Autoplay
Autocomplete
Previous Lesson
Complete and Continue
AWS Auditing Foundations
Module 1: Introduction and Background Information
Introduction to AWS Auditing Foundations (2:03)
Cloud Infrastructure vs. Corporate Data Centers (5:16)
Customer Use Cases (3:44)
Shared Responsibility and Cloud Infrastructure Models (6:24)
Module 2: Basic AWS Concepts
IAM Principals (Identities) (8:49)
Resources (3:08)
Services (3:16)
Accounts (3:04)
Organizations (4:07)
Module 2 - Conclusion (1:00)
Module 3: Accessing AWS
[LAB] AWS Management Console (2:02)
Command Line Interfaces (CLI's) and Programmatic Access (3:26)
[LAB] AWS CloudShell (3:15)
Application Programming Interfaces (API's) (3:54)
[LAB] Anatomy of an API Request (5:44)
Programming Languages (1:14)
Software Development Kits (SDK's) (2:53)
[LAB] Software Development Kits (SDK's) and API Requests (5:04)
Module 3 - Conclusion (0:57)
Module 6 - Identity and Access Management
Managing Root User Accounts
[Lab] How to Review a Password Policy
Permanent vs. Temporary Access
[Lab]Reviewing Access for Root and IAM Users
Using IAM Roles for Access
[Lab] Anatomy of an IAM Role Review
Logging Access to AWS
Quick Note on Configured Identity Providers
Module 4: AWS Security Maturity Roadmap and the AWS Security Reference Architecture
Reference - https://maturitymodel.security.aws.dev/en/model/
Introduction to the AWS Security Maturity Roadmap
Security Foundations: Security "Epics" and What Exactly is an Epic?
Epic #1 - Identity And Access Management
Epic #2 - Protection and Prevention
Epic #3 - Detection
Epic #4 - Response
Epic #5 - Recovery
Module 5 - AWS Security Reference Architecture
Reference - https://docs.aws.amazon.com/prescriptive-guidance/latest/security-reference-architecture/iam-resources.html
Introduction to the AWS Security Reference Architecture (SRA)
Security Foundations: Security Design Principles
Introduction to AWS Organizations
Introduction to the Organization Management Account
Introduction to Trusted Access and Delegated Administrators
Dedicated Accounts Structure
IAM Guardrails
AWS Security Reference Architecture (SRA) IAM Resources
New Lecture
Module 6 - The Security Reference Architecture (SRA) and AWS Organizations
AWS Organizations and the "Organization"
AWS Organizations Managed Services
3 Key Things That Aren't Explicit in the SRA
Module 7 - AWS Organizations: Organization Management Account
Introduction
Best Practices for the Organization Management Account
[Lab] Alternate Contact Information
Service Control Policies (SCP'S)
[Lab] How to Apply SCP's in the SRA
Organizational Policies
[Lab] How to Apply Organizational Policies
Important AWS Services for the Organization Management Account
AWS Cloud Trail
[Lab] Using Cloud Trail In The Org Management Account
AWS Systems Manager
[Lab] Using Systems Manager In The Org Management Account
AWS SSO
[Lab] Using SSO In The Org Management Account
AWS Config
[Lab] Using Config In The Org Management Account
Module 8 - AWS Organizations: Security Organization Unit
Introduction to the Security OU
Important AWS Services For The Security OU
Security OU: Security Tooling Account
AWS Config
[Lab] Evaluating Your AWS Config Implementation
AWS GuardDuty
[Lab] Evaluating Your GuardDuty Implementation
AWS Inspector
[Lab] Evaluating Your Inspector Implementation
Security OU: Log Archive Account
[Lab] Validating Log Forwarding to Log Archive Account
AWS Key Management Service (KMS)
[Lab] Evaluating At-Rest Encryption for Log Archives
Module 9 - AWS Organizations: Infrastructure Organization Unit
Introduction
Important Services For The Network Services Account
Infrastructure OU - Network Services Account
AWS Firewall Manager
[Lab] Evaluating Your Implementation of Firewall Manager
Virtual Private Clouds (VPC's)
AWS Firewall Manager
[Lab] Firewall Manager In The Network Services Account
Amazon CloudFront
Amazon API Gateway
Infrastructure OU: Shared Services Account
Important AWS Services For The Shared Services Account
AWS SSO
[Lab] SSO In The Shared Services Account
AWS Secrets Manager
[Lab] Secrets Manager In The Shared Services Account
[LAB] AWS CloudShell
Lesson content locked
If you're already enrolled,
you'll need to login
.
Enroll in Course to Unlock