I have a series of AWS accounts that are under one organizational entity. I want to prevent other users in my accounts from copying or sending data to an account that is not in my organization via HTTP, or FTP. All accounts will have VPCs operating within them, and VPC Peering to connect to other VPCs across accounts. How could I achieve this goal to limit data exfiltration given this setup?
Thank you in advance for your help.