edX Online
AWS: AWS: Getting Started with Cloud Security

Course from Amazon Web Services (AWS)

AWS: AWS: Getting Started with Cloud Security

Let AWS Solutions Architects start you on your journey to secure your cloud resources.

What you'll learn

  • How the AWS Shared Responsibility Model is used to differentiate between security of the cloud and security in the cloud
  • How to use network isolation to protect cloud resources
  • How to audit and monitor applications using services such as Amazon CloudWatch, Amazon GuardDuty and AWSSecurity Hub
  • The difference between encryptionof data at rest and data in transit
  • How to protect compute resources
  • How to manage secrets

About this course

Data security is on the forefront of everyone’s mind these days, with data breaches, denial of service attacks, ransomware and malware being common news stories.

In this course two of Amazon Web Services’ Solutions Architects will provide you with a foundational understanding of cloud security, compliance and the AWS shared responsibility model. They will then discuss more technical content by looking at various security controls such as identity and access management services, directory services, network isolation and connectivity options, auditing, monitoring, encryption and managing secrets.

This course will cover a number of AWS services, such as Amazon VPC, Amazon CloudWatch, AWS CloudTrail, Amazon GuardDuty, AWS Security Hub, Amazon S3, Amazon EBS, Amazon EC2, and AWS Secrets Manager, among others.

Several demonstrations are provided throughout the course to provide a practical example of the concepts that have been discussed. Class discussions will provide an opportunity for you to interact with fellow students as well as AWS training staff.

Curriculum

4 Weeks, 2-4 hours per week

Language

English

Transcripts

English

Week 1

  • Introduction to Week 1
  • The AWS Shared Responsibility Model
  • Compliance
  • Creating an Account
  • Multiple Accounts
  • Identity & Access Services (part 1)
  • Identity & Access Services (part 2)

Week 2

  • Introduction to Week 2
  • Network Isolation
  • Network Isolation with VPC
  • VPC Endpoint and Private Link
  • Detective Controls
  • Auditing
  • Monitoring CloudWatch and CloudWatch Logs
  • Monitoring Guard Duty and Security Hub
  • Demo: AWS Config

Week 3

  • Introduction to Week 3
  • Data Types
  • Encryption in Transit
  • Encryption at Rest
  • Databse Encryption
  • Amazon S3
  • EBS Encryption
  • Demo: Cross Acount Access to S3

Week 4

  • Introduction to Week 4
  • Protecting Compute Resources
  • Protecting the Endpoint
  • Managing Secrets
  • Demo: AWS Secrets Manager
  • The Well-Architected Tool

Ready to advance your career?

Meet the instructors

Frequently asked questions

Share this course

Interested in this course for your business or team?

Train your employees in the most in-demand topics, with edX for business