Scenario

You're working on a new data pipeline and want to set up access controls correctly before implementation. The pipeline will run on AWS, and different services and operators will need access to storage, compute, orchestration, and secrets.

Question

How do you implement security best practices and the principle of least privilege in an AWS-based infrastructure?