From 118da69eb56c82b78a8943c8eee95d85f01ed6df Mon Sep 17 00:00:00 2001
From: Ben Allen <ballen@sans.org>
Date: Tue, 11 Jul 2017 11:08:30 -0500
Subject: [PATCH] add headings for incremental policy and bootstrap script

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index c65b510e..6a91e85b 100644
--- a/README.md
+++ b/README.md
@@ -511,6 +511,8 @@ Instead of using default policy SecurityAudit for the account you use for checks
 }
 ```
 
+### Incremental IAM Policy
+
 Alternatively, here is a policy which defines the permissions which are NOT present in the AWS Managed SecurityAudit policy. Attach both this policy and the AWS Managed SecurityAudit policy to the group and you're good to go.  
 
 ```
@@ -534,6 +536,8 @@ Alternatively, here is a policy which defines the permissions which are NOT pres
 }
 ```
 
+### Bootstrap Script
+
 Quick bash script to set up a "prowler" IAM user and "SecurityAudit" group with the required permissions. To run the script below, you need user with administrative permissions; set the AWS_DEFAULT_PROFILE to use that account.
 
 ```