{"id":1565,"date":"2023-02-24T21:27:00","date_gmt":"2023-02-24T21:27:00","guid":{"rendered":"https:\/\/www.pax8.com\/future-blog\/securing-your-aws-account\/"},"modified":"2023-05-11T14:21:05","modified_gmt":"2023-05-11T14:21:05","slug":"securing-your-aws-account","status":"publish","type":"post","link":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/","title":{"rendered":"Securing your AWS account with the Shared Responsibility Model"},"content":{"rendered":"<p>Achieving security and compliance in the AWS cloud.<\/p>\n<p>When an AWS account is created, both the partner and AWS must consider various security and compliance factors. AWS refers to this as the <a href=\"https:\/\/aws.amazon.com\/compliance\/shared-responsibility-model\/\" target=\"_blank\" rel=\"noopener\">Shared Responsibility Model<\/a>. Below, we\u2019ll review the purpose of this model and how best to navigate this important security foundation for well-architected, secure AWS workloads.<\/p>\n<h2>&#8220;Of&#8221; the cloud vs. &#8220;in&#8221; the cloud<\/h2>\n<p>The image below gives an overview of the ways in which AWS holds responsibility &#8220;of the cloud&#8221; and those that are the responsibility of the customer (or partner) &#8220;in the cloud.&#8221; Another way to consider these two components would be the physical aspects vs. the virtual aspects of the cloud. If it is a physical object \u2014 say, a server \u2014 then that is the responsibility of AWS because the partner does not have the ability to touch any physical AWS resources. If it is virtual, then responsibility could sit with the partner or AWS to protect and secure that resource. Of course, there will always be that odd exception to that rule if you are using certain services such as <a href=\"https:\/\/aws.amazon.com\/outposts\/\" target=\"_blank\" rel=\"noopener\">Outposts<\/a>, but overall, the diagram below fits most use cases.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility-infographic.jpg\" alt=\"An infographic on AWS responsibilities\" \/><\/p>\n<h2>AWS\u2019 responsibility<\/h2>\n<p>AWS\u2019 responsibilities are composed of hardware and software. Starting with hardware \u2014 all the physical servers, networking cables, temperature control units, and other physical elements that make up a data center \u2014 all elements need to be secured. Protocols should be put in place to determine which employees are granted access to the data center, which can remove servers from racks, and which can decommission them.<\/p>\n<p>The software layer sits on top of the physical layer, and if you have ever used AWS Managed Services such as RDS (Relational Database Service), they make sure that your Microsoft SQL RDS instance is patched, secured, and upgraded in the most timely and least impactful manner during maintenance windows.<\/p>\n<h2>Your security responsibility<\/h2>\n<p>There are some crucial concepts to keep in mind when considering your own responsibility in achieving cloud security. <a href=\"https:\/\/www.techtarget.com\/searchsecurity\/definition\/encryption\" target=\"_blank\" rel=\"noopener\">Encryption<\/a>, or the act of converting information into secret codes that hide its true meaning, is a vital aspect of securing the data that is created, read, updated, or deleted. Data breaches often occur due to a lack of encryption for data at rest or in transit. It is your choice to add SSL certificated (HTTPS) traffic to network traffic and add encryption to the data services you are using in AWS, but an &#8220;encryption by default&#8221; mindset is recommended in order to manage your data more securely.<\/p>\n<p>In addition, implementing robust <a href=\"https:\/\/www.makeuseof.com\/what-is-access-control-and-why-do-you-need-it\/\" target=\"_blank\" rel=\"noopener\">access control<\/a>, where the right access is granted to the right person, at the right time, can help you better secure your data. The concept of the <a href=\"https:\/\/docs.aws.amazon.com\/accounts\/latest\/reference\/root-user-tasks.html\" target=\"_blank\" rel=\"noopener\">root user<\/a>, or the account owner that is created when the AWS account is set up, dictates this user should <em>never<\/em> be used for day-to-day activity, as they have the ability to close down an entire AWS account \u2014 a non-reversable and extremely damaging (reputationally and operationally) occurrence if it is not expected by your end customers.<\/p>\n<p>It\u2019s advisable to lock down the root credentials and attach <a href=\"https:\/\/docs.aws.amazon.com\/accounts\/latest\/reference\/root-user-mfa.html\" target=\"_blank\" rel=\"noopener\">multi-factor authentication<\/a> (MFA), <a href=\"https:\/\/www.cisa.gov\/publication\/multi-factor-authentication-mfa\" target=\"_blank\" rel=\"noopener\">defined<\/a> as requiring multiple steps to verify a user\u2019s identity, to reduce rogue actors impersonating your credentials. When you are using the <a href=\"https:\/\/www.howtogeek.com\/devops\/what-are-aws-iam-users-and-how-do-you-manage-them\/\" target=\"_blank\" rel=\"noopener\">IAM<\/a> (Identity and Access Management) service, which allows you to create users within the AWS account, you apply AWS policies to them. These policies govern what APIs that IAM entity can interact with. You could use the AWS managed policies or create your own ones. Pax8 encourages the <a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/best-practices.html\" target=\"_blank\" rel=\"noopener\">Principle of Least Privilege<\/a> approach to creating custom IAM policies, which you can learn more about in our <a href=\"http:\/\/events.pax8.com\/en-us-virtual-aws-bootcamp-feb2023\" target=\"_blank\" rel=\"noopener\">AWS bootcamp<\/a> February 21.