AWS Security Best Practices Course (SISCBP)
The AWS Security Best Practices Course (SISCBP) is designed for IT professionals who want to deepen their knowledge of cybersecurity in a cloud environment. During the course, participants will learn best practices to protect their applications and data in AWS. Key topics include access management, data security, activity monitoring, and regulatory compliance. The course aims to provide participants with the skills needed to create and implement an effective security strategy for their cloud projects on AWS. The course contributes to the preparation of the AWS Certified Security – Specialty and AWS Advanced Networking – Specialty certifications
Course Objectives
Below is a summary of the main objectives of the AWS Security Best Practices Course (SISCBP) :
- Deep Dive into Cyber Security on AWS: Gain advanced cybersecurity knowledge in the AWS cloud environment.
- Protecting Applications and Data: Learn best practices for protecting applications and data in AWS, ensuring the integrity and confidentiality of information.
- Access Management: Understand and implement effective access management strategies, ensuring that only authorized users can access AWS resources.
- Data Security and Activity Monitoring: Gain data security and activity monitoring skills to identify and mitigate potential security threats.
- Regulatory Compliance: Learn to navigate regulatory compliance in the area of security on AWS, ensuring that the solutions you implement are in line with applicable regulations
- Incident Response and Forensics: Develop skills in incident response and forensic analysis to effectively respond to and investigate security incidents in the AWS environment.
- Network Security: Implement and manage network security measures, including configuring virtual private clouds (VPCs), security groups, and network access control lists (ACLs).
- Automating Security Processes: Learn to automate security processes using AWS services and tools, enhancing the efficiency and effectiveness of your security operations.
Course Certification
This course helps you prepare to take the:
AWS Certified Advanced Networking – Specialty Exam ;
Course Outline
Module 1: AWS Security Overview
- Shared responsibility model
- Customer challenges
- Frameworks and standards
- Establishing best practices
- Compliance in AWS
Module 2: Securing the Network
- Flexible and secure
- Security inside the Amazon Virtual Private Cloud (Amazon VPC)
- Security services
- Third-party security solutions
- Lab 1: Controlling the Network
- Create a three-security zone network infrastructure.
- Implement network segmentation using security groups, Network Access Control Lists (NACLs),
- and public and private subnets.
- Monitor network traffic to Amazon Elastic Compute Cloud (EC2) instances using VPC flow logs.
Module 3: Amazon EC2 Security
- Compute hardening
- Amazon Elastic Block Store (EBS) encryption
- Secure management and maintenance
- Detecting vulnerabilities
- Using AWS Marketplace
- Lab 2: Securing the starting point (EC2)
- Create a custom Amazon Machine Image (AMI).
- Deploy a new EC2 instance from a custom AMI.
- Patch an EC2 instance using AWS Systems Manager.
- Encrypt an EBS volume.
- Understand how EBS encryption works and how it impacts other operations.
- Use security groups to limit traffic between EC2 instances to only that which is encrypted
Module 4: Monitoring and Alerting
- Logging network traffic
- Logging user and Application Programming Interface (API) traffic
- Visibility with Amazon CloudWatch
- Enhancing monitoring and alerting
- Verifying your AWS environment
- Lab 3: Security Monitoring
- Configure an Amazon Linux 2 instance to send log files to Amazon CloudWatch.
- Create Amazon CloudWatch alarms and notifications to monitor for failed login attempts.
- Create Amazon CloudWatch alarms to monitor network traffic through a Network Address
- Translation (NAT) gateway
Course Mode
Instructor-Led Remote Live Classroom Training;
Trainers
Trainers are Amazon AWS accredited instructors and certified in other IT technologies, with years of practical experience in the sector and in training.
Lab Topology
For all types of delivery, the participant can access the equipment and actual systems in our laboratories or directly in international data centers remotely, 24/7. Each participant has access to implement various configurations, Thus immediately applying the theory learned. Below are some scenarios drawn from laboratory activities.
Course Details
Course Prerequisites
- Attendance at the AWS Security Essentials Course and the Architecting on AWS Course is recommended.s.
Course Duration
Intensive duration 1 days;
Course Frequency
Course Duration: 1 days (9.00 to 17.00) - Ask for other types of attendance.
Course Date
- AWS Technical Essentials (Formula Intensiva) – On Request – 9:00 – 17:00
Steps to Enroll
Registration takes place by asking to be contacted from the following link, or by contacting the office at the international number +355 45 301 313 or by sending a request to the email info@hadartraining.com