In cloud services, enterprises use a large number of accounts, which causes fragmentation in architecture and security, increasing management difficulty.

AWS WAF

Within the VPC, it examines incoming traffic for malicious packets.

Filters web traffic based on various conditions, including IP addresses, HTTP headers and content, or custom URIs.

AWS Shield

Blocks DDoS attacks outside the VPC.

Firewall Manager

A security management service that centrally configures and manages firewall rules across accounts and applications in AWS Organizations.
When a new application is created, Firewall Manager enforces a set of common security rules to ensure compliance for the new application and resources.

• Manage firewall rules for multiple AWS accounts using a central administrator account.
• Deploy managed rules in different accounts, such as pre-configured WAF rules on your applications.
• Automatically enforce security policies you define in different existing and new resources.
• Centrally deploy baseline security group rules to protect your Virtual Private Cloud (VPC).