<\/p>\n<p>It&#8217;s also your responsibility to ensure the operating systems, frameworks, and applications that you install and use on AWS compute resources stay compliant and up to date to protect from <a href=\"https:\/\/www.cve.org\/\" target=\"_blank\" rel=\"noopener\">CVEs<\/a> (common vulnerabilities and exposures or known security flaws). AWS does provide a number of services to support you with these tasks, such as the AWS <a href=\"https:\/\/docs.aws.amazon.com\/systems-manager\/latest\/userguide\/systems-manager-patch.html\" target=\"_blank\" rel=\"noopener\">Patch Manager<\/a>, which can automatically install the latest patches to operating systems during maintenance windows, and <a href=\"https:\/\/aws.amazon.com\/inspector\/\" target=\"_blank\" rel=\"noopener\">Amazon Inspector<\/a>, which can identify vulnerabilities in your application code.<\/p>\n<h2>Security is a joint effort<\/h2>\n<p>There are many elements to the shared responsibility model from AWS, and it\u2019s imperative to understand the components you are responsible for before any workload is designed or built. A recommended approach is to use the security pillar of AWS\u2019 <a href=\"https:\/\/docs.aws.amazon.com\/wellarchitected\/latest\/security-pillar\/welcome.html\" target=\"_blank\" rel=\"noopener\">Well Architected Framework<\/a>, which offers fantastic groundwork into best practices and recommendations for the design, delivery, and maintenance of secure AWS workloads.<\/p>\n<p>Whether you\u2019re just getting started with providing IaaS (infrastructure-as-a-service) services through AWS or looking to improve your AWS security, Pax8 has a team of experts that can help you achieve your goals. Get in touch to make your journey with AWS a success.<\/p>\n<p><a class=\"btn-primary\" href=\"https:\/\/www.pax8.com\/blog\/contact-pax8\">Schedule a call<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Achieving security and compliance in the AWS cloud. When an AWS account is created, both the partner and AWS must consider various security and compliance factors. AWS refers to this as the Shared Responsibility Model. Below, we\u2019ll review the purpose of this model and how best to navigate this important security foundation for well-architected, secure [&hellip;]<\/p>\n","protected":false},"author":141,"featured_media":1567,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"","site-sidebar-layout":"default","site-content-layout":"default","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"default","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[19,4,5],"tags":[],"class_list":["post-1565","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-infrastructure","category-msp","category-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.3 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Securing your AWS account with the Shared Responsibility Model - Pax8 Blog<\/title>\n<meta name=\"description\" content=\"To achieve better security for your AWS account, follow these guidelines as part of AWS\u2019 Shared Responsibility Model.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Secure Your AWS Account with Shared Responsibility\" \/>\n<meta property=\"og:description\" content=\"MSP partners and AWS share responsibility for security and compliance in the AWS cloud. Learn how to develop well-architected, secure AWS workloads.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/\" \/>\n<meta property=\"og:site_name\" content=\"Pax8 Blog\" \/>\n<meta property=\"article:published_time\" content=\"2023-02-24T21:27:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-11T14:21:05+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"narnold\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"Secure Your AWS Account with Shared Responsibility\" \/>\n<meta name=\"twitter:description\" content=\"MSP partners and AWS share responsibility for security and compliance in the AWS cloud. Learn how to develop well-architected, secure AWS workloads.\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"narnold\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/\"},\"author\":{\"name\":\"narnold\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#\\\/schema\\\/person\\\/4f1f5ecebcf730cc2be7b763a310a63c\"},\"headline\":\"Securing your AWS account with the Shared Responsibility Model\",\"datePublished\":\"2023-02-24T21:27:00+00:00\",\"dateModified\":\"2023-05-11T14:21:05+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/\"},\"wordCount\":819,\"publisher\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/wp-content\\\/uploads\\\/sites\\\/13\\\/2023\\\/05\\\/shared-responsibility.jpg\",\"articleSection\":[\"Infrastructure\",\"MSPs\",\"Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/\",\"url\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/\",\"name\":\"Securing your AWS account with the Shared Responsibility Model - Pax8 Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/wp-content\\\/uploads\\\/sites\\\/13\\\/2023\\\/05\\\/shared-responsibility.jpg\",\"datePublished\":\"2023-02-24T21:27:00+00:00\",\"dateModified\":\"2023-05-11T14:21:05+00:00\",\"description\":\"To achieve better security for your AWS account, follow these guidelines as part of AWS\u2019 Shared Responsibility Model.