Security Operations on AWS

Learn how to efficiently use AWS security services to stay secure and compliant in the AWS cloud. The course focuses on the AWS-recommended security best practices that you can implement to enhance the security of your data and systems in the cloud. The course highlights the security features of AWS key services including compute, storage, networking, and database services. This course also refers to the common security control objectives and regulatory compliance standards and examines use cases for running regulated workloads on AWS across different verticals, globally. You will also learn how to leverage AWS services and tools for automation and continuous monitoring?taking your security operations to the next level.

Skills Gained

This course teaches you how to:

• Assimilate and leverage the AWS shared security responsibility model.
• Mange user identity and access management in the AWS cloud.
• Use AWS security services such as AWS Identity and Access Management, Amazon Virtual Private Cloud, AWS Config, AWS CloudTrail, AWS Key Management Service, AWS CloudHSM, and AWS Trusted Advisor.
• Implement better security controls for your resources in the AWS cloud.
• Manage and audit your AWS resources from a security perspective.
• Monitor and log access and usage of AWS compute, storage, networking, and database services.
• Assimilate and leverage the AWS shared compliance responsibility model.
• Identify AWS services and tools to help automate, monitor, and manage security operations on AWS.
• Perform security incident management in the AWS cloud.

Who Can Benefit

This course is intended for:

• Security engineers
• Security architects
• Security analysts
• Security auditors
• Individuals who are responsible for governing, auditing, and testing an organization?s IT infrastructure, and ensuring conformity of the infrastructure to security, risk, and compliance guidelines

Prerequisites

• Attended AWS Security Fundamentals
• Experience with governance, risk, and compliance regulations and control objectives
• Working knowledge of IT security practices
• Working knowledge of IT infrastructure concepts
• Familiarity with cloud computing concepts

Course Outline

This course covers the following concepts:

Day 1

• Entry points on AWS
• Security considerations for Web Application environments
• Securing network communications inside the Amazon VPC
• Application security with incident response

Day 2

• Data security with incident response
• Security considerations for a hybrid environment
• AWS monitoring and log collecting
• Processing logs on AWS
• Protecting against threats outside of the Amazon VPC

Day 3

• Account management on AWS
• Security considerations for a serverless environment
• Secrets management on AWS
• Automating security and incident response on AWS
• Threat detection and sensitive data monitoring