AWS Cloud Security

• Basic knowledge of AWS and Cloud concepts

Audience

• AWS administrators
• Security analysts
• IT professionals

AWS Cloud Security refers to the practices, tools, and policies designed to protect data, applications, and resources hosted on Amazon Web Services (AWS) cloud infrastructure.

This instructor-led, live training (online or onsite) is aimed at beginner to intermediate-level IT professionals who wish to gain the knowledge and skills required to secure Amazon Web Services (AWS) environments effectively.

By the end of this training, participants will be able to:

• Understand the core concepts of AWS Cloud Security and its importance in a cloud environment.
• Implement effective access controls, authentication mechanisms, and multi-factor authentication to secure AWS resources.
• Define and enforce security policies and monitor AWS resources.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

Introduction

• Overview of AWS Cloud
• Understanding the AWS shared responsibility model

Access Controls and Account Management

• Overview of IAM (Identity and Access Management)
• Authentication and authorization
• Multi-factor authentication (MFA) implementation
• Account management best practices
• Managing account locks/unlocks and exceptions

Password Parameters and Policies

• Password policy basics and complexity requirements
• Password expiration intervals
• Handling failed login attempts
• Password whitelists and blacklists
• Password history and rotation
• Implementing account exceptions

Segregation of Functions and Role-Based Access Control

• Role-based access control (RBAC) concepts
• AWS policies and permissions
• Granting and revoking permissions
• Associating policies with IAM roles
• Best practices for segregation of functions
• Role and policy management in AWS
• Role assignment and position competencies

Backups and Operational Continuity

• Data backup strategies in AWS
• S3 data replication options
• EBS snapshots and AMIs
• Disaster recovery planning
• High availability in AWS
• Testing backup and recovery processes
• Ensuring operational continuity

AWS Audit Tools and Best Practices

• Introduction to AWS audit manager
• Setting up AWS audit manager
• Configuring custom audit checks
• AWS trusted advisor
• AWS inspector

Summary and Next Steps