4.27 out of 5
4.27
790 reviews on Udemy

AWS Certified Security Specialty 2019

All you need to master AWS Certified Security Specialty certification.
Instructor:
Zeal Vora
5,035 students enrolled
English [Auto-generated]
Will be prepared to give AWS Certified Security Specialty Exam
You will be able to Master the Security aspect of AWS
Gain deep insights about Enterprise grade Security implementation.
Will be able to detect attacks and protect the AWS infrastructure from Hackers.

This course is specially designed for the aspirants who intend to give the AWS Certified Security Specialty 2018 certification and as well for those who wants to master the AWS Security as well.

Throughout the course, we look into various Real World scenario and look into why do website gets hacked, what could had been done to prevent it and learn the best practices related to Security for your AWS environment. 

With tons of quizzes in order to prepare you for exams, Real world scenario and great Support from our Instructor in-case of doubts, this course is all you need to master the Security side of AWS and gain the Certification.

Getting started with the course

1
Understanding AWS Security Specialty exams

Domain 1 - Incident Response

1
Introduction to Domain 1
2
Case Study of Hacked Server
3
Dealing with AWS Abuse Notice
4
AWS GuardDuty
5
Understanding Incident Response Terminology
6
Incident Response Use-Cases for Exams
7
Use Case - Dealing with Exposed Access Keys
8
Use Case - Dealing with compromised EC2 Instances
9
Incident Response in Cloud
10
Penetration Testing in AWS (New)

Domain 2 - Logging & Monitoring

1
Introduction to Vulnerability, Exploit, Payload

In this lecture we will look into basics of hacking methodology.

2
VEP Practical - Hacking inside a test farm
3
Understanding Automated Vulnerability Scanners

In this lecture, we will learn to use Automated Vulnerability Scanner to detect vulnerabilities within a target system.

4
Common Vulnerabilities Exposures & CVSS

In this lecture, we will learn about Common Vulnerabilities Exposure & Common Vulnerability Scoring Systems to understand on how vulnerability scanners really work and to identify vulnerabilities manually.

5
Introduction to AWS Inspector

We will have an overview about the AWS Inspector and it's associated features.

6
Configuring AWS Inspector
7
AWS Inspector & Nessus - CVE scans

We will use AWS Inspector to run CVE based scans and compare it with Industry standards vulnerability scanners.

8
Best Practices in Vulnerability Assessments

In this lecture, we will look into 5 important best practices that needs to be followed in order to take full advantage of the VA activity.

9
Overview of Layer 7 Firewalls
10
Understanding AWS WAF
11
Implementing AWS WAF with ALB
12
Understanding EC2 Run Command
13
Deploying our first RunCommand
14
Patch Compliance with SSM
15
EC2 Systems Manager - Parameter Store
16
Understanding CloudWatch Logs
17
Pushing Linux system logs to CloudWatch
18
CloudWatch Events
19
AWS Athena
20
Athena - Code Samples
21
Overview of AWS CloudTrail
22
Improved Governance - AWS Config 01
23
Improved Governance - AWS Config 02
24
Trusted Advisor
25
CloudTrail - Log File Integrity Validation
26
Document - S3 Log File Validation
27
Digest Delivery Times
28
Overview of AWS Macie (New)
29
Creating our First Alert with AWS Macie (New)
30
S3 Event Notification
31
Security Logging & Monitoring Quiz

This quiz is intend to prepare you for exam for topics which includes the Monitoring Services.

Domain 3 - Infrastructure Security

1
Implementing Bastion Hosts
2
Introduction to Virtual Private Networks
3
OpenVPN is Awesome
4
OpenVPN - Part 02
5
Overview of AWS VPN Tunnels
6
Using AWS VPN for On-Premise to AWS connectivity
7
Configuring first IPSec tunnel with OpenSwan - Part 01
8
Configuring first IPSec tunnel with OpenSwan - Part 02
9
Inter-Region VPC Peering
10
VPC Endpoints
11
Transit VPC
12
VPC Flow Logs
13
Network ACL
14
Understanding Stateful vs Stateless Firewalls
15
Understanding Networking Sockets
16
Revising Security Groups
17
Connection of Security Group & NIC Cards
18
Egress Rules - The Real Challenge
19
IPTABLES & Instance Metadata
20
IDS / IPS in AWS
21
EBS Architecture & Secure Data Wiping
22
Introduction to Reverse Proxies
23
Understanding the Content Delivery Networks
24
Understanding Edge Locations
25
Deploying Cloudfront Distribution - Part 01
26
Understanding the Origin Access Identity
27
Understanding importance of SNI in TLS protocol
28
CloudFront Signed URL - 01
29
CloudFront Signed URL - 02
30
Real World example on DOS Implementation
31
AWS Shield
32
Mitigating DDOS Attacks
33
Document - DDoS References
34
Introduction to Application Programming Interface (API)
35
Understanding the working of API
36
Building Lambda Function for our API
37
Building our first API with API Gateway
38
API Gateway - Important Pointers for Exams
39
Lambda & S3
40
EC2 Key-Pair Troubleshooting
41
EC2 Tenancy Attribute
42
AWS Artifact
43
Lambda@Edge
44
AWS Simple Email Service (SES) (New)

Domain 4 - Identity & Access Management

1
Understanding AWS Organizations
2
AWS Organizations - Practical
3
IAM Policy Evaluation Logic
4
Understanding IAM Policies
5
IAM Policies - Part 02
6
Delegation - Cross Account Trust - Part 1
7
Delegation - Cross Account Trust - Part 2
8
Cross Account IAM Policy Document
9
Revising AWS CLI
You can view and review the lecture materials indefinitely, like an on-demand channel.
Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don't have an internet connection, some instructors also let their students download course lectures. That's up to the instructor though, so make sure you get on their good side!
4.3
4.3 out of 5
790 Ratings

Detailed Rating

Stars 5
344
Stars 4
284
Stars 3
111
Stars 2
32
Stars 1
22
da1540e1049bf9df809903eb0251fe32
30-Day Money-Back Guarantee

Includes

20 hours on-demand video
11 articles
Full lifetime access
Access on mobile and TV
Certificate of Completion