[Security - Controls Effort] Create new AWS group for SBOM access

[hgbarreto]

Description

Security team would like access to Athena and possibly AWS Glue in order to run crawlers manually. They should be able to see default Queries and create new ones on the SBOM table. NOTE - This story may rely on IaC for Athena, Glue and S3 bucket to be complete.

Resources

Acceptance Criteria

• [ ] New AWS Group/Roles/Policies in Terraform
• [ ] Add Security users to new role
• [ ] Create a "Getting Started" Document to pass on to Security folks.

Refinement Guidance - Check the following before working on this issue:

• [ ] Team label assigned ("platform-tech-team-2")
• [ ] Epic assigned (if needed)
• [ ] Estimated (points assigned)
• [ ] Sprint assigned (once planned)
• [ ] Team member(s) assigned
• [ ] Understands how this work aligns with the overall platform

[adhoc-nshipman]

Currently, we are blocked waiting for Ken Mayo to gain AWS access before we can test permissions. Here is the PR in case I am unable to take this over: https://github.com/department-of-veterans-affairs/devops/pull/14575