+49 (911) 80 10 30

Give us a call or have us call you back!

Simply leave a message with your callback appointment

Your Name *

Your phone number *

Callback date *

Callback time *

Your request *

In order to process your request, it is necessary to process the data you provide. This means that by submitting the contact form, you consent to your data being processed (see Privacy Policy). You can object to the processing of your data at any time.

* All fields marked with an asterisk are mandatory fields.
Send a message

Your Name *

Your email *

Your phone number

Your request *

In order to process your request, it is necessary to process the data you provide. This means that by submitting the contact form, you consent to your data being processed (see Privacy Policy). You can object to the processing of your data at any time.*

* All fields marked with an asterisk are mandatory fields.
Social Media

Share page

AW920: AWS™ Security Best Practices

Training: AWS™ - Cloud - Certification

Participants receive a practical introduction to AWS™ security best practices. The course covers methods for securing networks through architectural decisions, as well as hardening and managing compute resources. It also addresses monitoring with alerting to detect suspicious events and quickly initiate incident response processes.

Appointment selection

Appointments in German language


Unfortunately there are currently no available appointments. Would you like to request an appointment? Then click on 'No matching appointment?'

Possible course languages: German

Request prefered appointment period:

Your Name *

Your email *

Your phone number

Preferred period from *

Preferred period to *

Number of participants *

Your message

* All fields marked with an asterisk are mandatory fields.

Unfortunately there are currently no available appointments.
Would you like to request an appointment? Then click on 'No matching appointment?'

Request prefered appointment period:

Your Name *

Your email *

Your phone number

Preferred period from *

Preferred period to *

Number of participants *

Your message

* All fields marked with an asterisk are mandatory fields.

Agenda:

AWS™ Security Overview
- Shared responsibility model
- Customer challenges
- Frameworks and standards
- Establishing best practices
- Compliance in AWS™

Securing the Network
- Flexible and secure
- Security inside the Amazon Virtual Private Cloud (Amazon VPC)
- Security services
- Third-party security solutions

Lab 1: Controlling the Network
- Create a three-security zone network infrastructure.
- Implement network segmentation using security groups, Network Access Control Lists (NACLs), and public and private subnets.
- Monitor network traffic to Amazon Elastic Compute Cloud (EC2) instances using VPC flow logs.

Amazon EC2 Security
- Compute hardening
- Amazon Elastic Block Store (EBS) encryption
- Secure management and maintenance
- Detecting vulnerabilities
- Using AWS™ Marketplace

Lab 2: Securing the starting point (EC2)
- Create a custom Amazon Machine Image (AMI).
- Deploy a new EC2 instance from a custom AMI.
- Patch an EC2 instance using AWS™ Systems Manager.
- Encrypt an EBS volume.
- Understand how EBS encryption works and how it impacts other operations.
- Use security groups to limit traffic between EC2 instances to only that which is encrypted.

Monitoring and Alerting
- Logging network traffic
- Logging user and Application Programming Interface (API) traffic
- Visibility with Amazon CloudWatch
- Enhancing monitoring and alerting
- Verifying your AWS™ environment

Security Monitoring
- Configure an Amazon Linux 2 instance to send log files to Amazon CloudWatch.
- Create Amazon CloudWatch alarms and notifications to monitor for failed login attempts.
- Create Amazon CloudWatch alarms to monitor network traffic through a Network Address Translation (NAT) gateway.

Objectives:

In this course AW920 AWS™ Security Best Practices, you will learn to:

Design and implement a secure network infrastructure
Design and implement compute security
Design and implement a logging solution

Target audience:

This course AW920 AWS™ Security Best Practices is intended for:

Solutions architects
Cloud engineers, including security engineers
Delivery and implementation engineers
Professional services, and Cloud Center of Excellence (CCOE)

Prerequisites:

To participate in the course AW920 AWS™ Security Best Practices at qSkills™, you should have completed the following AWS™ trainings:

AWS™ Security Fundamentals
AW120 AWS™ Security Essentials

Description:

Currently, the average cost of a security breach can be upwards of $4 million. The course AW920 AWS™ Security Best Practices provides an overview of some of the industry best practices for using AWS™ security and control types.

This course AW920 AWS™ Security Best Practices helps you understand your responsibilities while providing valuable guidelines for how to keep your workload safe and secure. You will learn how to secure your network infrastructure using sound design options. You will also learn how you can harden your compute resources and manage them securely.

Finally, by understanding AWS™ monitoring and alerting, you can detect and alert on suspicious events to help you quickly begin the response process in the event of a potential compromise.

This course AW920 AWS™ Security Best Practices includes presentations, demonstrations, and hands-on labs.