Get up to 20% off courses booked in April!

Amazon Web Services (AWS) - Security Engineering on AWS

Duration

Duration:

Only 2 Days

Method

Method:

Classroom / Online / Hybrid

Next date

Next date:

24/6/2024 (Monday)

Overview

This accelerated Security Engineering on AWS intermediate-level course is led by an expert AWS instructor who will guide you through the security practices that AWS recommends for enhancing the security of data and systems in the cloud.

You will learn to efficiently use AWS security services including Amazon Security Lake, Amazon Detective, AWS Control Tower, AWS Secrets Manager, Amazon CloudWatch, Amazon GuardDuty, and more for automation, continuous monitoring and logging, and responding to security incidents.

Security is a concern for both customers in the cloud, and those considering cloud adoption. An increase in cyberattacks and data leaks remains top of mind for most industry personnel. This Security Engineering on AWS course addresses these concerns by helping you better understand how to interact and build with Amazon Web Services (AWS) in a secure way. In this course, you will learn about managing identities and roles, managing and provisioning accounts, and monitoring API activity for anomalies. You will also learn about how to protect data stored on AWS. The course explores how you can generate, collect, and monitor logs to help identify security incidents. Finally, you will review detecting and investigating security incidents with AWS services.

In just 2 days, you’ll learn to state an understanding of AWS cloud security based on the CIA triad. You’ll also learn how to:

  • Create and analyse authentication and authorizations with IAM
  • Manage and provision accounts on AWS with appropriate AWS services
  • Identify how to manage secrets using AWS services
  • Monitor sensitive information and protect data via encryption and access controls
  • Identify AWS services that address attacks from external sources
  • Monitor, generate, and collect logs
  • Identify indicators of security incidents
  • Identify how to investigate threats and mitigate using AWS services

At the end of this course, you’ll achieve your Security Engineering on AWS certification.

Through Firebrand’s Lecture | Lab | Review methodology, you’ll get certified at twice the speed of the traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.

Audience

This course is ideal for:

  • Security engineers
  • Security architects
  • Cloud Architects
  • Cloud operators

See prices now to find out how much you could save when you train at twice the speed.

 See prices

Benefits

Seven reasons why you should sit your course with Firebrand Training

  1. Two options of training. Choose between residential classroom-based, or online courses
  2. You'll be certified fast. With us, you’ll be trained in record time
  3. Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
  4. Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  5. You’ll learn more. A day with a traditional training provider generally runs from 9 am – 5 pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day of quality learning time, with your instructor
  6. You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  7. You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals
  • * For residential training only. Doesn't apply for online courses
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

 Free Practice Test

Curriculum

Module 1: Security Overview and Review

  • Explain Security in the AWS Cloud.
  • Explain AWS Shared Responsibility Model.
  • Summarize IAM, Data Protection, and Threat Detection and Response.
  • State the different ways to interact with AWS using the console, CLI, and SDKs.
  • Describe how to use MFA for extra protection.
  • State how to protect the root user account and access keys.

Module 2: Securing Entry Points on AWS

  • Describe how to use multi-factor authentication (MFA) for extra protection.
  • Describe how to protect the root user account and access keys.
  • Describe IAM policies, roles, policy components, and permission boundaries.
  • Explain how API requests can be logged and viewed using AWS CloudTrail and how to view and analyse access history.
  • Hands-On Lab: Using Identity and Resource Based Policies.

Module 3: Account Management and Provisioning on AWS

  • Explain how to manage multiple AWS accounts using AWS Organizations and AWS Control Tower
  • Explain how to implement multi-account environments with AWS Control Tower
  • Demonstrate the ability to use identity providers and brokers to acquire access to AWS services
  • Explain the use of AWS IAM Identity Centre (successor to AWS Single Sign-On) and AWS Directory Service
  • Demonstrate the ability to manage domain user access with Directory Service and IAM Identity Centre
  • Hands-On Lab: Managing Domain User Access with AWS Directory Service

Module 4: Secrets Management on AWS

  • Describe and list the features of AWS KMS, CloudHSM, AWS Certificate Manager (ACM), and AWS Secrets Manager.
  • Demonstrate how to create a multi-Region AWS KMS key.
  • Demonstrate how to encrypt a Secrets Manager secret with an AWS KMS key.
  • Demonstrate how to use an encrypted secret to connect to an Amazon Relational Database Service (Amazon RDS) database in multiple AWS Regions
  • Hands-on lab: Lab 3: Using AWS KMS to Encrypt Secrets in Secrets Manager

Module 5: Data Security

  • Monitor data for sensitive information with Amazon Macie.
  • Describe how to protect data at rest through encryption and access controls.
  • Identify AWS services used to replicate data for protection.
  • Determine how to protect data after it has been archived.
  • Hands-on lab: Lab 4: Data Security in Amazon S3

