AWS Certified Cloud Practitioner

Explanation

Under the AWS Shared Responsibility Model:

AWS Responsibility (Security OF the Cloud):

• Scanning AWS service endpoints for vulnerabilities - AWS is responsible for securing the underlying infrastructure and services
• Encrypting traffic on the AWS backbone between global and regional AWS facilities - AWS manages the security of the global network infrastructure

Customer Responsibility (Security IN the Cloud):

• Enabling encryption on an Amazon S3 bucket - Customer must configure and manage data encryption settings
• Configuring security group rules - Customer manages network access controls
• Enforcing application access restrictions - Customer manages application-level security and access controls

The shared responsibility model divides security responsibilities where AWS manages the security of the cloud infrastructure, while customers manage security in the cloud for their applications and data.