AWS Parameter Store from Amazon's System Manager (SSM)

SSM Parameter Store SecureString with KMS and AWS CLI steps for encrypted parameters and minimal permissions