Amazon QuickSight launches new capability for account administrators to use Customer Managed Keys (CMK) to encrypt and manage SPICE datasets. Previously, QuickSight fully manages the protection of customer-data stored inside of the QuickSight service. Using the new Customer Managed Keys (CMK) capability will benefit QuickSight users to 1/ be able to revoke access to SPICE datasets with one click, and 2/ maintain an auditable log that tracks how SPICE datasets are accessed. This feature increases level of security and transparency, gives customers more control over their SPICE datasets and satisfies security requirements by company and government agency policies. For further details, visit here.
This is a companion discussion topic for the original entry at https://aws.amazon.com/about-aws/whats-new/2022/10/amazon-quicksight-customer-managed-keys-spice-data-encryption/