AWS Security Governance at Scale

The AWS Security Governance at Scale (SISGOV) Course is designed for participants with basic knowledge of cybersecurity and AWS. The course focuses on enterprise-wide security governance and managing large-scale security accounts and resources on AWS. Participants will learn best practices for implementing effective, scalable security governance and how to use AWS tools to automate security controls and manage compliance policies. This course helps prepare for the AWS Security – Specialty Certification .

Submit a request

Course Objectives

Below is a summary of the main objectives of the AWS Security Governance at Scale (SISGOV) course :

  1. Provide an in-depth understanding of the key technical and business issues and challenges of large-scale governance on AWS.
  2. Learn multi-account strategies and architectures, and how to implement environments for agility and governance at scale using AWS Control Tower.
  3. Gain knowledge on enterprise environmental challenges for developers, using AWS Service Catalog, resource creation, account creation workflows, and proactive cost and security governance.
  4. Understand the operational aspects of large-scale governance, asset monitoring, audit configuration rules, operational insights, and remediation.
  5. Explore additional resources for large-scale security governance, including tools and best practices for implementing effective, scalable security governance on AWS.
  6. Detecting and responding to security incidents on AWS.
  7. Systems Monitoring: Gain knowledge about monitoring systems and activities on AWS to ensure the security of applications and services.
  8. Applying Best Practices: Be able to apply security best practices on AWS to create a safe and secure environment.

Course Certification

This course helps you prepare to take the:
AWS Certified Security – Specialty Exam ;

Course Outline

Module 1: Governance at Scale

  • Governance at scale focal points
  • Business and Technical Challenges

Module 2: Governance Automation

  • Multi-account strategies, guidance, and architecture
  • Environments for agility and governance at scale
  • Governance with AWS Control Tower
  • Use cases for governance at scale

Module 3: Preventive Controls

  • Enterprise environment challenges for developers
  • AWS Service Catalog
  • Resource creation
  • Workflows for provisioning accounts
  • Preventive cost and security governance
  • Self-service with existing IT service management (ITSM) tools
  • Lab 1: Deploy Resources for AWS Catalog
  • Create a new AWS Service Catalog portfolio and product.
  • Add an IAM role to a launch constraint to limit the actions the product can perform.
  • Grant access for an IAM role to view the catalog items.
  • Deploy an S3 bucket from an AWS Service Catalog product

Module 4: Detective Controls

  • Operations aspect of governance at scale
  • Resource monitoring
  • Configuration rules for auditing
  • Operational insights
  • Remediation
  • Clean up accounts
  • Lab 2: Compliance and Security Automation with AWS Config
  • Apply Managed Rules through AWS Config to selected resources
  • Automate remediation based on AWS Config rules
  • Investigate the Amazon Config dashboard and verify resources and rule compliance
  • Lab 3: Taking Action with AWS Systems Manager
  • Setup Resource Groups for various resources based on common requirements
  • Perform automated actions against targeted Resource Groups

Course Mode

Instructor-Led Remote Live Classroom Training;

Trainers

Trainers are AWS Official Instructors and certified in other IT technologies, with years of hands-on experience in the industry and in Training.

Lab Topology

For all types of delivery, the Trainee can access real Cisco equipment and systems in our laboratories or directly at the Cisco data centers remotely 24 hours a day. Each participant has access to implement the various configurations thus having a practical and immediate feedback of the theoretical concepts.
Here are some Architecting on AWS Labs topologies available:

 

Course Details

Course Prerequisites

  • Attendance at the  AWS Security Essentials Course is recommended .

Course Duration

Intensive duration 1 days

Course Frequency

Course Duration: 1 days (9.00 to 17.00) - Ask for other types of attendance.

Course Date

  • AWS Security Governance at Scale Course (Intensive Formula) – On request – 9:00 – 17:00

Steps to Enroll

Registration takes place by asking to be contacted from the following link, or by contacting the office at the international number +355 45 301 313 or by sending a request to the email info@hadartraining.com

Hadar Training SH.P.K. Condor Center, Kavaja Street 40, 1st Floor, 1010 Tirana, Albania

Get in touch!

+355 45 301 313 info@hadartraining.com
About Courses News Contact