>myctrl.tools
Preferences
Under active development Content is continuously updated and improved

AWS Lambda

by Amazon Web Services, Inc.

Serverless event-driven compute service for running code without managing servers

Official Docs

Under Construction: This guidance is being actively developed and verified. Content may change.

Authoritative Sources

Key guidance documents from authoritative organizations. Click to view the original source.

Vendor
AWS Lambda Best Practices

AWS recommends least-privilege IAM permissions for Lambda execution roles and provides operational guidance for secure deployments, monitoring, and concurrency controls.

View source
Vendor
Managing Permissions in AWS Lambda

Explains the Lambda execution role, resource-based policies, and how to control which services and principals can invoke functions.

View source

Verification Commands

Commands and queries for testing and verifying security configurations.

List Lambda functions CLI 
aws lambda list-functions
Get function configuration (timeouts, memory, tracing) CLI 
aws lambda get-function-configuration --function-name FUNCTION_NAME
Inspect function resource-based policy CLI 
aws lambda get-policy --function-name FUNCTION_NAME
List event source mappings for a function CLI 
aws lambda list-event-source-mappings --function-name FUNCTION_NAME

Related Controls

Security controls from various frameworks that relate to AWS Lambda.

NIST SP 800-53 6 controls
AC-3 AC-6 AU-2 AU-6 CM-2 SC-7
CIS Controls 5 controls
4.1 4.2 6.1 8.2 12.1

Related Technologies

AWS Docker