Identity Management and Access Control capability - Establishing Your Cloud Foundation on AWS

Identity Management and Access Control capability

The Identity Management and Access Control (IMAC) capability will help you build and monitor IAM permissions in your environment. This capabilities will enable you to structure your organization, organize your resources within defined isolated groups following the principal of least privilege (PoLP). The following guidance will help your team develop a framework to manage your environment and provide access to your services.

Category: Security

Stakeholders:

  • Security (Primary)

  • Operations

  • Central IT

  • Software Engineering

Personas:

  • Cloud Team - the team(s) who make AWS available to customers.

  • Identity Management Team – the members of the cloud subject matter expert (SME) team responsible for Identity Management and Access control in the cloud.

  • Information Security Team - the team responsible for security in the cloud.

  • Consumer - everyone who needs to access the cloud platform.

Supporting capabilities: Governance Capability

Scenarios:

  • CF2 - S1: Identity management

  • CF2 - S4: Identity Operations

  • CF2 - S7: Permissions management

Topics