AWS: Getting Started with Cloud Security
About this courseSkip About this course
Data security is on the forefront of everyone’s mind these days, with data breaches, denial of service attacks, ransomware and malware being common news stories.
In this course two of Amazon Web Services’ Solutions Architects will provide you with a foundational understanding of cloud security, compliance and the AWS shared responsibility model. They will then discuss more technical content by looking at various security controls such as identity and access management services, directory services, network isolation and connectivity options, auditing, monitoring, encryption and managing secrets.
This course will cover a number of AWS services, such as Amazon VPC, Amazon CloudWatch, AWS CloudTrail, Amazon GuardDuty, AWS Security Hub, Amazon S3, Amazon EBS, Amazon EC2, and AWS Secrets Manager, among others.
Several demonstrations are provided throughout the course to provide a practical example of the concepts that have been discussed. Class discussions will provide an opportunity for you to interact with fellow students as well as AWS training staff.
At a glance
- Language: English
- Video Transcript: English
- Associated skills:Encryption, Solution Architecture, Amazon Web Services, Cloud Computing Security, Amazon GuardDuty, Amazon Elastic Compute Cloud, Demonstration Skills, Amazon CloudWatch, Directory Service, AWS CloudTrail, Amazon Virtual Private Cloud (VPC), Amazon S3, Security Controls, Amazon Elastic Block Stores, Identity And Access Management, News Stories
What you'll learnSkip What you'll learn
- How the AWS Shared Responsibility Model is used to differentiate between security of the cloud and security in the cloud
- How to use network isolation to protect cloud resources
- How to audit and monitor applications using services such as Amazon CloudWatch, Amazon GuardDuty and AWSSecurity Hub
- The difference between encryptionof data at rest and data in transit
- How to protect compute resources
- How to manage secrets
- Introduction to Week 1
- The AWS Shared Responsibility Model
- Creating an Account
- Multiple Accounts
- Identity & Access Services (part 1)
- Identity & Access Services (part 2)
- Introduction to Week 2
- Network Isolation
- Network Isolation with VPC
- VPC Endpoint and Private Link
- Detective Controls
- Monitoring CloudWatch and CloudWatch Logs
- Monitoring Guard Duty and Security Hub
- Demo: AWS Config
- Introduction to Week 3
- Data Types
- Encryption in Transit
- Encryption at Rest
- Databse Encryption
- Amazon S3
- EBS Encryption
- Demo: Cross Acount Access to S3
- Introduction to Week 4
- Protecting Compute Resources
- Protecting the Endpoint
- Managing Secrets
- Demo: AWS Secrets Manager
- The Well-Architected Tool
Frequently Asked QuestionsSkip Frequently Asked Questions
Q. Are there any prerequisites for this course?
A.There are no required prerequisites for this course. However, we recommend that leaners have a general understanding of cloud computing and security concepts.
Q. Is it a requirement that I complete the AWS Professional Developer Series on edX before taking this course?
A. No this is not a requirement.
Q. Are there any costs associated with this course?
A. Learners can register for the course in an Audit track or Verified Certificate track. The Audit track is free, but has restrictions. The Verified Certificate track costs $49 and provides full access to course content for the duration. Please visit edx.org for more information.
Q. How much time will this course require?
A. If following the weekly schedule, learners should plan to spend 2-4 hours per week on this course. However, learners may complete the course at their own pace.
Q. Will I receive a certificate for this course?
A. Learners enrolled in the Verified Certificate path will receive a certificate upon successful completion of the course.
Q. What is the grading policy for this course?
A. All learners may take weekly quizzes, which are not graded and allow unlimited retries.
Learners in the Verified Certificate track are able to take the final course assessment in the course. Passing the final assessment is required to obtain the Verified Certificate.
Learners in the Audit track will not have access to the final assessment, and will not be able to earn a certificate.
Q. How are discussions used in this course?
A. This course has discussion groups aligned to each week of the course. We encourage learners to ask questions or offer suggestions and feedback. AWS Instructors will monitor the discussion groups to answer questions specific to the exercises and topics covered in the course.
Q. When will course content be available?
A. All course content will be available when the course opens. Since AWS frequently publishes service updates and new features/functionality, there may be a need to update the course content during its lifetime. If course content is updated, a notice will be placed on the course home page.
Q. Will this course help me prepare for an AWS Certification?
A. Earning an AWS Certification typically requires both knowledge and experience. While this course, if taken in isolation, will provide you with baseline information about cloud security, it will not equip you to earn an AWS Certification. For more information about AWS Certifications, including recommended training and experience requirements, visit aws.amazon.com/certification.