In this talk I will walk through the use of pareto’s 80/20 rule to add significant security to your AWS accounts at scale with little effort (but lots of testing). We will be leveraging the power of AWS Organizations and Service Control Policies (SCPs) to accomplish our goals. This will be a technical talk and guide on taking advantage of AWS Organizations and SCP from scratch and lessons learned from using it in the wild. If you have not yet utilized AWS Organizations and have (or plan to have) multiple AWS accounts, this talk is for you.
This talk assumes you have secured your individual AWS accounts at the basic level by locking down your root accounts with 2FA, and etc.