How Is AWS Cloud Security Used In Production???

egrizzly

Hello Cloud Experts?

How is AWS Cloud Security used in production?  At the enterprise workplace so do you configure, administer, and use it directly through amazon.com/aws, or is there a cloud security tool/app that sits between the user and AWS?

JDMurray

Configuring Security Groups and managing Identity Access (IAM) is all performed in your browser using dashboards. There are lots of YT videos showing how this is performed.

egrizzly

awesome @JDMurray ...so I take it this is directly through aws.amazon.com site right, and not using any 3rd party software?

JDMurray

Yes, the dashboard are provided by AWS. However, there are probably 3rd-party tools that call AWS APIs to do the same management too.

scasc

In production very seldom anyone uses the console as it’s pretty manual. To automate and deploy/change your workloads in tandem you either deploy IaC (infrastructure as code) such as cloudformation in AWS or ARM templates in azure or terraform as HCL files and through  the CLI and API endpoints the cloud environment is managed. 

AWS have a number of SDK support so services can tie in with say boto3 which is the library for Python to help with workload management.