Which AWS service can a company use to securely store and encrypt passwords for a database?

Explanations:

AWS Shield is a security service designed to protect applications from DDoS attacks. It does not provide features for storing or encrypting passwords.

AWS Secrets Manager is specifically designed for securely storing and managing sensitive information such as passwords, API keys, and database credentials. It encrypts secrets at rest and in transit.

AWS Identity and Access Management (IAM) is used for managing access to AWS services and resources. While it handles permissions and security, it does not store or encrypt passwords.

Amazon Cognito is a service for user authentication and access control in applications. It manages user sign-up and sign-in but does not provide secure storage for passwords like AWS Secrets Manager does.