1. What is the difference between a Security Group and a Network ACL in AWS?
Security Groups act at the instance level (stateful, meaning return traffic is allowed), whereas Network ACLs act at the subnet level (stateless, meaning you must explicitly define inbound and outbound rules).
2. What is AWS IAM?
IAM (Identity and Access Management) allows you to securely manage access to AWS services. You define users, groups, and policies to enforce the principle of least privilege.