As a developer responsible for maintaining workloads on AWS, you have embedded RDS database connection strings directly within each of the web servers hosting your applications. Following a recent security audit failure, you are seeking a more secure method for storing these secrets and an automated way to rotate the database credentials regularly for better security.

Which AWS service should you utilize to meet these requirements?