Back to Amazon Web Services (AWS)

AWS Security

View Amazon Web Services (AWS) Security Documentation

Review Amazon Web Services (AWS)'s compliance certifications, audit logs, access controls, and security architecture.

View Amazon Web Services (AWS) Security Documentation

Enterprise-grade security.

Disclosure: We may earn a commission if you purchase through this link, at no extra cost to you. Learn more.

Identity & Detection

IAM: Industry-leading -- users, groups, roles, policies, conditions, permissions boundaries, SCPs. IAM Identity Center for SSO across accounts/apps (Entra ID, Okta). Cognito for customer identity. GuardDuty: ML-based threat detection analyzing CloudTrail, VPC Flow Logs, DNS, EBS, runtime behavior. Detects crypto mining, credential compromise, reconnaissance. Security Hub: Centralized security alerts and compliance status across accounts. Integrates with GuardDuty, Inspector, Macie, third-party tools. Detective: Visual investigations using CloudTrail + VPC Flow Logs + GuardDuty.

Infrastructure & Data Security

Shield: Standard (free, always-on) and Advanced ($3,000/mo + data fees -- 24/7 DDoS response team). WAF: Web application firewall -- SQL injection, XSS, OWASP Top 10. Deploy with CloudFront, ALB, API Gateway. Firewall Manager: Centrally manage WAF, Shield, security groups across accounts. Network Firewall: Managed stateful firewall with Suricata-compatible IPS. KMS: Create/manage encryption keys. FIPS 140-2 Level 2/3. CloudHSM: Dedicated HSM, FIPS 140-2 Level 3. Secrets Manager: Auto-rotate DB credentials, API keys. Macie: ML-based sensitive data discovery in S3. Compliance: 140+ certs via Artifact portal -- FedRAMP High, HIPAA, PCI DSS, SOC, ISO.

Compare Amazon Web Services (AWS) with Alternatives

See how Amazon Web Services (AWS) stacks up against competitors across features, pricing, and user reviews.

Trusted by thousands of DevOps teams. Read verified reviews before you buy.

Related Links