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/wp-content\\\/uploads\\\/sites\\\/13\\\/2023\\\/05\\\/shared-responsibility.jpg\",\"contentUrl\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/wp-content\\\/uploads\\\/sites\\\/13\\\/2023\\\/05\\\/shared-responsibility.jpg\",\"width\":1200,\"height\":630,\"caption\":\"A blue glowing shield icon with a checkmark overlaid on top of it\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/securing-your-aws-account\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Securing your AWS account with the Shared Responsibility Model\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/\",\"name\":\"Pax8 Blog\",\"description\":\"Where IT pros go to keep up with the cloud\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#organization\",\"name\":\"Pax8 Blog\",\"url\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/wp-content\\\/uploads\\\/sites\\\/13\\\/2023\\\/03\\\/pax8-logo-white-blog-300x300-1.png\",\"contentUrl\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/wp-content\\\/uploads\\\/sites\\\/13\\\/2023\\\/03\\\/pax8-logo-white-blog-300x300-1.png\",\"width\":300,\"height\":300,\"caption\":\"Pax8 Blog\"},\"image\":{\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/#\\\/schema\\\/person\\\/4f1f5ecebcf730cc2be7b763a310a63c\",\"name\":\"narnold\",\"url\":\"https:\\\/\\\/www.pax8.com\\\/blog\\\/author\\\/narnold\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Securing your AWS account with the Shared Responsibility Model - Pax8 Blog","description":"To achieve better security for your AWS account, follow these guidelines as part of AWS\u2019 Shared Responsibility Model.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/","og_locale":"en_US","og_type":"article","og_title":"Secure Your AWS Account with Shared Responsibility","og_description":"MSP partners and AWS share responsibility for security and compliance in the AWS cloud. Learn how to develop well-architected, secure AWS workloads.","og_url":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/","og_site_name":"Pax8 Blog","article_published_time":"2023-02-24T21:27:00+00:00","article_modified_time":"2023-05-11T14:21:05+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg","type":"image\/jpeg"}],"author":"narnold","twitter_card":"summary_large_image","twitter_title":"Secure Your AWS Account with Shared Responsibility","twitter_description":"MSP partners and AWS share responsibility for security and compliance in the AWS cloud. Learn how to develop well-architected, secure AWS workloads.","twitter_image":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg","twitter_misc":{"Written by":"narnold","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/#article","isPartOf":{"@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/"},"author":{"name":"narnold","@id":"https:\/\/www.pax8.com\/blog\/#\/schema\/person\/4f1f5ecebcf730cc2be7b763a310a63c"},"headline":"Securing your AWS account with the Shared Responsibility Model","datePublished":"2023-02-24T21:27:00+00:00","dateModified":"2023-05-11T14:21:05+00:00","mainEntityOfPage":{"@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/"},"wordCount":819,"publisher":{"@id":"https:\/\/www.pax8.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/#primaryimage"},"thumbnailUrl":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg","articleSection":["Infrastructure","MSPs","Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/","url":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/","name":"Securing your AWS account with the Shared Responsibility Model - Pax8 Blog","isPartOf":{"@id":"https:\/\/www.pax8.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/#primaryimage"},"image":{"@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/#primaryimage"},"thumbnailUrl":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg","datePublished":"2023-02-24T21:27:00+00:00","dateModified":"2023-05-11T14:21:05+00:00","description":"To achieve better security for your AWS account, follow these guidelines as part of AWS\u2019 Shared Responsibility Model.","breadcrumb":{"@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/#primaryimage","url":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg","contentUrl":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/05\/shared-responsibility.jpg","width":1200,"height":630,"caption":"A blue glowing shield icon with a checkmark overlaid on top of it"},{"@type":"BreadcrumbList","@id":"https:\/\/www.pax8.com\/blog\/securing-your-aws-account\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.pax8.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Securing your AWS account with the Shared Responsibility Model"}]},{"@type":"WebSite","@id":"https:\/\/www.pax8.com\/blog\/#website","url":"https:\/\/www.pax8.com\/blog\/","name":"Pax8 Blog","description":"Where IT pros go to keep up with the cloud","publisher":{"@id":"https:\/\/www.pax8.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.pax8.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.pax8.com\/blog\/#organization","name":"Pax8 Blog","url":"https:\/\/www.pax8.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.pax8.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/03\/pax8-logo-white-blog-300x300-1.png","contentUrl":"https:\/\/www.pax8.com\/blog\/wp-content\/uploads\/sites\/13\/2023\/03\/pax8-logo-white-blog-300x300-1.png","width":300,"height":300,"caption":"Pax8 Blog"},"image":{"@id":"https:\/\/www.pax8.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.pax8.com\/blog\/#\/schema\/person\/4f1f5ecebcf730cc2be7b763a310a63c","name":"narnold","url":"https:\/\/www.pax8.com\/blog\/author\/narnold\/"}]}},"_links":{"self":[{"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/posts\/1565","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/users\/141"}],"replies":[{"embeddable":true,"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/comments?post=1565"}],"version-history":[{"count":0,"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/posts\/1565\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/media\/1567"}],"wp:attachment":[{"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/media?parent=1565"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/categories?post=1565"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.pax8.com\/blog\/wp-json\/wp\/v2\/tags?post=1565"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}