Only use encrypted EBS volumes.
Encrypt your data, snapshots, and disk I/O using the AWS KMS AES-256 algorithm.
Activate your VPC Flow Logs.
Collect IP traffic from and to the network interfaces in your VPCs for further analysis.
Protect your EC2 Key...
