You are responsible for maintaining the security of an AWS environment that hosts sensitive data. A recent incident revealed that an IAM role had been misconfigured, granting unintended permissions to a Lambda function. What immediate and long-term measures would you take to prevent such incidents and enhance the overall security posture?