# Security and Governance Best Practices for Self-Hosted AI/ML
<a name="security-and-governance-best-practices-for-self-hosted-AI-ML"></a>

 This conformance pack is intended to provide a baseline of security configurations for self-hosted AI/ML workloads (inclusive of AI, ML, generative AI, agentic AI, and physical AI) running on AWS compute, storage, and networking infrastructure. Expected to be deployed in conjunction with the [Security and Governance Best Practices for AI/ML Supporting Infrastructure](https://docs.aws.amazon.com/config/latest/developerguide/security-and-governance-best-practices-for-AI-ML-supporting-infrastructure.html) conformance pack. For a list of all managed rules supported by AWS Config, see [List of AWS Config Managed Rules](https://docs.aws.amazon.com/config/latest/developerguide/managed-rules-by-aws-config.html). 

 See the `Parameters` section in the following template for the names and descriptions of the required parameters. 

The template is available on GitHub: [Security and Governance Best Practices for Self-Hosted AI/ML](https://github.com/awslabs/aws-config-rules/blob/master/aws-config-conformance-packs/Security-and-Governance-Best-Practices-for-Self-Hosted-AI-ML.yaml).