DKIM should be enabled

Ensures DomainKeys Identified Mail (DKIM) is enabled for domains and addresses in SES. DKIM is a security feature that allows recipients of an email to verify that the sender domain has authorized the message and that it has not been spoofed.

Addresses: Security

Additional Reading:

• http://docs.aws.amazon.com/ses/latest/DeveloperGuide/easy-dkim.html

DKIM should be verified

Addresses: Security

Identity Not Exposed

Identify any exposed Amazon Simple Email Service (SES) identities and update their sending authorization policy in order to stop unauthorized users from sending emails from domains or addresses owned by your AWS SES account.

Addresses: Security

Identity Verified

Ensure that SES identities are verified in order to prove their ownership and to prevent others from using them.

Addresses: Security

Identify Cross-Account Access

Ensure that AWS SES identities (domains and/or email addresses) do not allow unknown cross-account access via authorization policies.

Addresses: Security

We suggest you use the checklist!

If you are not yet convinced to sign up with Cloudanix, that's not a problem. We recommend you use a comprehensive checklist which your team can use to perform a manual assessment of your workload.