Security Engineering on AWS Training Course and Workshop in Bangalore, Mysore, Chennai, Hyderabad, Pune, Mumbai, Delhi, Noida, Gurgaon, Kolkata

This Security Engineering on AWS training course demonstrates how to efficiently use AWS security services to stay secure in the AWS Cloud. The course focuses on the security practices that AWS recommends for enhancing the security of your data and systems in the cloud. It highlights the security features of AWS key services including compute, storage, networking, and database services. You will also learn how to leverage AWS services and tools for automation, continuous monitoring and logging, and responding to security incidents.

By attending Security Engineering on AWS workshop, delegates will learn to:

Identify security benefits and responsibilities of using the AWS Cloud
Build secure application infrastructures
Protect applications and data from common security threats
Perform and automate security checks
Configure authentication and permissions for applications and resources
Monitor AWS resources and respond to incidents
Capture and process logs
Create and configure automated and repeatable deployments with tools such as AMIs and AWS CloudFormation

Working knowledge of IT security practices and infrastructure concepts
Familiarity with cloud computing concepts
Attend a training on Architecting on AWS or equivalent practical experience.

The Security Engineering on AWS class is ideal for:

Security engineers, security architects, and information security professionals.

Security on AWS

Security in the AWS cloud
AWS Shared Responsibility Model
Incident response overview
DevOps with Security Engineering

Identifying Entry Points on AWS

Identify the different ways to access the AWS platform
Understanding IAM policies
IAM Permissions Boundary
IAM Access Analyzer
Multi-factor authentication
AWS CloudTrail

Security Considerations: Web Application Environments

Threats in a three-tier architecture
Common threats: user access
Common threats: data access
AWS Trusted Advisor

Application Security

Amazon Machine Images
Amazon Inspector
AWS Systems Manager

Data Security

Data protection strategies
Encryption on AWS
Protecting data at rest with Amazon S3, Amazon RDS, Amazon DynamoDB
Protecting archived data with Amazon S3 Glacier
Amazon S3 Access Analyzer
Amazon S3 Access Points

Securing Network Communications

Amazon VPC security considerations
Amazon VPC Traffic Mirroring
Responding to compromised instances
Elastic Load Balancing
AWS Certificate Manager

Monitoring and Collecting Logs on AWS

Amazon CloudWatch and CloudWatch Logs
AWS Config
Amazon Macie
Amazon VPC Flow Logs
Amazon S3 Server Access Logs
ELB Access Logs

Processing Logs on AWS

Amazon Kinesis
Amazon Athena

Security Considerations: Hybrid Environments

AWS Site-to-Site and Client VPN connections
AWS Direct Connect
AWS Transit Gateway

Out-Of-Region Protection

Amazon Route 53
AWS WAF
Amazon CloudFront
AWS Shield
AWS Firewall Manager
DDoS mitigation on AWS

Security Considerations: Serverless Environments

Amazon Cognito
Amazon API Gateway
AWS Lambda

Threat Detection and Investigation

Amazon GuardDuty
AWS Security Hub
Amazon Detective

Secrets Management on AWS

AWS KMS
AWS CloudHSM
AWS Secrets Manager

Automation and Security by Design

AWS CloudFormation
AWS Service Catalog

Account Management and Provisioning on AWS

AWS Organizations
AWS Control Tower
AWS SSO
AWS Directory Service

Encarta Labs Advantage

One Stop Corporate Training Solution Providers for over 6,000 various courses on a variety of subjects
All courses are delivered by Industry Veterans
Get jumpstarted from newbie to production ready in a matter of few days

Trained more than 50,000 Corporate executives across the Globe
All our trainings are conducted in workshop mode with more focus on hands-on sessions

Security Engineering on AWS

COURSE AGENDA