Risk Associated With Default AWS Service-Linked Roles | by Teri Radichel | Cloud Security | Feb, 2023

ACM.154 Taking a look at the roles created by Amazon in a new AWS account

View the roles in the new account created by AWS Organizations

Evaluating the risk associated with the role: AWSServiceRoleForOrganizations

Evaluating the risk associated with the role: AWSServiceRoleForSupport

  • Which AWS EC2 instances are available from the Internet?
  • Which AWS EC2 instances are associated with which instance profiles?
  • What permissions those profiles and thereby those EC2 instances have?

Considering the risk associated with the role: AWSTrustedAdvisorServiceRolePolicy

Should you delete service-linked roles?

Evaluating the risk of other AWS Services in use in your AWS Account


for this story or refer others to follow me.
Follow on Medium: Teri Radichel
Sign up for Email List: Teri Radichel
Follow on Twitter: @teriradichel
Follow on Mastodon: @[email protected]
Follow on Post: @teriradichel
Like on Facebook: 2nd Sight Lab
Buy a Book: Teri Radichel on Amazon
Buy me a coffee:
Teri Radichel
Request services via LinkedIn:
Teri Radichel or through IANS Research
Slideshare: Presentations by Teri Radichel
Speakerdeck: Presentations by Teri Radichel
Recognition: SANS Difference Makers Award, AWS Hero, IANS Faculty
Certifications: SANS
Education: BA Business, Master of Sofware Engineering, Master of Infosec
How I got into security: Woman in tech
Company (Penetration Tests, Assessments, Training): 2nd Sight Lab

Source link