Cloud Guardrails best practice: Protect against data deletion

Configuration

Protect against data deletion

Block delete calls on persistent data resources by default on IAM roles to avoid accidentally deleting all your data.

Summary

Block delete calls on persistent data resources by default on IAM roles to avoid accidentally deleting all your data. Automation can hurt sometimes. Having EBS, RDS, S3, etc.. Using AWS Backup is good, but sometimes the time of the backup doesn't match when you want.

Applicable To

Always

Resources

S3, DynamoDB, RDS

Maturity

Medium

Functions

Reliability

Security

CSPS

AWS

Author

Mark Andersen

Additional Links

View on GitHub Contribute on GitHub

Back to Home