A company is developing a cloud-based application that handles sensitive customer data. They need to ensure that the data is encrypted both at rest and in transit, and that the encryption keys are securely managed. What combination of AWS services should they use?
