now supports full IAM language
AWS Organizations SCPs now support the full IAM policy language — new capabilities, patterns, and what this means for enterprise governance.
Preventive controls with AWS Organizations and VPC endpoint policies
How to layer AWS Organizations SCPs with VPC endpoint policies to enforce preventive security controls at scale.
How to import existing AWS Organizations SCPs and RCPs to CloudFormation
Step-by-step guidance for importing existing AWS Organizations service control policies and resource control policies into CloudFormation for infrastructure-as-code management.
Scaling IAM: Advanced administration and delegation patterns
Advanced IAM administration patterns for delegating access management at scale across large, complex AWS environments.
Design a scalable service control policy strategy
A framework for designing and scaling AWS Organizations service control policies for enterprise-wide cloud governance.
Streamlining AWS Organizations cleanup strategies
Strategies and automation patterns for cleaning up and rationalizing AWS Organizations structures, SCPs, and account hierarchies at scale.
Deploy AWS Organizations resources by using CloudFormation
How to manage and deploy AWS Organizations resources including SCPs and RCPs using CloudFormation as infrastructure-as-code.
Get more out of service control policies in a multi account environment
Best practices for maximizing the effectiveness of service control policies across a multi-account AWS Organizations environment.
Achieving operational excellence with design considerations for AWS Organizations SCPs
Design principles and operational best practices for building maintainable, scalable service control policy frameworks in AWS Organizations.
Identity guide: Preventive controls with AWS Identity SCPs
A comprehensive guide to implementing preventive controls using AWS Identity service control policies at enterprise scale.
Create enterprise-wide preventive guardrails, featuring Inter & Co.
Building enterprise-scale preventive security controls with AWS Organizations SCPs, featuring a real-world case study with Inter & Co.
Building a data perimeter to allow access to authorized users
How to build a data perimeter on AWS to ensure only authorized identities, from expected networks, can access company data.
Enforcing enterprise-wide preventive controls with AWS Organizations
Patterns and reference architectures for deploying enterprise-wide preventive controls using AWS Organizations service control policies.
Getting more out of your service control policies, featuring Morgan Stanley
Advanced SCP patterns and governance strategies at enterprise scale, featuring Morgan Stanley's approach to multi-account identity governance.
Establishing data perimeters on AWS
Workshop on establishing and enforcing data perimeters on AWS to control which identities, resources, and networks can access company data.