AWS has a Shared Responsibility Model. They are responsible for the Cloud, and you are responsible for what you do in the Cloud.
They protect the infrastructure, you need to protect the software and data that runs on it, including security configurations (VPNs, security groups, IAM roles), OS/software upgrades, and data encryption.
You and your team are responsible for all the tasks that you are allowed to do in the cloud service. For example, if you use RDS, you are not responsible for upgrading the operating system, but you are responsible for the data you save.
The more control you have, the more security effort you need to perform.
Founder & CEO at InTheValley
I build remote engineering teams for startups. My blog uses a proprietary platform to generate in-depth articles about something I’m passionate about: Advertising.
Latest posts by Leo Celis (see all)
- The Role of Color in Brand Identity - 10/23/24
- Human-in-the-Loop for Bias Mitigation - 10/16/24
- Challenges in Implementing Federated Learning in Ad Tech - 10/09/24