Week 8 Worklog

Week 8 Objectives:

  • Master AWS Security and Access Management (IAM, Cognito, Identity Center).
  • Encrypt data using AWS KMS keys and monitor cloud security posture using AWS Security Hub.
  • Implement CloudFront distribution security headers and SSL/TLS certificates.

Tasks to be carried out this week:

DayTaskStart DateCompletion DateReference Material
2Review AWS IAM users, policies, roles, and configure AWS IAM Identity Center for Single Sign-On (SSO).06/08/202606/08/2026https://000012.awsstudygroup.com/
3Generate KMS keys, encrypt RDS instances and S3 buckets at rest, and review AWS Security Hub findings.06/09/202606/09/2026https://000033.awsstudygroup.com/
4Study Amazon Cognito User Pools and Identity Pools for user management and secure authentication.06/10/202606/10/2026https://000141.awsstudygroup.com/
5Configure SSL/TLS certificates via ACM on CloudFront and set up security response headers (WAF, CSP).06/11/202606/11/2026https://000026.awsstudygroup.com/
6Run security scans (port checks, TLS versions) to ensure the deployment meets security best practices.06/12/202606/12/2026

Week 8 Achievements:

  • Implemented security controls on AWS using IAM roles and centralized access through Identity Center.
  • Enforced data-at-rest encryption with KMS keys across DB and storage, achieving compliance in Security Hub.
  • Secured web communication with CloudFront HTTPS and prepared Cognito integration for user sign-in.