AWS access management isn't the most exciting topic, but it is absolutely critical to AWS security, so keep it simple.
aws
A collection of 45 posts
Get Straight A's on your AWS Security
AWS in 2025 is complex. With over 16,000 API methods, 400 service namespaces, and more than 18,000 permissions, mastering AWS is challenging enough. Securing it properly while maintaining this complexity? That seems nearly impossible. Yet security doesn'
Programmatic AWS Action List!
It's happened. It's finally here. No, I'm not talking about the next iPhone. I'm talking about programmatic access to the AWS IAM action list! Wait, what do you mean "I'
Find deprecated Lambda runtimes in your environment
List all AWS Lambda functions running deprecated runtimes in your environment as a spreadsheet.
Passing the AWS Security Speciality in 2024 (SCS-C02)
Last week I passed the latest version of the AWS Security Speciality (SCS-C02). The Security Speciality certification assesses your knowledge of the various AWS security services, and the security capabilities of more general services offered by AWS. Big shoutout to
Block expensive AWS actions with SCPs
Block expensive and long-running AWS API calls by denying AWS IAM actions.
Get the most out of the AWS documentation
There's a lot of AWS documentation (and more every day!), so use these tips to help get the most out of the official AWS documentation as quickly as possible.
Understanding the AWS zone of trust
Understanding the zone of trust is critical if you want to secure your AWS resources.