Best practices to run Jenkins in AWS

Is there any documentation on the best way to run Jenkins at scale in AWS?

Specifically, I’m looking for guidance on auto-scaling EC2 instances/fargate containers/etc to run jobs.

What are best practices on how to deal with AWS credentials?

thanks,
phil

Not too knowledgable in this are but this plugin is popular for secrets: GitHub - jenkinsci/aws-secrets-manager-credentials-provider-plugin: AWS Secrets Manager Credentials Provider for Jenkins

The EC2 plugin can bring up additional nodes (build agents) on the fly by responding to the build queue https://plugins.jenkins.io/ec2/