2025 06 17

AWS – IAM Access Analyzer now identifies who in your AWS organization can access your AWS resources

AWS Identity and Access Management (IAM) Access Analyzer now identifies who within your AWS organization has access to your Amazon S3, Amazon DynamoDB, or Amazon Relational Database Service (RDS) resources. It uses automated reasoning to evaluate all identity policies, resource policies, service control policies (SCPs), and resource control policies (RCPs) to surface all IAM users and roles that have access to your selected critical resources.

After the new internal access analyzer is enabled in the IAM console, the analyzer monitors your selected resources daily, and surfaces findings in a unified dashboard. The updated dashboard combines internal and external access findings to provide a 360-degree view of all access granted to your critical resources. Security teams can respond to new findings in two ways: taking immediate action to fix unintended access, or setting up automated notifications through Amazon EventBridge to engage development teams for remediation.

Internal access findings provide security teams the visibility to strengthen access controls on their critical resources and help compliance teams demonstrate access control audit requirements. Internal access findings are available in all AWS commercial Regions. To learn more about IAM Access Analyzer internal access findings:

Read the AWS news blog post
Review the pricing page
Visit the IAM Access Analyzer documentation

AWS – IAM Access Analyzer now identifies who in your AWS organization can access your AWS resources

Related Posts

AWS – One Year EC2 Instance Savings Plans are now available for P5 and P5en instances

AWS – Amazon EC2 M8g instances now available in AWS South America (São Paulo)

GCP – Enhancing backup vaults with support for Persistent Disk, Hyperdisk, and multi-regions