Establish AWS IAM Policy #60

erniep278 · 2022-10-27T02:17:12Z

Establish an IAM policy for AWS with best security practices and take corrective actions to be compliant with the policy.

First thing is to create an IAM Policy framework to follow. Then the following would happen. Adjustments to tasks can be made as needed.

Create a gap analysis of the current IAM setup to the new IAM policy.
Assess the use of the AWS tenant, teams, and AWS resources.
Create a plan to address the implementation of the IAM policy without affecting current workloads.
Create groups with granular permissions based on needs.
Remove/Disable inactive users.
Select a scope of users for testing access with new groups and permissions.
Assign the scope of users to the new groups to check functionality and permissions are working as designed.
Assign remaining users in waves.

JasonEb · 2022-10-30T21:35:58Z

ExperimentsInHonesty · 2024-03-28T02:36:11Z

This issue has been replaced with the new devops-security repo.

erniep278 added feature: AWS IAM feature: security labels Oct 27, 2022

JasonEb added size: 1pt Can be done in 4-6 hours role: Site Reliability Engineer aka Infrastructure Engineer labels Oct 30, 2022

JasonEb added this to the 02 Security milestone Oct 30, 2022

JasonEb mentioned this issue Oct 30, 2022

DevOps PM meeting Agenda #11

Open

ExperimentsInHonesty added the draft label Nov 7, 2022

robinglov mentioned this issue Jan 17, 2024

IBT: Leads hackforla/incubator#22

Closed

ExperimentsInHonesty closed this as completed Mar 28, 2024

Provide feedback