A preview toward a simplified AWS account evolution path from IAM policy management perspective
from a non security professional's perspective
Since this newsletter is mainly to help the software engineers to transition to cloud environment, and since we have talked about the IAM access control and policy in the last several posts, I felt it may be a good idea to share what a small team may need to do during its growth.
This may not be THE growth path, but it is one path. The goal is to give engineers (or engineering founders) who did not work on AWS but start the journey of building a product from scratch on top of it, one perspective and preview about when you should start tackling what problem (it may differ from situation to situation).
Summary
The takeaway is:
Starting an AWS account and starting your journey of building an app is not that hard, even from the security perspective: don’t over-think, just build your app;
you will know when you need to hire professionals (professional security staff) — but your runway is quite long if you spend a bit extra time to plan your IAM and application security ahead of time;
Please share the above infographics if you think it may help your friends who started their AWS journey and have a grand vision to build an application to serve others.