Linuxacademy – AWS Certified Security-Specialty Certification

(This course is available immediately for delivery) AWS Certified Security Specialty Certification is a certification that focuses on securing applications. AWS. It is one of the three specialty certifications offered. AWS File size 10.52 GB

Linuxacademy – AWS Certified Security-Specialty Certification

Course Details

The AWS Certified Security Specialty Certification is a certification that focuses on securing applications. AWS. It is one of the three specialty certifications offered. AWS. This certification is focused on five domains that are essential for cloud security design and operation. These are:
Identity and Access Management Detective Controls Data Protection Incident Response

This course was designed to equip you with the necessary knowledge to pass the exam. AWS Certified Security Specialty certification exam, but also the opportunity to gain hands-To become a qualified professional, you will need to have the required experience AWS Security specialist in a real-World environment

Please connect with us at slack.linuxacademy.com in the #security channel if you have questions or feedback.
Syllabus
Course Introduction
Getting Started

Course Introduction

00:02:49

About the Training Administrator

00:02:15

Introduction to Security Runbook Interactive Diagram

00:04:39

Course Features and Tools

00:11:02
Domain 1 : Incident Response
Domain 1 – Introduction

Domain 1 – Introduction

00:06:12
1.1 – Given an AWS Take a Notice of Abuse, Evaluate a Suspected Compromise Instance or Exposed Keys

AWS Notification of Abuse

00:17:04

Response to AWS Notifications for Abuse

00:15:18
Hands-Labs are virtual environments where you can practice the skills you’ve learned in real life without having to pay any extra or manage an account.

Conducting a Source Code Security Check Using git-Discover secrets AWS

00:30:00

AWS Notification of Abuse

00:15:00
1.2 Check that the Incident Response Plan includes pertinent information AWS services.

What is Incident Response, exactly?

00:08:20

Incident Response Framework: Part 1

00:21:50

Incident Response Framework: Part 2

00:13:35

Incident Response Plan

00:15:00
1.3 Evaluate the Configuration Of Automated Alarming and Take Possible Action to Remediate Security-Related Incidents and Emerging Problems

Automated Alerting

00:30:08

Automated Incident Response

00:12:02

CloudTrail Automation Example

00:11:10
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

Enabling AWS VPC Flow logs with automation

00:45:00
Domain 2: Logging and Monitoring
Domain 2 – Introduction

Logging and Monitoring Introduction

00:02:02
2.1 Security monitoring and alerting: Design and implement.

S3 Events

00:18:59

CloudWatch Logs: Custom Metrics and Metric Filters

00:14:11

CloudWatch Events

00:20:40

Multi-CloudWatch Event Buses Account

00:14:45

AWS Config

00:23:20

AWS Inspector

00:21:33
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

Automatic Resource Recovery with AWS Config

01:30:00
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

Automated Remediation of Inspector Findings AWS

01:30:00

Monitor and Alerting: Design, Implement and Troubleshoot

00:45:00
Troubleshoot security monitoring, alerting

Troubleshoot CloudWatch Event

00:18:05
Hands-Labs are virtual environments where you can practice the skills you’ve learned in real life without having to pay any extra or manage an account.

Troubleshooting a Response, Alerting, or Detection Workflow AWS

01:00:00
2.3 Design and Implementation of a Logging Strategy

CloudTrail Logging

00:22:51

CloudWatch Logs: CloudTrail

00:14:14

CloudWatch Logs – VPC Flow logs

00:16:59

CloudWatch Logs: Agent to EC2

00:22:47

CloudWatch Logs: DNS Logs

00:09:46

S3 Access Logs

00:10:18

Multi-Account: Centralized Logging

00:22:04
Troubleshooting Logging Solutions

Download it immediately Linuxacademy – AWS Certified Security-Specialty Certification

Troubleshoot Logging

00:25:39

Multi-Account: Troubleshoot Logging

00:11:24
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

Troubleshooting CloudTrail or S3 Logging Problems AWS

00:30:00
Domain 3: Infrastructure Security
3.1 Design Edge Security AWS

CloudFront

00:31:30

Limiting S3 to CloudFront

00:11:11

Signed URLs & Cookies

00:26:44

CloudFront Geo Restriction

00:09:27

S3 encryption must be enforced

00:14:18

S3 Cross Region Replication – Security

00:17:10

Web Application Firewall, (WAF) AWS Shield

00:23:07
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

Use WAF to block web traffic AWS

00:30:00
3.2 Create and implement a secure network infrastructure.

VPC Design and Security

00:20:51

Security Groups

00:22:12

Network Access Control Lists

00:18:42

VPC Peering

00:35:23

VPC Endpoints

00:30:22

Serverless Security

00:10:23

NAT Gateways

00:13:30

Egress-Only Internet Gateways

00:13:44

Bastion Hosts/JumpBoxes

00:09:06
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

Configuring Layered Protection in AWS VPC

00:30:00
Troubleshoot an insecure network infrastructure.

Troubleshooting a VPC

00:15:27
3.4 Design and implement a host-Based security

AWS Host/Hypervisor Safety (disk/memory).

00:10:53

Host Proxy Servers

00:05:42

Host-Based IDS/IPS

00:09:13

Systems Manager

00:18:02

Packet capture on EC2

00:09:28
Hands-Labs are live, real-life environments that let you practice the skills you’ve learned.

Install an Intrusion Prevention System, (IPS), on an EC2 Instance

00:30:00
Management of Identity and Access
4.1 Design and implement a scaleable authorization and authentication system to access AWS Resources.

IAM Policies

00:25:18

Users, Groups and Roles

00:29:14

Policy Evaluation and Permission Boundaries

00:17:21

Organizations and Service Control Policies

00:18:57

Resource Policies: Policies for S3 Buckets

00:15:38

Resource Policies: KMS Key Policies

00:13:39

Cross-Access to your account for S3 buckets and other objects

00:17:53

Identity Federation

00:22:40

AWS Systems Manager Parameter Store

00:18:24
4.2 Troubleshooting an Authorization and Authentication System for Access AWS Resources.

Troubleshooting Permissions Union

00:09:44

Troubleshooting Cross-Account Roles

00:12:57

Troubleshooting Identity Federation

00:05:52

Troubleshooting KMS CMK

00:07:20
Data Protection
5.1 Implement key management and usage.

Key Management System (KMS)

00:28:11

KMS in a Multi-Configuration of your account

00:08:24

CloudHSM

00:17:05
5.2 Troubleshoot key Management

Troubleshooting KMS Permissions

00:08:29

KMS Limits

00:10:44
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

Troubleshoot KMS Key Policies

00:30:00
5.3 Create and implement a data encryption system for data in transit and data at rest.

KMS – Data at Rest

00:16:11

Server-side encryption with SSE-C

00:06:25

Data In Transit: Certificate Manager (ACM)

00:07:23

SDKs encryption

00:05:55

Exemples of Compliance

00:08:59
Hands-Labs are real-life environments that let you practice the skills you’ve learned.

With SSL Certificates, Create and Manage AWS Certificate Manager

00:30:00
Conclusion
Do a practice exam

AWS Certified Security Specialty

04:00:00
Final Steps

How to prepare for the Exam

00:10:50

What’s next after? Certification?

00:04:53

Recognized

00:01:01
Course Features

Our platform offers unique features that enhance courses beyond videos. Learn more.
Certification Prep Course

This course will prepare you to take the certification exam.
Earn a Certificate Of Completion

When you complete this course, you’ll receive a certificate of completion as proof

 Here’s What You Will Get In Linuxacademy – AWS Certified Security-Specialty Certification