Security - Genomics Tertiary Analysis and Data Lakes Using AWS Glue

Security

This solution is preconfigured with all of the IAM policies and roles necessary to run the solution with least privileges.

When you build systems on AWS infrastructure, security responsibilities are shared between you and AWS. This shared model can reduce your operational burden as AWS operates, manages, and controls the components from the host operating system and virtualization layer down to the physical security of the facilities in which the services operate. For more information about security on AWS, visit the AWS Security Center.

IAM roles

AWS Identity and Access Management (IAM) roles enable you to secure jobs and crawlers running in AWS Glue, and restrict access to the data catalog, the data lake bucket, and the notebook instance. All of the IAM roles in this solution have been defined with least privileges. Refer to Appendix B for details about roles and permissions used in this solution.