Back

Practical AWS Security Training

The growing number of intrusions into cloud environments shows that securing data and resources in the cloud requires appropriate competences. We offer training for project teams dedicated to AWS safety.


The key objectives regarding the Practical AWS Security Training are:

 – to provide deep understanding of security aspects in AWS,

 – to show common pitfalls and their consequences,

 – to share best practices regarding protection of the most common AWS services,

 – to teach how to perform cloud security assessment and detect security issues in practice,

 – to give instructions on how to log and monitor potential security incidents,

 – to have great fun during laboratories based on real scenarios.


The training is dedicated for anyone who works with AWS, including developers, administrators and security engineers.



Full agenda of the Practical AWS Security training:

DAY 1

1) AWS Security Basics:
        – Shared Responsibility Model, 
        – Outages,
        – Compliance.
 
2) Identity Access Management
        – all types of AWS policies and how they work together,
        – various approaches to permission management,
        – common mistakes.
 
3) Infrastructure security
        – cloud structure,
        – using AWS tools to protect infrastructure.
 
4) S3 security
        – conflicting policies,
        – built-in security mechanisms,
        – best practices.
 

DAY 2
 
5) Application security
        – threats in cloud applications,
        – security best practices in serverless applications, EC2 and ECS
 
6) Data protection
        – encryption
 
7) Logging and monitoring
        – multiple log sources
        – analyzing logs
 
8) Auditing AWS infrastructure
        – AWS audit process
        – open source tools for detecting potential security issues
 


The training is dedicated for anyone who works with AWS, including developers, administrators and security engineers. Basic experience with AWS is required. A computer with a browser is enough to participate in the labs. 

To get an individual training quote for your team, complete our contact form. We will get back to you with a reply as soon as possible.

Case study

How did we increase the security of online banking applications?

The client was one of the leading banks with a website for individual and business entities. The scope tests covered transaction website security, payment management services, financial exchange and loan products.

More soon…
They trusted us

You may also like

Hackflix & Skill – Security Series for developers

An interactive course in which, together with Buggy, we will guide your project team through the most common vulnerabilities we encounter in our security tests. A few seemingly insignificant bugs can lead to fatal consequences. Let’s prevent them!
Read more

Purple Teaming

3 intensive days, 2 trainers, and 2 teams – red and blue – fighting for your application. Workshops created to improve both offensive and defensive security skills in your organization.
Read more

Become a Client

and let’s build your safe future together

Book a Call

or leave a message