Module 6: Infrastructure Edge Protection

  • Describe the AWS features used to build secure infrastructure.
  • Describe the AWS services used to create resiliency during an attack.
  • Identify the AWS services used to protect workloads from external threats.
  • Compare the features of AWS Shield and AWS Shield Advanced.
  • Explain how centralized deployment for AWS Firewall Manager can enhance security.
  • Hands-on lab: Lab 5: Using AWS WAF to Mitigate Malicious Traffic

Module 7: Monitoring and Collecting Logs on AWS

  • Identify the value of generating and collecting logs.
  • Use Amazon Virtual Private Cloud (Amazon VPC) Flow Logs to monitor for security events.
  • Explain how to monitor for baseline deviations.
  • Describe Amazon EventBridge events.
  • Describe Amazon CloudWatch metrics and alarms.
  • List log analysis options and available techniques.
  • Identify use cases for using virtual private cloud (VPC) Traffic Mirroring.
  • Hands-on lab: Lab 6: Monitoring for and Responding to Security Incidents

Module 8: Responding to Threats

  • Classify incident types in incident response
  • Understand incident response workflows
  • Discover sources of information for incident response using AWS services
  • Understand how to prepare for incidents
  • Detect threats using AWS services
  • Analyse and respond to security findings
  • Hands-on lab: Lab 7: Incident Response

Exam Track

At the end of this accelerated course, you’ll achieve your Security Engineering on AWS Certification.

  • This course includes presentations, hands-on labs, demonstrations, and group exercises.

What's Included

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **
  • * For residential training only. Accommodation is included from the night before the course starts. This doesn't apply for online courses.
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts
  • *** Pass first time or train again free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.

Prerequisites

Before attending this accelerated course, you should have:

  • Completed the following courses:
  • AWS Security Essentials or AWS Security Fundamentals and Architecting on AWS
  • Working knowledge of IT security practices and infrastructure concepts Familiarity with the AWS Cloud

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.

Reviews

Here's the Firebrand Training review section. Since 2001 we've trained exactly 134561 students and asked them all to review our Accelerated Learning. Currently, 96.41% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.


"Very impressed with the dedication from the instructor and how well structured the sessions are. The course is very intense since it's only 3 days long, however, the quality of the training makes it worthwhile. I'd recommend going in person since you will find it much easier to focus and likely get more out of the course overall."
Simon Brown, Softcat. (8/9/2023 (Friday) to 10/9/2023 (Sunday))

"Enrolling in Firebrand Training's AWS Solution Architect Associate course online instructor-led program was an outstanding decision for my career. The course was not only comprehensive but also delivered by highly knowledgeable instructors who made complex AWS concepts easy to grasp. The interactive nature of the online sessions and the practical hands-on labs ensured that I gained a deep understanding of AWS solutions and best practices. I can confidently say that Firebrand Training played a pivotal role in helping me achieve AWS Solution Architect Associate certification. I highly recommend this course to anyone looking to excel in AWS cloud architecture."
Omar Anwar. (4/9/2023 (Monday) to 7/9/2023 (Thursday))

"Course provided all the key knowledge required to prepare me for my organisation currently introducing AWS migrations"
AB, Marketaxess. (31/7/2023 (Monday) to 1/8/2023 (Tuesday))

"Trainer was excellent, a lot of information, great experience"
Olawale Abdullahi, BPP University. (31/7/2023 (Monday) to 1/8/2023 (Tuesday))

"The trainer provided excellent delivery and commitment to enabling me to understand the AWS platform, services and how they interact with each other. the topics where discussed in great depth with live demos and real world analogies and examples to help embed the knowledge rather than just reading from a slide deck. the course is extremely intense but the way the content delivery was structured with a mix of slides, live demos, labs and open classroom discussions helped enable me to gain a great insight into the AWS platform."
Matthew Bingham, Softcat PLC. (24/7/2023 (Monday) to 27/7/2023 (Thursday))

Course Dates

Start

Finish

Status

Location

Book now

19/2/2024 (Monday)

20/2/2024 (Tuesday)

Finished - Leave feedback

-

 

24/6/2024 (Monday)

25/6/2024 (Tuesday)

Wait list

Nationwide

 

5/8/2024 (Monday)

6/8/2024 (Tuesday)

Limited availability

Nationwide

 

16/9/2024 (Monday)

17/9/2024 (Tuesday)

Open

Nationwide

 

28/10/2024 (Monday)

29/10/2024 (Tuesday)

Open

Nationwide

 

9/12/2024 (Monday)

10/12/2024 (Tuesday)

Open

Nationwide

 

Latest Reviews from our students

Trustpilot