The architecture team at DataForward Inc. needs to secure a new API Gateway endpoint, ensuring only authorized AWS users/roles can access it, while also gaining end-to-end request visibility for latency analysis and service mapping. How can the solutions architect design the API Gateway access control and perform request inspections?