AWS Security Governance at Scale

AWS Security Governance at ScaleSGSAWAmazon Web ServicesAW-SGS1.0<p>Erforderlich:</p> <ul> <li>AWS Security Fundamentals (digitaler Kurs)</li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/course/amazon-sec-ess"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>AWS Security Essentials <span class="fl-prod-pcode">(SEC-ESS)</span></a></span></li></ul><p>Optional:</p> <ul> <li>AWS Cloud Management Assessment</li><li>Introduction to AWS Control Tower</li><li>Automated Landing Zone course</li><li>Introduction to AWS Service Catalog</li></ul><p>Dieser Kurs richtet sich an Lösungsarchitekten, Security-DevOps-Personal und Sicherheitsingenieure.</p><ul> <li>Course Introduction</li><li>Module 1: Governance at Scale</li><li>Module 2: Governance Automation</li><li>Module 3: Preventive Controls</li><li>Module 4: Detective Controls</li><li>Module 5: Resources</li></ul><h5>Course Introduction</h5><ul> <li>Instructor introduction</li><li>Learning objectives</li><li>Course structure and objectives</li><li>Course logistics and agenda</li></ul><h5>Module 1: Governance at Scale</h5><ul> <li>Governance at scale focal points</li><li>Business and Technical Challenges</li></ul><h5>Module 2: Governance Automation</h5><ul> <li>Multi-account strategies, guidance, and architecture</li><li>Environments for agility and governance at scale</li><li>Governance with AWS Control Tower</li><li>Use cases for governance at scale</li></ul><h5>Module 3: Preventive Controls</h5><ul> <li>Enterprise environment challenges for developers</li><li>AWS Service Catalog</li><li>Resource creation</li><li>Workflows for provisioning accounts</li><li>Preventive cost and security governance</li><li>Self-service with existing IT service management (ITSM) tools</li><li>Lab 1: Deploy Resources for AWS Catalog</li><li>Create a new AWS Service Catalog portfolio and product.</li><li>Add an IAM role to a launch constraint to limit the actions the product can perform.</li><li>Grant access for an IAM role to view the catalog items.</li><li>Deploy an S3 bucket from an AWS Service Catalog product.</li></ul><h5>Module 4: Detective Controls</h5><ul> <li>Operations aspect of governance at scale</li><li>Resource monitoring</li><li>Configuration rules for auditing</li><li>Operational insights</li><li>Remediation</li><li>Clean up accounts</li><li>Lab 2: Compliance and Security Automation with AWS Config</li><li>Apply Managed Rules through AWS Config to selected resources</li><li>Automate remediation based on AWS Config rules</li><li>Investigate the Amazon Config dashboard and verify resources and rule compliance</li><li>Lab 3: Taking Action with AWS Systems Manager</li><li>Setup Resource Groups for various resources based on common requirements</li><li>Perform automated actions against targeted Resource Groups</li></ul><h5>Module 5: Resources</h5><ul> <li>Explore additional resources for security governance at scale</li></ul>Erforderlich: - AWS Security Fundamentals (digitaler Kurs) - AWS Security Essentials (SEC-ESS) Optional: - AWS Cloud Management Assessment - Introduction to AWS Control Tower - Automated Landing Zone course - Introduction to AWS Service CatalogDieser Kurs richtet sich an Lösungsarchitekten, Security-DevOps-Personal und Sicherheitsingenieure.- Course Introduction - Module 1: Governance at Scale - Module 2: Governance Automation - Module 3: Preventive Controls - Module 4: Detective Controls - Module 5: ResourcesCourse Introduction - Instructor introduction - Learning objectives - Course structure and objectives - Course logistics and agenda Module 1: Governance at Scale - Governance at scale focal points - Business and Technical Challenges Module 2: Governance Automation - Multi-account strategies, guidance, and architecture - Environments for agility and governance at scale - Governance with AWS Control Tower - Use cases for governance at scale Module 3: Preventive Controls - Enterprise environment challenges for developers - AWS Service Catalog - Resource creation - Workflows for provisioning accounts - Preventive cost and security governance - Self-service with existing IT service management (ITSM) tools - Lab 1: Deploy Resources for AWS Catalog - Create a new AWS Service Catalog portfolio and product. - Add an IAM role to a launch constraint to limit the actions the product can perform. - Grant access for an IAM role to view the catalog items. - Deploy an S3 bucket from an AWS Service Catalog product. Module 4: Detective Controls - Operations aspect of governance at scale - Resource monitoring - Configuration rules for auditing - Operational insights - Remediation - Clean up accounts - Lab 2: Compliance and Security Automation with AWS Config - Apply Managed Rules through AWS Config to selected resources - Automate remediation based on AWS Config rules - Investigate the Amazon Config dashboard and verify resources and rule compliance - Lab 3: Taking Action with AWS Systems Manager - Setup Resource Groups for various resources based on common requirements - Perform automated actions against targeted Resource Groups Module 5: Resources - Explore additional resources for security governance at scale1 Tag795.00750.00795.002000.00750.00795.00795.00795.00795.00795.00870.00