IAM Roles and Policies are an important piece of every AWS environments security. When done correctly, this can be a very powerful tool. However, these policies may easily get out of control and have unexpected consequences if not properly secured.
As more decisions are handed over to AI, regulating their behaviour could become increasingly important. Part of the challenge stems from the fact that while we can understand “how” an AI has reached a certain conclusion, discovering the “why” is much more problematic.