MLSEC-03: Ensure least privilege access

Restrict access based on business roles for individuals - Identify roles that need to explore data to build models, features, and algorithms. Map those roles to access patterns using role-based authentication. This approach helps you achieve least privilege access to sensitive data, assets, and services on a project-by-project basis.

Use account separation and AWS Organizations - Establish tagging and role-based access grants. Understand workflows of the different user types. Use Service Catalog to create pre-provisioned environments for quick deployment including a multi-account architecture that segregates workloads between development, test, and production with appropriate governance based on data sensitivity and compliance requirements. Tag data and buckets that contain sensitive workloads. Use these tags to grant granular access to individuals.

Break out ML workloads by access pattern and structure organizational units - Delegate specific access to each group, such as administrators or data analysts, as required. Use guardrails and service control policies (SCPs) to enforce best practices for each access type and group. Limit infrastructure access to administrators. Verify all sensitive data is accessed through restricted, dedicated, and isolated environments.

Amazon SageMaker AI with Guardrails on AWS

Service Catalog

Build a Secure Enterprise Machine Learning Platform on AWS

AWS Well Architected Framework Security Pillar : Protecting Data at Rest

Building secure Amazon SageMaker AI access URLs with Service Catalog

Setting up secure, well-governed machine learning environments on AWS - for detailed guidance on SCP and OU strategies

AWS re:Invent 2020: Architectural best practices for machine learning applications

AWS re:Invent 2020: Secure and compliant machine learning for regulated industries

AWSre:Inforce 2019: Amazon SageMaker AI Model Development in a Highly Regulated Environment (SDD315)

Build your own Anomaly Detection ML Pipeline

AWS MLOps Framework