Security Engineering on AWS
This course demonstrates how to use AWS security services to efficiently ensure security and compliance in the AWS Cloud. This course focuses on AWS-recommended security best practices for improving the protection of your data and systems in the cloud. The course describes the security features of key AWS services, including compute, storage, networking, and database services. Finally, the course will illustrate how to leverage AWS services and tools to create automations and monitor loads continuously while responding to security incidents.
COD: AW-AWSSE
Categorie: AWS
Who should participate
This course is aimed at:
- Security technicians
- Security architect
- Security operations
- Cyber ​​security
Prerequisites
It is recommended that participants in this course have:
- Hands-on experience of IT security practices and infrastructure concepts
- Familiarity with cloud computing concepts
- Completed AWS Security Essentials and Architecting on AWS
In this course you will learn to:
- Embrace and leverage the AWS shared security responsibility model
- Design and build AWS application infrastructures that are protected against the most common security threats
- Protect data at rest and data in motion with encryption
- Apply security audits and analyzes automatically and reproducibly
Module 1: Security on AWS
- Security in the AWS cloud
- AWS shared responsibility model
- Incident response overview
- DevOps with security engineering
Module 2: Identifying Access Points on AWS
- Identify the different ways to access the AWS platform
- Understand IAM policies
- IAM permission limit
- IAM login analyzer
- Multi-factor authentication
- AWS CloudTrail
- Lab 01: Traversal access to accounts
Module 3: Security Considerations: Web Application Environments
- Threats in a three-tier architecture
- Common Threats: User Login
- Common Threats: Data Access
- AWS Trusted Advisor
Module 4: Application Security
- Amazon machine images
- Amazon Inspector
- AWS Systems Manager
- Lab 02: Using AWS Systems Manager and Amazon Inspector
Module 5: Data Security
- Data protection strategies
- Encryption on AWS
- Data protection at rest with Amazon S3, Amazon RDS, Amazon DynamoDB
- Protecting data stored with Amazon S3 Glacier
- Amazon S3 access analyzer
- Amazon S3 access points
Day 2
Module 6: Securing Network Communications
- Amazon VPC security considerations
- Amazon VPC traffic mirroring
- Response to compromised instances
- Elastic load balancing
- AWS Certificate Manager
Module 7: Monitoring and Collecting Logs on AWS
- Amazon CloudWatch e i log di CloudWatch
- AWS configuration
- Amazon Matt
- Amazon VPC Flow Logs
- Amazon S3 server access logs
- ELB access logs
- Lab 03: Monitoring and response with AWS Config
- Module 8: Log Processing on AWS
- Amazon Kinesis
- Amazon Athena
- Lab 04: Analysis of web server logs
Module 9: Security Considerations: Hybrid Environments
- Connessioni AWS Site-to-Site e Client VPN
- AWS Direct Connect
- AWS Transit Gateway
- Module 10: Out of Region Protection
- Amazon Route 53
- AWS WAF
- Amazon CloudFront
- AWS Shield
- AWS Firewall Manager
- DDoS mitigation on AWS
Day 3
- Module 11: Security Considerations: Serverless Environments
- Amazon Cognito
- Amazon API Gateway
- AWS Lambda
Module 12: Threat Detection and Investigation
- Amazon GuardDuty
- AWS Security Hub
- Amazon Detective
Module 13: Managing Secrets on AWS
- AWS KMS
- AWS CloudHSM
- AWS Secrets Manager
- Lab 05: Using AWS KMS
Module 14: Automation and safety in design
- AWS CloudFormation
- AWS Service Catalog
- Lab 06: Automating Security on AWS with AWS Service Catalog
Module 15: Account Management and Provisioning on AWS
- AWS Organizations
- AWS control tower
- AWS SSO
- AWS Directory Service
- Lab 07: Federated access with ADFS
Duration – 3 days
Delivery – in Classroom, On Site, Remote
PC and SW requirements:
- Internet connection
- Web browser, Google Chrome
- Zoom
Language
Instructor: English
Workshop: English
Slides: English
