This document discusses security and governance on AWS. It describes how AWS manages security of the cloud through features like identity and access management, encryption, security groups, and security certifications. It also discusses how customers are responsible for security of their own applications and data on AWS through controls, monitoring, and compliance. The shared responsibility model between AWS and customers is described.