AWS Security Documentation: documentation showing how to configure AWS services to meet security and compliance objectives.
asecure.cloud: a free repository of customizable AWS security configurations and best practices | available in CloudFormation | AWS CLI | Terraform
Prowler – AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark and DOZENS of additional checks including GDPR and HIPAA (+100).
Use AWS Fargate and Prowler to send security configuration findings about AWS services to Security Hub
AWS Security / Learning [Whitepapers, Technical Guides, and Reference Materials | International Content | Provable Security: Research and Insights | Security Documentation | Training]
– AWS Security Center‘s links
Security, Identity, and Compliance on AWS
Recent Announcements – Security, Identity, & Compliance
Security Bulletins
Compliance
Data Privacy FAQ
– Security, Identity & Compliance Whitepapers
AWS Security Whitepapers selection:
– Security Pillar – AWS Well-Architected Framework
– Reliability Pillar – AWS Well-Architected Framework
– AWS Security Best Practices
– AWS Best Practices for DDoS Resiliency [2019]
– Security Overview of AWS – Lambda – An In-Depth Look at Lambda Security [2019]
– Amazon Web Services’ Approach to Operational Resilience in the Financial Sector & Beyond [2019]
– Securing Internet of Things (IoT) with AWS [2019]
– AWS Answers to Key Compliance Questions
– Use AWS WAF to Mitigate OWASP’s Top 10 Web Application Vulnerabilities
– Amazon Web Services: Risk and Compliance
– Amazon Web Services: Overview of Security Processes
– AWS Key Management Service Best Practices
– Security of AWS CloudHSM Backups – Fully Managed Hardware Security Modules (HSMs) in the AWS Cloud
– Regulation Systems Compliance and Integrity Considerations for the AWS Cloud
– Secure Content Delivery with Amazon CloudFront
– AWS Risk and Compliance Overview
– Introduction to AWS Security by Design – A Solution to Automate Security, Compliance, and Auditingin AWS
– AWS Cloud Adoption Framework – Security Perspective
– Amazon Web Services: Overview of Security Processes
– Documentation / Security, Identity, & Compliance
AWS Identity & Access Management (AWS IAM): https://docs.aws.amazon.com/iam/?id=docs_gateway
AWS Artifact: https://docs.aws.amazon.com/artifact/?id=docs_gateway
Amazon Cognito: https://docs.aws.amazon.com/cognito/?id=docs_gateway
Amazon Detective: https://docs.aws.amazon.com/detective/?id=docs_gateway
AWS Directory Service: https://docs.aws.amazon.com/directory-service/?id=docs_gateway
AWS Firewall Manager: https://docs.aws.amazon.com/firewall-manager/?id=docs_gateway
Amazon Cloud Directory: https://docs.aws.amazon.com/clouddirectory/?id=docs_gateway
Amazon GuardDuty: https://docs.aws.amazon.com/guardduty/?id=docs_gateway
Amazon Inspector: https://docs.aws.amazon.com/inspector/?id=docs_gateway
Amazon Macie: https://docs.aws.amazon.com/macie/?id=docs_gateway
AWS Resource Access Manager (AWS RAM): https://docs.aws.amazon.com/ram/?id=docs_gateway
AWS Secrets Manager: https://docs.aws.amazon.com/secretsmanager/?id=docs_gateway
AWS Security Hub: https://docs.aws.amazon.com/securityhub/?id=docs_gateway
AWS Shield: https://docs.aws.amazon.com/shield/?id=docs_gateway
AWS Single Sign-On: https://docs.aws.amazon.com/singlesignon/?id=docs_gateway
AWS WAF: https://docs.aws.amazon.com/waf/?id=docs_gateway
– Documentation / Cryptography & PKI
AWS Cryptographic Services Overview: https://docs.aws.amazon.com/crypto/?id=docs_gateway
AWS PKI Services Overview: https://docs.aws.amazon.com/crypto/?id=docs_gateway
AWS CloudHSM: https://docs.aws.amazon.com/cloudhsm/?id=docs_gateway
AWS Key Management Service (AWS KMS): https://docs.aws.amazon.com/kms/?id=docs_gateway
AWS Crypto Tools: https://docs.aws.amazon.com/aws-crypto-tools/?id=docs_gateway
AWS Certificate Manager: https://docs.aws.amazon.com/acm/?id=docs_gateway
AWS Certificate Manager Private Certificate Authority: https://docs.aws.amazon.com/acm/?id=docs_gateway
– Security, Identity, & Compliance FAQ’s links
AWS Identity and Access Management FAQ: https://aws.amazon.com/iam/faqs/
Amazon Cloud Directory: https://aws.amazon.com/cloud-directory/faqs/
Amazon Cognito FAQ: https://aws.amazon.com/cognito/faqs/
AWS GuardDuty FAQ: https://aws.amazon.com/guardduty/faqs/
Amazon Inspector FAQ: https://aws.amazon.com/inspector/faqs/
Amazon Macie FAQ: https://aws.amazon.com/macie/faq/
AWS Certificate Manager FAQ: https://aws.amazon.com/certificate-manager/faqs/
AWS CloudHSM FAQ: https://aws.amazon.com/cloudhsm/faqs/
AWS Directory Service FAQ: https://aws.amazon.com/directoryservice/faqs/
AWS Key Management Service FAQ: https://aws.amazon.com/kms/faqs/
AWS Organizations FAQ: https://aws.amazon.com/organizations/faqs/
AWS Single Sign-On FAQ: https://aws.amazon.com/single-sign-on/faqs/
AWS Shield FAQ: https://aws.amazon.com/shield/faqs/
AWS WAF FAQ: https://aws.amazon.com/waf/faq/
AWS Artifact FAQ: https://aws.amazon.com/artifact/faq/
[YouTube Playlist] AWS re:Invent 2019 Breakout Sessions | Security, Compliance, and Identity
[YouTube Playlist] AWS re:Inforce 2019 Sessions
– AWS re:inforce 2019 on SlideShare
– AWS Security Ramp – Up Guide
Exam Readiness: AWS Certified Security – Specialty