This week broadened perspective from single-account security to organization-scale governance. We defined permission ceilings with SCP (Day 1), automatically established secure baselines with Control Tower (Day 2), proved compliance with Audit Manager (Day 3), and made operations a closed loop with Firewall Manager, tags, cost, and automation (Day 4). The final day reviews how these pieces mesh as one governance system through integrated scenarios.
Organizational security governance operates as four overlapping planes. Exam questions almost always mask "which tool from which plane is the answer?"