Implement security controls for serverless functions and applications.

• Apply least privilege execution roles per function
• Validate and sanitize all event inputs to prevent injection attacks
• Monitor for timeouts and unexpected concurrency indicative of DoS attacks