Blog

Your dream job? Lets Git IT.
Interactive technical interview preparation platform designed for modern developers.

XGitHub

Platform

  • Categories

Resources

  • Blog
  • About the app
  • FAQ
  • Feedback

Legal

  • Privacy Policy
  • Terms of Service

© 2025 LetsGit.IT. All rights reserved.

LetsGit.IT/Categories/Cloud
Cloudhard

IAM: what does “least privilege” mean and why does it matter?

Tags
#iam#security#least-privilege
Back to categoryPractice quiz

Answer

Least privilege means giving only the minimum permissions needed to do the job (no more). It limits blast radius: if a key or service is compromised, the attacker can do less damage.

{
  "Effect": "Allow",
  "Action": ["s3:GetObject"],
  "Resource": ["arn:aws:s3:::my-bucket/*"]
}

Related questions

Cloud
IAM users vs roles: what’s the difference and how does least privilege apply?
#cloud#iam#security
Cloud
Secrets rotation: how do you rotate credentials without downtime?
#cloud#security#secrets
Cloud
Public vs private subnet: what is the difference (in practice)?
#cloud#networking#subnet
Cloud
What is a VPC (virtual private cloud) and why do you need it?
#cloud#networking#vpc
Cloud
Why separate environments/accounts for prod vs dev (and what do you gain)?
#environments#security#blast-radius
Cloud
Secrets vs config — where should you store secrets in a cloud setup?
#secrets#kms#security