pds-it
['Produktdetailseite','nein']
Amazon Web Services / AWS Cyber Security
Die Illustrationen sind in Kooperation von Menschen und künstlicher Intelligenz entstanden. Sie zeigen eine Zukunft, in der Technologie allgegenwärtig ist, aber der Mensch im Mittelpunkt bleibt.
KI-generierte Illustration

AWS Security Governance at Scale

Online
1 day
English
€ 760,–
zzgl. MwSt.
€ 904,40
inkl. MwSt.
Buchungsnummer
33896
Veranstaltungsort
Online
2 Events
€ 760,–
zzgl. MwSt.
€ 904,40
inkl. MwSt.
Buchungsnummer
33896
Veranstaltungsort
Online
2 Events
Werde zertifizierter
Machine Lerning Engineer
Dieser Kurs ist Bestandteil der zertifizierten Master Class "Machine Learning Engineer". Bei Buchung der gesamten Master Class sparst du über 15 Prozent im Vergleich zur Buchung dieses einzelnen Moduls.
Zur Master Class
Inhouse Training
Firmeninterne Weiterbildung nur für eure Mitarbeiter:innen - exklusiv und wirkungsvoll.
Anfragen
In Kooperation mit
Learn how to facilitate developer speed and agility, and incorporate preventive and detective controls. By the end of this course, you will be able to apply governance best practices.
Content

Security is foundational to AWS. Governance at scale is a new concept for automating cloud governance that can help companies retire manual processes in account management, budget enforcement, and security and compliance. By automating common challenges, companies can scale without inhibiting agility, speed, or innovation. In addition, they can provide decision makers with the visibility, control, and governance necessary to protect sensitive data and systems.

Course Introduction

  • Instructor introduction
  • Learning objectives
  • Course structure and objectives
  • Course logistics and agenda 

Module 1: Governance at Scale

  • Governance at scale focal points
  • Business and Technical Challenges

Module 2: Governance Automation

  • Multi-account strategies, guidance, and architecture
  • Environments for agility and governance at scale
  • Governance with AWS Control Tower 
  • Use cases for governance at scale

Module 3: Preventive Controls

  • Enterprise environment challenges for developers
  • AWS Service Catalog
  • Resource creation
  • Workflows for provisioning accounts
  • Preventive cost and security governance
  • Self-service with existing IT service management (ITSM) tools
  • Lab 1: Deploy Resources for AWS Catalog
  1. Create a new AWS Service Catalog portfolio and product
  2. Add an IAM role to a launch constraint to limit the actions the product can perform
  3. Grant access for an IAM role to view the catalog items
  4. Deploy an S3 bucket from an AWS Service Catalog product

Module 4: Detective Controls

  • Operations aspect of governance at scale
  • Resource monitoring
  • Configuration rules for auditing
  • Operational insights 
  • Remediation
  • Clean up accounts
  • Lab 2: Compliance and Security Automation with AWS Config
  1. Apply Managed Rules through AWS Config to selected resources
  2. Automate remediation based on AWS Config rules
  3. Investigate the Amazon Config dashboard and verify resources and rule compliance
  • Lab 3: Taking Action with AWS Systems Manager
  1. Setup Resource Groups for various resources based on common requirements
  2. Perform automated actions against targeted Resource Groups

Module 5: Resources

  • Explore additional resources for security governance at scale
Benefits
  • Establishing a landing zone with AWS Control Tower
  • Configuring AWS Organizations to create a multi-account environment
  • Implementing identity management using AWS Single Sign-On users and groups
  • Federating access using AWS SSO
  • Enforcing policies using prepackaged guardrails
  • Centralizing logging using AWS CloudTrail and AWS Config
  • Enabling cross-account security audits using AWS Identity and Access Management (IAM)
  • Defining workflows for provisioning accounts using AWS Service Catalog and AWS Security Hub
Instructor
Wafi Dahman
Vladimir Sabo
Methods

This course includes instructor lecture, presentations, hands-on labs, demonstrations, and group exercises/discussions.

Who should attend

This course is intended for the following job roles:

  • Solution Architect
  • Cyber Security

We recommend that attendees of this course have attended the following course (or equivalent knowlege):
AWS Security Best Practices.

Starttermine und Details

Lernform

Learning form

14.1.2025
Online
Plätze frei
Durchführung gesichert
Online
Plätze frei
Durchführung gesichert
4.3.2025
Online
Plätze frei
Durchführung gesichert
Online
Plätze frei
Durchführung gesichert

The training is carried out in cooperation with an authorized training partner.
For the purpose of implementation, participant data will be transferred to the training partner and the training partner assumes responsibility for the processing of these data.
Please take note of the corresponding privacy policy.

Du hast Fragen zum Training?
Ruf uns an unter +49 761 595 33900 oder schreib uns auf service@haufe-akademie.de oder nutze das Kontaktformular.