In this article, we explore the AWS Identity and Access Management (IAM) service, focusing on IAM policies. We define terminology for essential components and discuss different types of policies, including identity-based policies, resource-based policies, permissions boundaries, access control lists, and session policies. We also cover policy document structure, creating an IAM policy using the AWS console or Terraform, validating and testing IAM policies, versioning IAM policies, and best practices for managing IAM policies. The article highlights the importance of securely accessing cloud resources and provides valuable insights into effective access management controls on AWS.