How do you effectively configure an AWS S3 bucket to ensure maximum data durability while preventing accidental public exposure on the internet? Furthermore, security settings like bucket policies and default encryption must be established at the moment of creation to protect sensitive organization data. Why does this initial setup process remain the foundation of cloud security?