AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
3min chapter
AWS INCIDENT RESPONSE - Automate Containment
Cloud Security Podcast
How to Deploy a KMS Key in AWS
If you have an organization that has multiple accounts, of course, it would be ideal to start at the very foundational level. So what I would suggest is that based on my experience and also is incredibly opinionated, you have a module using Terraform. You can modify that module to allow a specific amount of roles to decrypt, encrypt, re-encrypt for that particular KMS key or that subset of KMS keys. That will help eliminate the overhead of going in and manually updating the KMS key policies for every key that the organization has used. It's something that you bake into the SDLC.
00:00
Transcript
Episode notes
Get the Snipd
podcast app
Unlock the knowledge in podcasts with the podcast player of the future.
AI-powered
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode
Save any
moment
Hear something you like? Tap your headphones to save it with AI-generated key takeaways
Share
& Export
Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more
AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode