AWS Security Hub is an awesome tool for creating a native, organization-wide security feed. Learn how to set it up right from the start, for the lowest cost.
GuardDuty is an incredibly valuable threat detection service. Today we'll turn it on using delegated administration and auto-enablement right from the start.
It's time to create some different permission sets so we don't have to do everything with full administrative access all the time.
Delegated administration is a relatively new feature that lets us run some Organization services from outside the management account. It's... really important.
This week is a bit of a smorgasbord, as we knock out a few small security items to set up for what's next.
Today we'll learn about S3 lifecycle policies, immutable data, and use one of those to keep our bill down.
We've finished the foundation of our organization. Now it's time to hatch our diabolical plans for world domination.
As our community rockets, let's take a peek at where we are going, and check out some other awesome communities.
Today we review regions and learn how to use NotAction and Conditions in an SCP.
This lab focuses more on some AWS mechanics as we rework our SCPs and learn how to safely recover, then forget, a root user account
This week we start to build out our Organization and adjust SCPs.
Time to create another rmogull user — the LAST one we'll need — as we learn how to use IAM Identity Center.
