Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Subscribe
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
AI for Cyber Security: Automating Threat Detection in AWS
Role Play
Rating: 5.0 out of 5(1 rating)
4 students
Created byCloud Brewery
Last updated 12/2025
English

What you'll learn

  • Build an AI-powered, event-driven threat detection pipeline on AWS using GuardDuty, EventBridge, Lambda, Step Functions, and Bedrock.
  • Automatically analyze GuardDuty findings with Amazon Bedrock Titan and generate clear, actionable security summaries.
  • Deploy and test a fully automated detection-to-notification workflow that reduces breach detection time from months to seconds.
  • Use AWS CLI to build, orchestrate, troubleshoot, and clean up cloud security automation components end-to-end.

Course content

8 sections18 lectures1h 2m total length

  • How we intend to reduce detection time from 277 days to less than 60 seconds2:43
  • Configure your Environment3:27
  • Understand the Big Picture2:35

Requirements

  • Basic familiarity with AWS services is helpful, but beginners can follow along — all commands and steps are fully guided.
  • An AWS account (free tier eligible) and a willingness to run hands-on labs with EventBridge, Lambda, SNS, and Step Functions.
  • Some comfort with reading JSON or CLI output is useful, but not required — everything is explained clearly.
  • No prior security experience needed. The course covers threat detection concepts from the ground up.

Description

Modern cyberattacks are faster, stealthier, and more sophisticated than ever.

IBM reports that organizations take an average of 277 days to identify and contain a breach — and 327 days when stolen credentials are involved. Meanwhile, CrowdStrike’s 2024 Threat Report shows that attackers achieve lateral movement in as little as 79 minutes.

This gap between attacker speed and detection speed is where damage occurs.


This course teaches you how to close that gap dramatically — reducing threat detection time from months to seconds using fully automated, serverless, event-driven architecture on AWS.


In this hands-on workshop, you will build an AI-powered detection pipeline that integrates:


  • Amazon GuardDuty to detect suspicious activity

  • Amazon EventBridge to route findings instantly

  • AWS Lambda to trigger automated workflows

  • AWS Step Functions to orchestrate multi-step analysis

  • Amazon Bedrock (Titan Text Express) to summarise findings using AI

  • Amazon SNS to send real-time, human-readable alerts



You’ll learn how to deploy the entire system with AWS CLI, test real GuardDuty findings, observe the workflow in Step Functions, analyse model output, and receive actionable insights via email.


By the end of the course, you will have a production-ready, AI-enabled cloud security pipeline capable of turning raw threat telemetry into clear, actionable intelligence — automatically and instantly.


Whether you’re a developer, security analyst, architect, or IT leader, this course will help you modernise your detection strategy and accelerate your security operations.

Who this course is for:

  • Cloud developers who want to build real event-driven architectures
  • Security analysts and SOC teams looking to automate triage and reduce Mean Time To Detect
  • DevOps/DevSecOps engineers who want to integrate AI into cloud workflows
  • Solutions architects who need to design scalable, AWS-native detection pipelines
  • IT managers and security leaders seeking practical ways to shorten detection windows
  • Students and professionals preparing for AWS Security, Solutions Architect, or DevOps certifications

Report abuse