AWS Hardening

Over the last couple of years I have been involved with over 20 AWS deployments during various stages and the first thing that I always do is enable a couple of the key AWS services. Most people would probably turn these on for application monitoring but these are tools that can also be used to “soft harden” an AWS environment. This is not the holy grail of security but it’s good to get into the habit of turning these on and using them. Before I set things up to turn these on, I run through a checklist of what needs to be done:

Continue reading “AWS Hardening”