Security is the domain with the largest weight on the exam (30%). But before anything else, there's one question worth pinning down: "Who is responsible for cloud security?" The answer is "both." AWS and the customer divide the responsibility for security between them. Drawing that dividing line precisely is what the Shared Responsibility Model is about. Today we'll sharpen our understanding of that model once more, then move into IAM (Identity and Access Management) — the core tool for the parts the customer is responsible for.
We touched on the shared responsibility model briefly last week, but in the security domain this model is the starting point for every answer