Delegating access increases your security posture by limiting reasons to log in to your AWS organizations management account, until it doesn't. I've seen multiple customers go through the work of setting this up, only to find out they still need to log in to the management account
aws
A collection of 46 posts
Developer AWS Access Management
AWS access management isn't the most exciting topic, but it is absolutely critical to AWS security, so keep it simple.
Get Straight A's on your AWS Security
AWS in 2025 is complex. With over 16,000 API methods, 400 service namespaces, and more than 18,000 permissions, mastering AWS is challenging enough. Securing it properly while maintaining this complexity? That seems nearly impossible. Yet security doesn'
Programmatic AWS Action List!
It's happened. It's finally here. No, I'm not talking about the next iPhone. I'm talking about programmatic access to the AWS IAM action list! Wait, what do you mean "I'
Find deprecated Lambda runtimes in your environment
List all AWS Lambda functions running deprecated runtimes in your environment as a spreadsheet.
Passing the AWS Security Speciality in 2024 (SCS-C02)
Last week I passed the latest version of the AWS Security Speciality (SCS-C02). The Security Speciality certification assesses your knowledge of the various AWS security services, and the security capabilities of more general services offered by AWS. Big shoutout to
Block expensive AWS actions with SCPs
Block expensive and long-running AWS API calls by denying AWS IAM actions.
Get the most out of the AWS documentation
There's a lot of AWS documentation (and more every day!), so use these tips to help get the most out of the official AWS documentation as quickly as possible.