Amazon Web Services (AWS) Account Hardening Checklist
A Guide to Help Organizations Create Secure, Auditable, and Controlled Amazon Web Services (AWS) Accounts
This guide is designed to help organizations ensure that newly created AWS accounts are secure, auditable, and have multiple control points in the event of a breach.
This Checklist Includes:
Included is both a basic and advanced AWS hardening checklist:
The basic checklist is used as a guide if the AWS account is for individual or small-team use, if the account holder is primarily concerned with usability and minimizing spend, and/or if the account is not currently subject to security or compliance frameworks.
The advanced checklist is used to help establish a security baseline if you process sensitive data, are part of a large team, are subject to compliance frameworks, or must comply with enterprise security guidelines.