Determine Appropriate Data Security Controls
Data is one of the most important commodities in any business and it is crucial that it is protected. The key things you are expected to know for the exam in this regard can be broadly placed in two categories: controlling data and encrypting data.
Controlling Data
Controlling data is key to ensuring your data is protected. This means controlling who can access your data, how you can recover data in the event of a disaster, how you classify and retain data, and how you back up data.
Given how important data is, you want to ensure that access to the data is limited to only those people who need to access it. By now, you are well versed in how IAM works and you can leverage IAM to ensure that you restrict which principals can access AWS managed database services. However, databases can be hosted on EC2 instances as well as managed services, and that means you have to configure access restrictions yourself. Ensure that there is an...
