SCPs: Protecting Your AWS Environment (and your job)
IAMbic, the open-source tool for managing distributed IAM permissions, has expanded its support to include AWS compliance guardrails through Service Control Policies (SCPs). SCPs provide policy governance in AWS, acting as a protective barrier for AWS resources. Users can now efficiently track changes, rollback between different IAM versions, and automatically correct out-of-band changes for important resources. Additionally, IAMbic supports a GitOps workflow, allowing you to implement IAM and SCP changes via PR reviews for improved governance. Continue reading for examples of SCPs, and practical guidance on applying them safely.