How would you investigate a suspected compromised AWS access key used in Automation Anywhere environments?