About this courseSkip About this course
Data security is on the forefront of everyone’s mind these days, with data breaches, denial of service attacks, ransomware and malware being common news stories.
In this course two of Amazon Web Services’ Solutions Architects will provide you with a foundational understanding of cloud security, compliance and the AWS shared responsibility model. They will then discuss more technical content by looking at various security controls such as identity and access management services, directory services, network isolation and connectivity options, auditing, monitoring, encryption and managing secrets.
This course will cover a number of AWS services, such as Amazon VPC, Amazon CloudWatch, AWS CloudTrail, Amazon GuardDuty, AWS Security Hub, Amazon S3, Amazon EBS, Amazon EC2, and AWS Secrets Manager, among others.
Several demonstrations are provided throughout the course to provide a practical example of the concepts that have been discussed. Class discussions will provide an opportunity for you to interact with fellow students as well as AWS training staff.
What you'll learnSkip What you'll learn
- How the AWS Shared Responsibility Model is used to differentiate between security of the cloud and security in the cloud
- How to use network isolation to protect cloud resources
- How to audit and monitor applications using services such as Amazon CloudWatch, Amazon GuardDuty and AWS Security Hub
- The difference between encryption of data at rest and data in transit
- How to protect compute resources
- How to manage secrets
- Introduction to Week 1
- The AWS Shared Responsibility Model
- Creating an Account
- Multiple Accounts
- Identity & Access Services (part 1)
- Identity & Access Services (part 2)
- Introduction to Week 2
- Network Isolation
- Network Isolation with VPC
- VPC Endpoint and Private Link
- Detective Controls
- Monitoring CloudWatch and CloudWatch Logs
- Monitoring Guard Duty and Security Hub
- Demo: AWS Config
- Introduction to Week 3
- Data Types
- Encryption in Transit
- Encryption at Rest
- Databse Encryption
- Amazon S3
- EBS Encryption
- Demo: Cross Acount Access to S3
- Introduction to Week 4
- Protecting Compute Resources
- Protecting the Endpoint
- Managing Secrets
- Demo: AWS Secrets Manager
- The Well-Architected Tool
Meet your instructors
Pursue a Verified Certificate to highlight the knowledge and skills you gain$49 USD
Official and Verified
Receive an instructor-signed certificate with the institution's logo to verify your achievement and increase your job prospects
Add the certificate to your CV or resume, or post it directly on LinkedIn
Give yourself an additional incentive to complete the course
Support our Mission
edX, a non-profit, relies on verified certificates to help fund free education for everyone globally
Frequently asked questions
A. There are no required prerequisites for this course. However, we recommend that leaners have a general understanding of cloud computing and security concepts.
Q. Is it a requirement that I complete the AWS Professional Developer Series on edX before taking this course?
A. No this is not a requirement.
Q. Are there any costs associated with this course?
A. Learners can register for the course in an Audit track or Verified Certificate track. The Audit track is free, but has restrictions. The Verified Certificate track costs $49 and provides full access to course content for the duration. Please visit edx.org for more information.
Q. How much time will this course require?
A. If following the weekly schedule, learners should plan to spend 2-4 hours per week on this course. However, learners may complete the course at their own pace.
Q. Will I receive a certificate for this course?
A. Learners enrolled in the Verified Certificate path will receive a certificate upon successful completion of the course.
Q. What is the grading policy for this course?
A. All learners may take weekly quizzes, which are not graded and allow unlimited retries.
Learners in the Verified Certificate track are able to take the final course assessment in the course. Passing the final assessment is required to obtain the Verified Certificate.
Learners in the Audit track will not have access to the final assessment, and will not be able to earn a certificate.
Q. How are discussions used in this course?
A. This course has discussion groups aligned to each week of the course. We encourage learners to ask questions or offer suggestions and feedback. AWS Instructors will monitor the discussion groups to answer questions specific to the exercises and topics covered in the course.
Q. When will course content be available?
A. All course content will be available when the course opens. Since AWS frequently publishes service updates and new features/functionality, there may be a need to update the course content during its lifetime. If course content is updated, a notice will be placed on the course home page.
Q. Will this course help me prepare for an AWS Certification?
A. Earning an AWS Certification typically requires both knowledge and experience. While this course, if taken in isolation, will provide you with baseline information about cloud security, it will not equip you to earn an AWS Certification. For more information about AWS Certifications, including recommended training and experience requirements, visit aws.amazon.com/certification.
Who can take this course?
Unfortunately, learners from one or more of the following countries or regions will not be able to register for this course: Iran, Cuba and the Crimea region of Ukraine. While edX has sought licenses from the U.S. Office of Foreign Assets Control (OFAC) to offer our courses to learners in these countries and regions, the licenses we have received are not broad enough to allow us to offer this course in all locations. edX truly regrets that U.S. sanctions prevent us from offering all of our courses to everyone, no matter where they live.