Security - Predictive Segmentation Using Amazon Pinpoint and Amazon SageMaker

Security

When you build systems on AWS infrastructure, security responsibilities are shared between you and AWS. This shared model can reduce your operational burden as AWS operates, manages, and controls the components from the host operating system and virtualization layer down to the physical security of the facilities in which the services operate. For more information about security on AWS, visit the AWS Security Center.

IAM Roles

AWS Identity and Access Management (IAM) roles enable customers to assign granular access policies and permissions to services and users on AWS. Predictive Segmentation Using Amazon Pinpoint and Amazon SageMaker creates several IAM roles, including roles that grant the solution’s AWS Lambda functions access to the other AWS services used in this solution.

Amazon Kinesis Data Firehose

By default, the solution’s Amazon Kinesis Data Firehose delivery stream is not encrypted because its destination Amazon Simple Storage Service (Amazon S3) bucket is encrypted. If you customize the solution to use your own dataset, we recommend encrypting the delivery stream using server-side encryption. For more information, see Using Server-Side Encryption with Amazon Kinesis Data Firehose in the Amazon Kinesis Data Firehose Developer Guide.