Answer will depend on your use case. One possible answer is to have Service accounts that do certain things within the cluster.
By the way, RBAC in Kubernetes is just AWS IAM Policies and Bindings. In RBAC, you have subjects (who gets the permission), verbs (what can the subject actually do), and rolebinding (subject linking to roles) and roles.
.
