SageMaker Studio supports custom IAM permissions boundaries for SCP compliance
securitygovernanceawsengineer
feature
Amazon SageMaker Unified Studio now supports custom IAM permissions boundaries for roles provisioned during project creation. This allows organizations to enforce Service Control Policies (SCPs) requiring permissions boundaries, simplifying adoption without compromising security posture. Administrators can now set these boundaries at the blueprint level, ensuring all new projects automatically adhere to organizational security requirements.
Read the original announcement →
https://aws.amazon.com/about-aws/whats-new/2026/05/amazon-sagemaker-scp/