Security

• AWS have Shared responsability model
• Least privileges
• aws has lot of certifications (ISO 2007, etc)s

Facets

• Identiy
• Authentication
• Authorization (iam)
• Trust
  • IdP (aws cognito, facebook, gmail)
  • SSO
  • SAML, Oauth, OpenID

Multi-account management

for who ones?

• large organizations
• segreation duties, costs, agillity

do we need it?

• administrative isolations?
• limited visibility and discovery of workloads
• limited and strong isolation for recoveries and/or auditing data?