Enforcing enterprise-wide preventive controls with AWS Organizations
Patterns and reference architectures for deploying enterprise-wide preventive controls using AWS Organizations service control policies.
Patterns and reference architectures for deploying enterprise-wide preventive controls using AWS Organizations service control policies.
Work independently cited and discussed by the AWS Insiders Podcast (Logicata) - a third-party industry podcast that selected the article as a notable AWS community contribution.
How to layer AWS Organizations SCPs with VPC endpoint policies to enforce preventive security controls at scale.
Step-by-step guidance for importing existing AWS Organizations service control policies and resource control policies into CloudFormation for infrastructure-as-code management.
A framework for designing and scaling AWS Organizations service control policies for enterprise-wide cloud governance.
Design principles and operational best practices for building maintainable, scalable service control policy frameworks in AWS Organizations.
Best practices for maximizing the effectiveness of service control policies across a multi-account AWS Organizations environment.
Two workshop sessions with six hands-on labs teaching when to use each IAM policy type, who should own and manage them, and how to balance security posture with developer agility.
Advanced SCP patterns and governance strategies at enterprise scale, featuring Morgan Stanley's approach to multi-account identity governance.
Chalk talk on how to be frugal with service control policies and get the most out of them in a multi-account AWS environment.
A comprehensive guide to implementing preventive controls using AWS Identity service control policies at enterprise scale.