Explain how you would audit and lock down an AWS environment that has overly permissive IAM roles at Alteryx.