The DomainKeys Identified Mail (DKIM) feature should be enabled for domains and addresses in SES. DKIM is a security feature that allows recipients of an email to verify that the sender domain has authorized the message and that it has not been spoofed.
The DomainKeys Identified Mail (DKIM) be verified in your SES configuration.
Your AWS SES identities like domains or email addresses should not be exposed to everyone. This will prevent unauthorized users from sending emails on your behalf and restrict access only to trusted entities by implementing the appropriate AWS SES sending authorization policies.
AWS SES identities should be verified in order to prove their ownership and to prevent others from using them. Verifying identities (i.e. ownership confirmation) is an efficient way to prevent people masquerading as other email addresses when they really do not own them.
AWS SES identities (domains and/or email addresses) should not allow unknown cross-account access via authorization policies. Your SES identities should be configured to allow access only to trusted (friendly) AWS accounts in order to prevent unauthorized users from sending emails on your behalf.
If you are not yet convinced to sign up with Cloudanix, that's not a problem. We recommend you use a comprehensive checklist which your team can use to perform a manual assessment of your workload.