Featured Ebook The CFO’s Guide to AWS Commitments - Download Now

How to Change Security Group in AWS EC2 Instance

To change an AWS EC2 instance’s security group, open the Amazon EC2 Console and Select “Instances.” Click “Change Security Groups” under “Actions” and select the security group to assign an instance. You can remove pre-existing security groups by choosing “Remove” then save.

Security groups control traffic within an EC2 according to preset inbound and outbound rules. They provide instance-level security, and you can apply them to one or more instances. There should be one instance associated with at least one security group.

Security groups consist of a set of rules that manage both inbound and outbound traffic on instances. Ideally, they function like virtual firewalls and should form a defense for existing instances.

AWS automatically assigns a default security group upon launching EC2 instances in Virtual Private Cloud (VPC). Security groups apply to the instances assigned by the user during launch or after creating the instance. You can either add rules to the default security group or delete them entirely.

How to Create a New Security Group

You can create a security group through the AWS Management Console. In the console, select ‘‘Security Groups” followed by the “Create Security Group” button.

Create a default security group name and add a description saying how you intend to use the security group. A unique name helps to distinguish it from other security groups. After adding a short description, make sure you assign it to a specific VPC where it will reside.

Once you have entered the basic details, configure both inbound and outbound rules.

Best Practices for AWS EC2 Instances’ Security Groups

Since security groups control both incoming and outgoing traffic, make sure you assign instances to the right security groups. Here are some of security groups’ best practices:

Review Security Groups Associated with Instances

It’s best to look at each security group associated with an EC2 instance for a clear picture of what it regulates. You can check security groups for compliance, organizational policies, etc. This helps you to understand your AWS security posture.

Categorize Security Groups

Categorize security groups depending on their functions. This makes it easy to manage different connections effectively and ensures you don’t interfere with other groups when making changes.

Restrict Access to EC2 Security Groups

One of the best ways to secure sensitive information on AWS is to restrict access to EC2 security groups. This is possible through assigning Identity and Access Management (IAM) permissions and policies to security groups. Limiting access to EC2 security groups prevents insider, brute-force, and DDoS attacks.

Minimize Use of Multiple Security Groups

While you can apply multiple security groups to an EC2 instance, it’s best to minimize that. This is because there is always a risk of overlapping security rules. This is especially true when there is a change to the state of ports.

Cost Optimize with nOps

If you’re looking to improve cost efficiency, visibility and reporting for AWS, nOps can help.

nOps is an end-to-end AWS Cost Optimization Platform that simplifies and automates the management of your cloud resources, commitments, and costs.

nOps integrates with all of your AWS, multicloud, Kubernetes, GenAI, and SaaS costs, making it easy to start automatically improving your visibility and efficiency. 

We manage $2 billion in AWS spend and were recently ranked #1 in G2’s Cloud Cost Management category — book a demo to connect your AWS account and see how much you can save.

Optimize your EKS and ASG Costs

Let AI intelligently manage your Spot instances for max reliability and discounts

Book a Demo

Optimize your EKS and ASG Costs

Let AI intelligently manage your Spot instances for max reliability and discounts
Book a Demo

Start now with nOps

Discover how much you could save by connecting your infrastructure with nOps for free.

Solutions

Platform

Resources

Documentation

Company

The Best Tools By Category

Cloud Cost Guides

Karpenter

Commitment Management

© nOps 2025. All Rights Reserved.

Linkedin-in Youtube Facebook Instagram