When running Jenkins on EC2 it is both easy and secure to give the EC2 instance(s) an IAM profile to run as which negates the need for a Jenkins IAM user and a static access/secret key.

The EC2 instance profile could be tried when no access/secret key has been selected.