Account Isolation

In AWS the general top-level entity is a numbered account. Around 2016, AWS announced the notion of an organization which consolidates billing and security under a single umbrella. Even with organizations, the account still remains the major player in IAM.

For every numbered account their is a single root account. There may only be one root user for a single account. You will want to avoid using your root user as recommended by AWS.